A Blockchain enabled location-privacy preserving scheme for vehicular ad-hoc networks

Abstract

n the imminent future, with the immense need for improving road safety and demand for enhancing the overall driving experience, the utility of vehicular ad-hoc networks technology (VANET) becomes well pronounced. But, the major setbacks of VANET are centralized architecture and the lack of privacy-preserving mechanisms. As it is evident, blockchain technology is gaining attention because of the features like decentralization, distributive, cooperative maintenance and non-tampering nature. This paper presents a decentralized architecture of VANET comprising blockchain technology. The proposed blockchain-based model for VANET works in four stages: blockchain network initialization, vehicle registration, pseudonym upload, and blockchain maintenance. This can efficiently solve the problems emerging in centralized architectures and helps in resolving trust issues between the entities. We propose an algorithm for protecting location privacy and providing anonymity. Experimental analysis proves that the given architecture performs better than the existing solutions.

1 Introduction

The number of vehicles production has reached up to 91.78 million and it is foretold that this number will reach 2 billion within the next 10 to 15 years [1].Hence, there is high probability that this will increase congestion and road fatalities that creates a demand for upgraded driving experience and amendments in road safety measures [2]. In a recent issue from the United States Department of Transportation states that approximately 1. 35 million people get injured every year as a result of road traffic crashes [3] and 84% of this can be avoided by implementing ITS (Intelligent transportation system) [4]. To fulfill this requirement, ITS has developed a technology, VANET (vehicular ad-hoc networks) which offers to improve the road conditions by establishing inter-vehicular communication (V2V) and intra-vehicular communication (V2I). These vehicles communicate via dedicated short-range communications (DSRC) radio by exchanging beacon messages [5] or cooperative awareness message (CAMs) or commonly known as pseudonyms. VANETs comprise of multiple nodes that frequently exchange messages with each other directly and indirectly. In indirect communication (V2R), vehicles use infrastructure that involves roadside units (RSU). These RSUs act as a base station in VANETs along with providing coverage to specific range [2, 6, 7]. To maintain a safer and efficient traffic environment RSU sends safety alert notifications to the nodes moving in their proximities and forwards the received messages to the intended recipients. In direct communication, vehicle (node) sends information via commonly known beacons [7]. These beacons carry complete information about the sending node, including its trajectories on the road, heading direction and the query or alert message delivered by the sending node. These safety messages are utilized to provide information such as Co-operative Collision avoidance, as well as by traffic controlling infrastructure to implement traffic efficiency applications [8].

As the communication in VANETs is fully wireless, a malicious node may disrupt the activities of the other nodes by modifying the content of beacons or may even physically harm the driver by following the targeted vehicle or may deceive a target vehicle towards the wrong direction by sending false alarms. Therefore, beacons content integrity and authentication must be ensured by the network administrators [9, 10]. The network is compelled to verify whether the content of the received message is reliable and is sent by an authentic node only. The ability to retrieve moving coordinates of a targeted vehicle from beacons disrupts the location privacy of the targeted vehicle. This is one of the significant challenges in VANETs because any node in the network would not like to reveal its location and personal information to any other node.

In order to provide a privacy-preserved environment, many works have been proposed exclusively. Existing privacy frameworks [11, 12] mainly concentrate on creating a central authority (CA) to establish trust and authentication between the participating nodes. The major flaw in these ideas is the centralized network, because if that fails nothing will work efficiently. Also, this makes it more manageable for the attacker to fulfill his malicious intentions by destroying or spoofing the central authority alone. Also, the centralized approaches proposed till date do not claim that CA is a tamper-proof entity. By performing few mining techniques on the pseudonyms, the attacker can find out the users’ personal information (his identity, current location, societal status etc..), which will create disruption and insecurity for the life of targeted users’. Another flaw of the centralization system is that the volume of data is increasing drastically, which is building excessive pressure on central entities and leading to the bottleneck problem. Therefore, to ensure the safety of users’, it is essential to transfer the VANET to decentralization architecture. The information present in the pseudonyms is encrypted, which does provide the guarantee that data cannot be revealed by the pseudonyms, during their transmission process. However, there is no guarantee that location information and other valuable details available with CA cannot be revealed. Moreover, in recent times users’ are being attentive for their data privacy [32, 33]. For this reason, it is very significant to preserve the vehicles’ location privacy and identity.

The purpose of this work is to present a model where user’s privacy is protected by creating decentralized management and anonymous communication among the nodes, by incorporating the technology of blockchain. Due to data sharing among vehicles certain issues regarding authorization and data security has been raised. The characteristics of decentralized blockchain’s architecture protect from security risks brought by centralized data storage. The centralized architecture is also at a risk of single point of failure disrupting the entire network that can be managed by adopting decentralization. Scalability is also a major concern in centralized networks and can be easily solved by decentralization. Recently, blockchain [14] is winning attention from academia and research field. The reason behind this increasing popularity of blockchain in VANETs is its properties namely decentralization, anonymity, and trustworthiness [15]. It works as a distributed public ledger in which encryption is performed using Merkel tree and by calculating hash functions. Also, it follows a consensus mechanism that works on Proof-of-Work (PoW) algorithm [14]. Due to such remarkable features of blockchain, it can be deployed to design a location privacy preserving model for vehicular ad-hoc networks. We also present a blockchain consensus mechanism based on federated blockchain. In vehicular federated blockchain, the consensus scheme performs a crucial decision-making function in determining the authentication and location privacy of a vehicle. We will concentrate on PoW [14] and PoL [16] consensus mechanisms, to provide the security and privacy of federated blockchain.

Key contribution: The key contribution of the work can be summarized as follows:

1. 1.

   To highlights the problems of centralized architecture in VANET. This work utilizes the benefits of federated blockchain technology and present a decentralized architecture of VANET. The hash value of pseudonym is stored in blockchain, which helps in maintaining the integrity of the messages. Also decrease the processing time and required storage space.

2. 2.

   We propose to utilize federated blockchain to establish authentication of nodes and maintaining the decentralization in the vehicular network.

3. 3.

   We deploy smart contracts on the federated vehicular blockchain to accomplish privacy and anonymity in the network.

4. 4.

   We present a 4-layer model to preserve the location of the vehicles by shredding the work into different layers.

The remaining paper is arranged as follows: Section 2 briefly addresses the previous work by dividing into two categories; one presents the privacy schemes in VANETs without blockchain and the next discusses the details of available schemes with blockchain. Network model overview and the intricate details of proposed scheme are illustrated in section 3. We describe model initialization, location privacy algorithm including blockchain and its contribution in maintaining privacy in section 4. In section 5, we provide privacy analysis and discussion of the experimental results and the conclusion are given in section 6.

2 Related work

This section includes the discussion of the existing schemes in the domain of privacy that mainly focuses on preserving location privacy by using various methods such as k-anonymity, ring signature and group signatures etc. in the first section. In the next section, few schemes are briefly mentioned that uses blockchain mechanism to maintain the privacy in VANETs.

2.1 Traditional privacy schemes without blockchain mechanism

In all the existing propositions, the pseudonym-based authentication mechanism is used to establish trust between the participating nodes. The main flaw in these approaches is that a centralized trust authority is required to maintain the logs of every pseudonym exchange, to safeguard the privacy of the vehicle and to secure the network from attacks. In [2], Lu et al. suggested a bilinear-pairing based protocol to provide the potential amount of conditional privacy for the vehicular nodes. The major contribution of this work is that the RSU has the capability to provide several anonymous keys for all the vehicles, to maintain the privacy of nodes participating in the network. Though, this protocol consumes more response time in the process of pseudonym generation. Also, RSU mandate to notify about the pseudonym to the trusted authority before allotting it to registered vehicles. Additionally, RSU can be swiftly compromised and hence it is not a genuine option to execute the process of pseudonym generation [35, 36]. Thereafter, the group signature-based algorithm was introduced [17], in which authentication process relies upon the signature of a cluster of vehicles. In their work [18], the OBU of a vehicle is not bound to manage a huge number of keys and trusted authority can effectively track down the targeted malicious vehicle. But, OBU are imposed to keep the list of revoked vehicles provided by trusted authority, to obviate to establish any communication with such vehicles. Due to this reason, it couldn’t be an effective approach in large networks as process of verifying the vehicles increases consecutively with the enlarged number of revoked vehicles present on the revocation list. In [19], Gamage et al. presented an ID based ring signature approach for VANET to effectively eliminate the privacy concerns of a signing authority for applications of VANET. Still, vehicles can be traceable and conditional privacy issue remain unsolved in the respective method as well. Zhu et al. [20] presented a protocol for vehicular delay tolerant network (DTN) using social-based approach in which privacy-preserving is achieved using packet forwarding. In their model, they have given a packet forwarding protocol for privacy preserving to attain remarkably authentic and secure transmissions. The fundamental advantage of this scheme is that it promises to provide a high packet delivery ratio and thus, able to preserve privacy. However, the shortcoming is that the verification cost of a packet is too high. A distributed certificate service protocol for VANET was proposed by A. Jiang et al. [21]. In this paper, they presented a combined batch verification approach for authentication of signatures, specifically to reduce the authentication overhead in the network. In their work, the verification overhead is significantly decreased. Also, this is the first approach that highlights the assimilation among distributed generation of certificates with the help of RSUs and effective message authentication can be achieved by batch verification. Yet, the major disadvantage of using batch verification method is high packet verification cost is enforced. In recent work [38], a new pseudonym assignment scheme is presented in which two novel adversary placement strategies are deployed. The results given in the work proves that the vehicle traceability is maximum in the proposed work in comparison with the other existing pseudonym assignment methodologies. In [39], the solution of security and privacy is given by implementing the PKI scheme along with identity-based scheme. In the proposed model, a certificate has been issued by the intermediary trusted node and any node cannot enter into the network without carrying the long-term certificate. Identity based signatures are used in the place of bilinear pairing, to verify the certificate revocation lists. The proposed method is suitable for single vehicle or batch authentication and discussed results declares improvement over the other methodologies.

2.2 Privacy schemes using blockchain in VANETs

In [34], a novel automotive security architecture is proposed that employs embedded blockchain distributed feature to eliminate a centralized authority. This paper ensures that the privacy of users can be preserved by using changeable keys. The given model has capability to provide support to emerging automotive services by offering an inviolable and trustworthy way to exchange data, while guaranteeing the safety of the end user. Though, the article covers theoretical aspects of the blockchain but does not present any experimental validation. Another approach is proposed by Ali dorri et al. in [22]. This work gives a model imbibing blockchain technology involving the whole entity set in the life cycle of a vehicle, including insurance companies, software or hardware suppliers, and roadside infrastructure. All transactions between these parties are stored in the blockchain to receive high audibility. Possible attack scenarios are considered to prove the working of the model. In [23], the authors suggested to utilize blockchain technology for providing security to smart vehicles’ inter communication using visible light and audible side channels. In their work, public keys of blockchain are used to validate the proposed model through session cryptographic keys, by using either side-channels or public key infrastructure of blockchain technology. This work presented various kinds of secure communication methods via blockchain technology. In [40], Pu et al. have presented an approach using PBFT consensus model for vehicular social networks (VSN). VSN consists various kinds of networks such as cloud networks, edge networks and on road networks. To overcome the privacy and security flaw, this work analyze the impact of internal and external attacks by considering the two different scenarios. Pseudonyms are used to achieve the anonymization in the network. Results given in the study proves the efficiency of the proposed model. A conditional privacy preserving scheme using blockchain technology protocol is been proposed in [41], which combines the PKI with Ethereum to utilize the secure communication in VANETs. This scheme decreases the need of a large databases of keys required for authentication process by replacing the traditional ECDSA with the modified version of ECDSA (a scheme popularly used for digital signatures). The simulations results proves the feasibility and efficiency of the given model. The major variation between proposed model and the existing models is that this approach is comprehensively dedicated to location privacy of a user. Another vital advantage of proposed work is the decentralization of the vehicular ad-hoc network. While comparing with all the existing approaches, this work is distinctive in three aspects. First, this model does not demand any central authority to maintain the whole network. Secondly, pseudonym-generation and verification process time are slightly lessened. Finally, this model is capable of preserving privacy by applying blockchain technology on RSU’s.

3 Background

3.1 Blockchain based vehicular network

Figure 1 depicts the proposed model, it comprises mainly of four layers as the user layer, RSU layer, repository layer and the blockchain network. On the user layer, OBU gathers data out of various pre-installed sensors and transfers them to the next layer i.e. RSU layer. It also communicates with RSUs to access various services. On this layer, the vehicles communicate with nearby RSU to access the existing information. The data taken from vehicles is momentarily stored at RSU and then passed to RA through wired connections. The RA acts as a data center to store large data permanently into blockchain and it performs complicated computing tasks for vehicles. The blockchain deployed RSUs perform the task of ledger management.

Fig. 1

The proposed architecture of blockchain-based VANET

3.1.1 Federated blockchain and consensus mechanism

In this work, we use federated Blockchain (FBC) to provide privacy to the network public blockchain (BC). Unlike simple blockchain, FBC (also known as consortium or permissioned blockchain) is a special type of blockchain which works on a set of preselected nodes that build distributed shared databases at minimum cost. To maintain the authentication in the network, FBC does not allow any person having access to the internet to participate in the BC network [24]. The consensus process in FBC works on some pre-selected set of RSUs. It is an essential auditing process in which information received from a group of vehicles is stored in the blockchain. Few RSUs are authorized to run the consensus process [25]. The pseudonym set of vehicles and the public/private keys of pseudonym have to be periodically updated. They must contact RA to get a new set of pseudo-identities for them. Whenever a new vehicle moves into the network it is mandatory for the vehicle to participate in the initial registration process. When a vehicle requests for a new pair of pseudonyms, it triggers a smart contract between RSU and the respective vehicle. Smart contracts are self-executing scripts stored on the blockchain, triggered with every transaction in a prescribed manner [16, 24]. Every RSU deployed in the network is required to download and implement smart contract into their blockchain. Whenever there is an occurrence of an event, the vehicle will alert its neighboring vehicles and will also send an alert notification to the nearest RSU BC network. After receiving the alert message, other vehicles verify the location certificate of the originator [26]. If the originator vehicle relates to the same network, then the neighboring node independently verifies the remaining parameters before forwarding it again to prohibit attacks against the network, else they discard the alert message [15]. To add new blocks into a blockchain following steps need to be executed:

Block generation

In network abundance of un-analyzed data has been generated by the vehicle nodes. Vehicles use various pseudonyms to encrypt the whole data and to maintain variance between received data. The RSUs acting as data collectors will compile the received un-analyzed data from the vehicles at regular intervals to form a data block and broadcast these data blocks to the remaining RSU. Before embedding a newly created block into the immutable vehicular blockchain, a consensus mechanism shall be fulfilled between the chosen RSU via another process known as proof-of-work. Every newly constructed block consists a field name hash of previous block to remain connected and form a chain of blocks as briefly shown in Fig. 2. These transactions are further merged into the Merkle tree. The Merkle tree root ensures the integrity of the transactions, if any alterations made the value of the root will also change. The payload of the transactions can be calculated by the RSU collection within certain transaction period denoted t_CP and the other notations used to describe the time consumed by various process is given in Table 1.

Fig. 2

The depiction of process of a block generation in a blockchain

Table 1 Notations of time taken by different processes

Theoretically, the number of transactions can be defined by the number of moving vehicles in an hour (n_H) in the same block. We can calculate the value of number of transactions (n_T) by the given expression:

$$ {n}_T={n}_H\times {t}_{CP} $$

(1)

The key transmission time taken by traditional structure includes encryption, decryption, signature and verification time. It can be calculated by the following equation:

$$ {t}_{TS}={n}_T\times \left({t}_{EN}+{t}_{DE}+{t}_{SI}+{t}_{VE}\right)+\left({t}_{BT}+{t}_{PO}\right)\times 2\kern0.5em $$

(2)

In blockchain only signature verification time is required for transactions. However, block creation time is also included in total processing time. It can be calculated by the following equation:

$$ {t}_B={n}_T\times {t_V}_E+\left({t}_{BT}+{t}_{PO}\right)\times 2+{t}_{BC} $$

(3)

The network propagation time along with back off time is included both the equations and it has been calculated twice considering the two way communication of any message transmission along with the delays.

Proof-of-work for RSU

Proof of work is an algorithm to validate the transactions and generate blocks in blockchain. Each RSU collects and validates all the data received from the vehicle nodes and shares the collected data with the other RSUs present in their vehicular blockchain. Every node constructs a new data block of consolidated data repeatedly after a certain period of time and attempts to find a hash value on the basis of criteria of the existing data blocks. As the traditional proof-of-work [14], the hash value should satisfy the predefined difficulty value audited by the blockchain system to modify the production speed of new construction of data blocks.

Proof-of-location for vehicular nodes

Proof of location is blockchain’s technological way of verifying vehicles location. A proof-of-location (PoL) certificate is used to validate the location of a vehicular node at any specific time [16]. Every vehicle participating in the network must carry a PoL certificate to affirm that the vehicle is placed close to an event spot. Moreover, this PoL certificate has capability to prove the location of a node in any event message to aid the federated blockchain. In proposed work, RSU acts as a location certificate validator inside its communication space. Here, we adopt that the vehicle and RSU keep their own set of public/private keys. The vehicle transmits a request message containing its public key (PK_vi) to the RSU and then the RSU provides a unique session id the requesting vehicle. Thereafter, the vehicle responds back to RSU with the signed session id. RSU authenticates the signature of the signed session id using the public key of the same vehicle and it also reviews the session-id exchange time. If the session id exchange time is lower than a few milliseconds, then a location certificate having the current location, timestamp and public key of vehicle are signed (using the private key of RSU) and issued by the RSU.

3.2 Location privacy objectives

An effective location privacy preserving model must have the following attributes [12, 27]:

1. 1.

   Minimum disclosure: The measure of shared information by a respective user must be limited to the requisite information to safeguard VANET functionalities.

2. 2.

   Anonymity and Traceability: The messages used in the network must remain anonymous. But this requirement conflicts with accountability i.e. another important security concern in VANET where accountability states that the receiver must have the capacity to verify the sender of a specific message.

3. 3.

   Unlinkability: If communication is established between two nodes, it is complex to figure out if the consecutive messages are transmitted by the same vehicle and they cannot be linked with each other for a very long time except for the trusted authority.

4. 4.

   Identity Preserving: The original identity of every active vehicle must remain unidentified from other cooperating entities of the vehicular ad-hoc networks to sustain the vehicle’s privacy from plausible attacks.

3.3 Bilinear mapping

Bilinear mapping [28]: Let G₁ be a multiplicative group and G₂ be an additive group with the order q = n × r where q is a prime number and n is an integer. Let’s take into consideration the higher difficulty of logarithm problem on above mentioned two groups. The e is said to be a bilinear pairing if the mapping of e satisfies for the below three characteristics, where e: G₂x G₂gives G₁.

1. Bilinearity: For any Q ∈ G₂, R ∈ G₂ and a₁, a₂ ∈ Zr∗, there exist e(a₁Q, a₂R) = e (Q,R)a₁a₂.

2. Non-degeneracy: The two point Q,S ∈ G₂ must be there such that e (Q,S) =1 or e (S, R) = e (Q,Q), Where the identity element 1 ∈ G₁.

3. Computability: An efficient algorithm to calculate e (Q,R) ϵ G₁, where Q ϵ G₂,R ϵ G₂must be there.

4 System model

In this paper, federated blockchain is harnessed to gain decentralization, anonymity and privacy in VANET. The federated blockchain is equipped with smart contracts which help in the establishment of a decentralized environment. The ledgers present in the blocks keep the whole network aware of the updated information. In this section, we present BELP (Blockchain Enabled Location Privacy) model and briefly explain the functioning of the scheme.

4.1 Network model

We focus exclusively on a system of VANET technology in which each vehicle is equipped with a wireless communication module. In proposed model, we include three entities: Registered Authority (RA), Road-Side Unit (RSU), and a vehicle equipped with an On-board Unit (OBU) [14].

1. 1.

   Vehicle: The vehicle is equipped with On-board Units, computational devices and communication devices that capacitates gathering data from various sources, data processing, and additional sharing. Vehicles may establish their link after pseudonym exchange.

2. 2.

   OBU: An On-board unit is a combination of software and hardware, developed to deploy a low-cost device, integrated by combining readily available hardware modules from the electronic market, and capable of effectively linking vehicles and road-side networks. These OBU devices aid the vehicle to automatically detect traffic-related events and send warning messages to others using V2V infrastructure, for e.g. the Long-Term Evolution Vehicle-to-Vehicle (LTE-V2V) or dedicated short-range communications (DSRC) [5, 29].

3. 3.

   RSU: The RSU is located on the roadsides and it can establish a communication link with the vehicles. Also, the RSU acts as a path between vehicles and RA. The main responsibility of RSU is to authenticate the vehicle, process their output locally and then forward the results to traffic management devices. Additionally, they act as access points in the network and keep the vehicles notified about traffic and climate changes.

4. 4.

   RA: The registered authority (RA) behaves as a repository center of RSU’s and the main role is to provide key materials and credentials to vehicles present inside a network. It has the capacity to detect and trace the original identity of vehicles. The data available at RA will present in encrypted form, so no unauthorized node can access the data. For secure communication, RA is directly linked to RSUs via a wired connection.

5. 5.

   Blockchain Network: To protect the privacy in federated-blockchain VANET, each participating node requires strict management. Thus, this paper uses a private chain to set up a blockchain network. The hash value generated by the whole data will be stored in a blockchain network. This hash value provides certainty that the data cannot be altered or spoofed by any malicious attackers as whenever a data change occurs, its hash value will be recalculated. The federated blockchain is auditable so that any modification can be traced. Additionally, the storage of hash values reduces the need of a larger storing device and lowers down the response time.

This proposed federated blockchain network does not include tokens, we consider the consensus of well-known approach Practical Byzantine Fault Tolerance (PBFT) can be utilized for transaction verification process. Every participating node can vote as per its calculation capability. Before appending a new data block into the blockchain, multiple RSUs (out of pre-selected) need to agree by consensus. Each RSU collects and verifies all the data of vehicles such as pseudonyms, available storage, current speed and moving direction etc. Thereafter, all RSUs broadcast their collected data to the other RSUs and also add this data into their own data blocks periodically (Fig. 3).

Fig. 3

The interconnection of Federated blockchain VANET

4.2 System interconnection

The blockchain based VANET interconnections are shown in 4. 1. This interconnection between the entities happens in four phases given below.

1. 1.

   Blockchain network initialization: During this step, the system is initialized. Every registered RA gathers to form a blockchain network. Every RA in the network has the same rights and can utilize equally the benefits of blockchain. Smart contract rules are made at this stage. For all the successful rules address will be received from smart contracts.

2. 2.

   Vehicles registration: When a vehicle joins the network, the vehicle sends a registration request to the nearest RSU and then to RA. Thereafter, RA will forward the request to the smart contract and these contracts will check for its authenticity by the set of predefined authentication rules. If a valid vehicle is requesting, it maintains the validity. If not, it discards the request and sends notification to all the participating nodes and creates a record in blockchain making VANET aware that the vehicle is not valid. The pseudonym token has been sent back to valid vehicles.

3. 3.

   Pseudonyms upload: For preserving the location privacy and providing anonymity random encryption periods are used in the network. The complete explanation of pseudonyms generation is given in the next section.

4. 4.

   Blockchain record: As we know that the processing of each message is a transaction, and its calculated hash value is stored in the blockchain network. Therefore, the calculated hash value of every transaction during a period T is received by blockchain. The agent node of the blockchain broadcasts every newly formed block and finds out that the block has reached the PBFT consensus. It then broadcasts the new block into the network. The newly formed block is considered as valid only if all the transactions entered are valid, otherwise not. Backups of the blocks get created and updated in blockchain only when all the transactions in block are valid and does not exist before.

4.3 System initialization

In this phase, since the vehicles are registered with RA, RA will generate the ticket λ_a as per real identity r_ID of the vehicle node and produce the equivalent private key S_a. Thereafter, RA install λ_a and chosen system parameters into tamper proof device of the vehicle V_a. Also, the same information is provided to all RSUs memory. All the notations used in this phase are mentioned in Table 2. The RSU and RA are connected via a secured wired connection, the parameter transmission can happen anytime.

Table 2 Index for key notation

These steps need to be followed for system initialization:

1. 1.

   V_a submits the r_ID to RA and then RA validates the credentials received, if they are valid then it proceeds to next

2. 2.

   A random number rnd is chosen by RA such that rnd ∈Z*q and thus determines the private key S_a for the vehicle OBU by using Bilinear pair mapping.

3. 3.

   RA generates S_a = H₁ (r_IDa, rnd) ϵ {0, 1}ⁿ and provides S_a to the OBU.

4. 4.

   RA calculates the public key λ_a of the OBU by using λ_a = S_aP ∈ G₁.

5. 5.

   For authenticity, RA signs λ_a as the public key with its own private key i.e. SIG(λ_a, SK_ra).

6. 6.

   Then RA keeps the mapping of r_IDa and tickets given to the vehicle <λ_a,r_IDa > using bilinear mapping into its database.

7. 7.

   RA assigns the <λ_a, SIG(λ_a, SK_ra), S_a > as private information of each vehicle V_a and stores the information into TPD of the vehicle.

8. 8.

   RA communicates the private key SK_x to the RSU.

9. 9.

   RA publishes public parameters of system {rnd, λ_i} to the RSU and to all the vehicles.

4.4 The generation phase of pseudonyms and access granted to vehicles

After obtaining the ticket λ_a, vehicle V_a approaches to the nearly available roadside unit RSU_i to acquire pseudonym token for itself. V_a sends its public key PK_vi to the RSU_i which in turn checks for the legality of vehicle by comparing its credentials (whether the vehicle is registered with RA). After validating from RA, RSU broadcast the status of vehicle (legitimate or not) in the network. Meanwhile, V_a sends λ_a to the RSU_i. After validating that vehicle is legally valid RSU_i issues pseudonym token T (a, i) with the timestamp validity t (a, i) and sends it to V_a including its group key k_g. To determine, the ticket of a vehicle based on its pseudonym, mapping between token and λ_a has been stored by RSU. Multiple tokens have been issued to Vehicle, based on the same ticket λ_a. The message carries all the information related to Token T,T’s expiration time, Signature (sig(M,K)), Random number selected by RSU and group key k_g. The dynamic group key k_gestablishes an encrypted area without interfering with the communication between vehicles. It is managed and updated by RSU and it helps to limit attackers from getting the privacy information from a vehicle.

4.5 The location privacy algorithm

A large number of pseudonyms are obtained by vehicle from RSU along with a group key k_g. To preserve the location privacy by changing the pseudonym, the vehicle starts a random encryption period. During this period if any vehicle prefers to change its pseudonym, the respective vehicle also needs to change other parameters like its speed and driving lane, so that attackers will not be able to trace the trajectory and pseudonym of the vehicle. The specific steps involved in this process are:

1. 1.

   The vehicle V_a which wishes to replace its pseudonym, submits a request message M = REQ_rep, PS, T_rep to initiate the random encryption period (rep) to its nearest placed RSU. The V_a encrypts M with its group key k_g and PS is taken as pseudonym-id used by the vehicle and T_rep is the length of random encryption period.

2. 2.

   The vehicles present in the same vicinity decrypt the message M with the group key k_g. If decryption is valid, the vehicle will take part in the process of encrypting its broadcast messages with the same key k_g . All the participating vehicles will form a group i.e., an encrypted group. In case of failed decryption, the remaining vehicles decline the request.

3. 3.

   During the encryption period, V_a will change its pseudonym along with speed or direction and also monitors the vehicles of the encrypted group.

4. 4.

   Vehicles of the encrypted group can check their certificate validity. If the remaining time < =T_rep, the vehicle will change its pseudonym and trajectory.

5. 5.

   At every pseudonym change, the vehicle must broadcast a response message.

6. 6.

   V_a monitors that all the vehicles present in the group of encrypted vehicles satisfies the given two conditions: (i) The number of Vehicles who change the pseudonym should not be less than two. (ii) If any vehicle changes pseudonym then it is mandatory to change its speed and direction.

If any of the above conditions is violated before the ending of T_rep, a new encryption period will be opened by V_a by broadcasting a request to preserve its own location privacy. This way we can stop external attackers from eavesdropping during a pseudonym change period as the group key is mandatory to participate in the process. If the terminating condition of encryption period is not fulfilled before T_rep, V_a will further send another request message demanding to provide a new encryption slot to preserve its own location privacy.

5 Simulation setup and result analysis

The performance evaluation of the proposed architecture BELP is presented in this section. The next subsection gives details about the simulation environment and thereafter the last subsection discusses the results of the experiments. To understand the improvement suggested by proposed approach, we present a comparison of proposed architecture with a centralized architecture [30]. The centralized architecture used for comparison in this work utilize a method in which a dynamic mix zone is formed on the request of a vehicle. To gain the unlinkability and untraceability in the network this method encrypts the messages in the mix zones. The main difference in the proposed and centralized approach [30] lies in the system designing. In centralized architecture the values are stored directly while in BELP we utilize the advantages of blockchain technology to store the calculated hash value.

5.1 Simulation environment

In the following section, we measure the realizable location privacy considering different traffic scenarios by dividing the given architecture into two parts: Vehicular network and blockchain network. For vehicular network simulation, OPNET [31] is used not only to evaluate the efficiency and performance of the given network but also for generating vehicle mobility to evaluate the normal distribution of vehicles and Poisson arrival rate of incoming vehicles [18]. Ethereum is used to simulate the blockchain network and has the capacity to implement the power of smart contracts, the PoL, and the PoW consensus mechanisms [16]. Therefore, in the conducted experiment, we utilize the ethereum platform to define rules (authentication, revocation, and certificate validation) into smart contracts. The new data block is verified using the PoW and PoL consensus.

Furthermore, to test the performance of proposed model, we have considered a real-world road map of Jaipur city (India) as shown in Fig. 4. The movement of vehicles is fixed within 7 km on the straight suburban Highway from Jagatpura to Bombay Hospital. It has a two-way road with 3 lanes on each side and contains four exit points to leave/ enter the road. We consider two-vehicle movement cases: In case-1, the pseudonym change happens without vehicles switching into the lanes and case-2 enforces the change of pseudonym and lane, to compare the effectiveness of proposed algorithm. The acceleration factor is set to 2 m/s2 to consider red traffic light scenarios at intersections. Table 2 contains the simulation parameters used in proposed work. To do so, we have assumed the number of vehicular nodes to be 100, running on the average speed of 50 km/h, and simulation run time is 35,000 simulated seconds. The complete information of considered simulation parameters is given in Table 3. For medium access control, IEEE 802. 11 distributed coordination functions are used. We have done the simulations multiple times independently to calculate average system time and for the evaluation of the probability of efficient and fruitful tracking of a target node by an adversary.

Fig. 4

Simulation setup (suburban highway of Jaipur city)

Table 3 Simulation parameters

5.2 Simulation results

First, we present the time consumed by the various cryptographic methods in proposed algorithm. We then elaborate on the comparison between the system time in the centralized scheme and the proposed scheme. The performance of cryptographic schemes and key distribution can be measured by the occurrence of the number of transactions. The final results vary on the complete set of number of transactions. Therefore, the simulation environment is comprised of the following mentioned steps: (a) in the end of every T_cp, a fixed number of transactions are performed in the range of one RSU. The vehicle movement is neglected in this calculation. (b) Transaction numbers ranging from 0 to 2000 are introduced in simulations to calculate the comparison of key transmission time between blockchain and traditional structures. The third simulation shows the assessment of finding efficient tracking of a node by a silent attacker or adversary.

Processing time

First, we calculate the processing time consumed by cryptographic schemes. In Fig. 5, we present the processing time of the various cryptographic schemes that are mandated to participate in the key transfer process. The process of encryption and decryption costs approximately equal processing time. The signing and verification process consume the highest processing time as compared to the other methods. The estimation of these methods is essential because signature verification of a node is a significant task in key transfer time and it happens repeatedly in the network.

Fig. 5

The computation time required by the cryptographic schemes over transaction number

System time

BELP calculates the system time based on two parameters: the blockchain processing time and pseudonym processing time. The Fig. 6 shown represent system time with respect to transaction numbers for both the centralized scheme and proposed scheme (BELP). The transaction range is taken from 1 to 2000 for testing system time calculation. The system time is directly proportional to the transaction number i.e. as the number of transactions increases system time also increases with respect to it. Even though the centralized architecture has only pseudonym processing time, it however consumes more system time as compared to BELP. The fundamental reason for this condition is more waiting time due to the presence of several central entities. And the system time of proposed approach is 3 times less than a centralized approach. In BELP we stored hash values of transactions in the blockchain network which saved a lot of time for larger transaction numbers. So, proposed scheme provides an improvement in scalability even with higher transaction numbers. Hence BELP gives lesser time consumption due to the decentralization property of blockchain.

Fig. 6

The System time comparison between Centralized Architecture and BELP

Probability of location tracking

In Fig. 7, the success probability of location tracking is shown by considering different values of vehicle density and variance in speed. Each vehicle follows the proposed scheme (case1). In this simulation, for every vehicle leaving the network, the adversary may pick a node that may reduce the diversity between the average delays time to the leaving time of all the participating vehicles. Also, these vehicles communicate by using pseudonyms but do not switch the lanes after every pseudonym change. Results show that the success rate probability of the adversary declines with respect to the inclination of variance of the vehicular nodes. Also, the probability of location tracking of BELP is lower than DMLP taking the same variance in the account. BELP shows considerably lower tracking in case of both the variances. There is an improvement of 20% with every change of variance.

Fig. 7

The success probability tracking rate by an adversary in CASE 1 considering distinct arrival rate and variance

In Fig. 8, we have considered case 2 and the outcome depicts the success probability of tracking a location while both values of vehicular nodes and the speed of vehicles vary. Each vehicle uses the BELP scheme under case 2. Here, the adversary rule will remain the same as the first case. Each curvature corresponds to distinct values of sigma. The probability of location tracking decreases by 30% with the increase in variance which is more than that of case 1. The results clearly show that location tracking probability of BELP is slightly lower than DMLP. The result of this simulation shows that the case 2 outperforms case1. Therefore, we can conclude that ability to protect location privacy has been improved significantly using BELP.

Fig. 8

The success probability tracking rate by an adversary in CASE 2 considering distinct arrival rate and variance

On the basis of given algorithm, we have considered two scenarios to calculate the success probability of an adversary (in the first, vehicles cannot change the lanes and in the second, vehicles are allowed to change the lanes and speed) and compared with the traditional centralized approach. In our analysis,the success probability of an adversary has been calculated considering different values of variances and we have achieved that system time consumed by BELP is 3 times better than traditional centralized approach.

Comparative analysis

In this section, we present the comparative analysis of proposed BELP scheme with the previously existing schemes. Zhang’s scheme gives a model to check the authenticity of the message. In this work, edge computing is used by RSU’s to validate the authentic messages. The scheme is capable to achieve the location privacy but fails to establish decentralization [9]. Wang et al. [17], presented the idea of using MAC tag, to reduce the computational overhead. The packet latency and overhead significantly reduced by calculating the hash value associated with the messages. In article [34], fog based vehicular computing framework has been discussed. This article highlights the requirement of security and preservation of privacy. Azees et al., presented a scheme for efficient authentication of the messages, which is capable to trace the malicious vehicles and RSU’s, also it can prohibit those vehicles to participate in to the VANET [37]. The comparison analysis is shown in the Table 4 and it states that proposed scheme BELP is contained and well-suitable for vehicular ad-hoc networks.

Table 4 The comparison table

6 Conclusions

In proposed work, we have presented BELP scheme that utilizes the federated blockchain technology to achieve decentralization and efficient computing environment. A system model of blockchain enabled vehicular network is given, including blockchain network initialization, vehicle registration, pseudonyms upload and blockchain maintenance phases. The blockchain enabled vehicular ad-hoc network provides maximum anonymity and unlink-ability in a suburban scenario. Introducing blockchain into the VANET removes the requirement of a central authority or third-party management. The hash value of the pseudonyms will be stored in the blockchain, which provides data integrity and improve the system processing time. Specifically, we have proposed an algorithm which consumes fewer pseudonyms exchange than other schemes to establish the secure communication. A number of simulations have been done to analyse the efficacy and performance of the BELP scheme. The simulation findings indicate that proposed scheme is efficient in providing location privacy preservation as compared to existing centralized architecture. Future work may aim to incorporate edge computing into the vehicular networks by permitting the RSU to mark the rankings of the misbehaving nodes present in their zone, to further improve the computation capability of the vehicular ad-hoc system.