A Lightweight Multi-Factor Authentication and Privacy Preservation Protocol for Fleet Vehicles

Due to the rise of the IoV, a massive volume of data is generated and shared among connected vehicles, resulting in a wide range of security threats. Therefore, mutual authentication is vital to protect the integrity of the collected data and the driver's privacy in the IoV ecosystem. The proposed work responds to this need and presents a scheme that authenticates the vehicle and the driver to a cloud service managed by the fleet vehicle's owner. The vehicle is authenticated using its biometric signature generated by the Physical Unclonable Functions (PUFs), and the driver is authenticated using his biological biometrics. We evaluated the proposed scheme's performance using formal and informal security analysis. We evaluated the resilience of the proposed scheme against well-known attacks. We also compared the proposed scheme's computational complexity and communication cost with other related existing studies. The results demonstrate that the proposed scheme is robust against common attacks with less computation complexity compared to the current solutions in the literature.