Blockchain-Assisted CP-ABE with Revocation for Vehicular Access Control
摘要
The sharing of vehicle accident data in the Internet of Vehicles (IoV) faces critical security issues such as data leakage, data tampering, and unauthorized access. While access control schemes based on attribute-based encryption (ABE) offer solutions, existing methods still face challenges such as excessive computational overhead during attribute revocation, high storage costs, and slow data access. This paper proposes a revocable multi-authorization ciphertext-policy attribute-based encryption (CP-ABE) access control scheme for the IoV, based on Rivest–Shamir–Adleman (RSA) accumulators and smart contracts (SCs). The scheme integrates attribute-based encryption (ABE), blockchain, accumulators, InterPlanetary File System (IPFS), multi-access edge computing (MEC) servers, and lightweight cryptographic algorithms. It utilizes RSA accumulators to manage authenticated attribute private keys, enabling efficient identity authentication. This not only improves attribute revocation efficiency but also reduces the blockchain storage burden. Additionally, the scheme adopts a hybrid encryption approach, combining the SPECK lightweight cipher with CP-ABE, to enhance encryption efficiency. Furthermore, the scheme uses auxiliary keys to prevent leakage of ciphertext on MEC servers. Experimental analysis demonstrates that the scheme exhibits strong security and privacy protection and achieves high revocation efficiency. When revoking 8 attributes, the revocation time is reduced to under 0.15 s per user, and the scheme can maintain a revocation time of less than 0.2 s even as the number of revoked attributes increases. This provides a practical and feasible solution to the security challenges in vehicle accident data sharing.