A blockchain-based architecture for secure vehicular Named Data Networks

doi:10.1016/j.compeleceng.2020.106715

Computers & Electrical Engineering

Volume 86, September 2020, 106715

https://doi.org/10.1016/j.compeleceng.2020.106715 Get rights and content

Highlights

•
A secure blockchain-based interest forwarding scheme is designed.
•
A reputation-based blockchain caching placement strategy is designed.
•
A lightweight secure neighbor discovery protocol is designed.
•
The designed scheme allows only valid interest packets to be forwarded, and only trust data will be cached and delivered.
•
Simulation results show the feasibility and efficiency.

Abstract

In vehicular networks, vehicles exchange a massive amount of information aiming at improving people’s safety. Most of this information is personal or sensitive in nature, which makes security and privacy indispensable tasks. Named Data Networking is a future Internet architecture that adopts content-based security and in-network caching features to improve content delivery. However, the use of Named Data Networking on top of vehicular networks brings various challenges, especially in security and trust levels. The use of the distributed and control-less in-network caching allows malicious users to use the built-in design to launch attacks at the cache-store. Moreover, a malicious node can serve invalid or unlimited Interests to start an Interest flooding attack. In this paper, we propose a reputation-based Blockchain mechanism to secure both of Interest and Data forwarding plane, and content caching. The simulation results exhibit that our solution forwards only valid Interest and caches only trust content.

Graphical abstract

Introduction

In Vehicular Ad-Hoc Network (VANET), a huge amount of information is exchanged between vehicles and the infrastructure aiming at improving driving and human safety. This information can vary from public to personal and sensitive data. On the other hand, the use of the Internet Protocol (IP) in a vehicular network is extremely challenging. For instance, the high mobility of vehicles, poor quality of wireless, and quick changes in network topology affect the content delivery and Quality of Service (QoS) [1]. Moreover, security and privacy is another major challenge in VANETs [2]. In contrast to generic Internet, attacks in VANET may have dire consequences because they directly involve human lives. Indeed, threats such as fake messages may not only compromise drivers’ private information but also cause vandalism and waste network resources by affecting communication and hence-forth leading to accidents. To mitigate such attacks, service and application providers must incorporate trust management, authentication mechanisms, resiliency, and real-time message at the network level.

In order to overcome these and other issues in the current communication model, Information-Centric Networking (ICN) [3] has been introduced as a novel communication model for the future Internet. ICN uses the name of the content as the building block for communication instead of the host address. In particular, the content name is used in most ICN functionalities such as routing, forwarding, security, and in-network caching.

Under the concept of ICN, different architectures have been implemented such as Named Data Networking (NDN) [4]. NDN is an active ICN project that uses hierarchical names to identify content in the network. In NDN, a unique name is associated with each content. Also, the use of a content-based security paradigm allows NDN to secure the content itself rather than the communication channel. This will guarantee security at the packet level, and protect user privacy by appending the signature and trust model at the network level. Besides, the in-network caching feature aims at enhancing the overall network performance and improve the QoS. NDN uses human-readable hierarchically names instead of IP addresses in order to forward and deliver content. NDN follows a request-response model and implements two types of packets [5]. Interest packet: as a form of a request to get content, and a Data packet: as a response for the Interest packet. Interest packet is triggered by a consumer asking for content by specifying its name, every router forwards the content request based on its name until reaching the original content producer or a replica node, then a Data packet that carries the content along with its name is delivered back to consumer(s) using the reverse symmetric path of Interest. Any NDN node can cache the content and serve it for future requests with the possibility to aggregate the same Interest [6]. Each NDN node uses three tables during the forwarding: Content Store (CS) in order to cache and store the content, Pending Interest Table (PIT) that used to keep trace of Interests, and Forwarding Interest Table (FIB) used to route the Interest packets.

Applying NDN on top VANET has several advantages [1]. By using the in-network caching feature, NDN simplifies the mobility support in VANETs by allowing vehicles to retrieve content from the most convenient cache-store or by re-issuing any unsatisfied or lost requests during the mobility. Also, NDN provides security at the packet level coupled with how/where data is received rather than securing the communication channel. However, applying a transparent and border-less caching at the network level may raise critical issues in terms of data security, user privacy, and copyrights. By allowing any node to cache content and serve it for future demands. A malicious user may use this build-in design to launch attacks at the cache-store such as Interest flooding attack, content poisoning attack, cache poisoning/pollution attack, etc. Moreover, any malicious node can act as a trusted node and serve invalid and unlimited Interest packets in order to start Denial of Service attack. Hence, congest the network, exhaust the node’s memory, change the cache distribution, decrease the QoS, and affect the data/user privacy. Therefore, the NDN layer should tackle these attacks at the network level, by validating the requested content name, allowing only valid content to be cached and served, and allowing only valid Interest to be served from trusted vehicles.

To overcome the aforementioned issues, we recommend using Blockchain technology as a secure plane for vehicular named network (VNDN) communication. Indeed, Blockchain has different advantages that make it a strong candidate to provide a secure platform for today’s networks and applications. The first advantage is that Blockchain provides a decentralized and distributed network that allows all nodes to participate in the communication without the need for any centralized entity, the second advantage is that Blockchain uses several cryptographic puzzles that are hard to be solved and changed over time.

Motivated by the advantages of Blockchain, we design a reputation-based Blockchain scheme for data forwarding and content caching in NDN-based vehicular networks. In this paper, we further complement our previous work [7] by designing a secure Blockchain-based Interest forwarding scheme and a reputation-based Blockchain caching placement strategy. The Blockchain is used as a decentralized network that stores the reputation of each vehicle and cache-store. These reputation values are increased and decreased according to the served Interest from the node and content from the cache-store. Indeed, Blockchain allows a secure transition of reputation value, and hence no one is allowed to change it over time. We also design a lightweight secure neighbor discovery protocol in order to provide a secure with less-overhead neighbor vehicle discovery process. The proposed scheme allows only valid Interest packets to be forwarded upstream, and only trust content will be cached and delivered back to consumers. We also evaluate the proposed schemes using ndnSIM. The obtained results show an outperformance of our solution.

The remainder of this paper is organized as follows. Section 2 reviews the Blockchain technology and the existing solutions in VANET. Section 3 presents an overview of the security and the trust in NDN over the vehicle environment. The proposed scheme is detailed in Section 4, we detail the system model, network architecture, and explain different processes for Interest forwarding and data caching. Section 5 provides the implementation details and evaluation results. Finally, Section 6 concludes the paper.

Section snippets

Blockchain overview

Blockchain [8] is a distributed peer-to-peer network that has been initially created to perform digital cryptocurrency Bitcoin. Recently, Blockchain provides other services to several applications such as banking, healthcare, supply chain, Internet of Things, and 5G networks [9].

The Blockchain is a collection of blocks that include different information and data. It can be seen as an open ledger to all network entities with the fact that anyone can consult the data and extremely hard to change

Security and trust in vehicular NDN

NDN is a new receiver-driven paradigm that follows the content-oriented concept rather than the connectivity with the host provider. Various research efforts attempt to integrate NDN on top of VANET in order to improve the scalability, reliability, and provide a secure network [1]. However, numerous security issues have not yet been solved in VANET due to the high mobility of vehicles, unbounded network control, as well as the sensitive time that applications require. In addition, NDN still has

BC-VNDN: Blockchain-based architecture for secure VNDN

From named vehicle networks perspective, any vehicle can start an attack by sending a storm of Interest packets to affect the service availability or decrease the QoS. These Interest packets contain names for an already existing or non-existing content. Packets with the existing content are forwarded via the decision of FIB table (prefix-based lookup mechanism), while the non-existing names – represent a non-valid content (virtual, non-existing data) or names for dynamic content that may be

Implementation and evaluation

We evaluated the proposed schemes BC-VNDN on top of ndnSIM [21], which is an NS3-based simulator for NDN. We also used Simulation of Urban Mobility (SUMO) [22] in order to generate mobility traces of maps that we have taken from the OpenStreetMap [23]. In addition, we used Python to analyze the trace files generated by ndnSIM. Simulation has been done on Intel Core 5 Duo CPU at 2.4 GHz, with 8 GB DDR3 SDRAM.

In the simulation, we consider all of Interest and Data forwarding as well as the cache

Conclusion

Secure content forwarding and data caching are extremely important in future Internet architectures. This paper explored the integration of Blockchain technology in Vehicular Named Data Network to secure the communication plane, data delivery, and content caching at the network level rather than the application. In particular, we proposed a reputation-based Blockchain scheme in order to enforce the trust between vehicles, secure both the Interest forwarding process and data forwarding plane,

Declaration of Competing Interest

The authors declare that they have no known competing financial interests or personal relationships that could have appeared to influence the work reported in this paper: “A Blockchain-based Architecture for Secure Vehicular Named Data Networks”.

Acknowledgments

This work was supported by the National 242 Project under Grant No. 2017A149.

Hakima Khelifi is currently pursuing a Ph.D. degree in Information and Communication Engineering from Beijing Institute of Technology, Beijing, China. Her current research interest includes Next-Generation Networking and Internet, and Vehicular Ad Hoc Networks. She received the Best Paper Award of the IEEE GLOBECOM in 2018, and the Excellent Student Award at the Beijing Institute of Technology in 2017–18 and 2018–19.

References (23)

B. Nour et al.
A survey of internet of things communication using ICN: a use case perspective
Comput Commun
(2019)
A. Kalghoum et al.
Towards a novel cache replacement strategy for named data networking based on software defined networking
Comput Electr Eng
(2018)
L. Zhang et al.
Blockchain based secure data sharing system for Internet of vehicles: a position paper
Veh Commun
(2019)
J. Dong et al.
InterestFence: simple but efficient way to counter interest flooding attack
Comput Secur
(2020)
R. Boussaha et al.
Optimized in-network authentication against pollution attacks in software-defined-named data networking
J Inf Secur Appl
(2020)
H. Khelifi et al.
Named data networking in vehicular ad hoc networks: state-of-the-art and challenges
IEEE Commun Surv Tutor
(2019)
H. Khelifi et al.
Security and privacy issues in vehicular named data networks: an overview
Mob Inf Syst
(2018)
L. Zhang et al.
Named data networking (NDN) project
Technical Report NDN-0001
(2010)
B. Nour et al.
NNCP: a named data network control protocol for IoT applications
Proceedings of the IEEE conference on standards for communications and networking (CSCN)
(2018)
H. Khelifi et al.
Reputation-based Blockchain for secure NDN caching in vehicular networks
Proceedings of the IEEE conference on standards for communications and networking (CSCN)
(2018)

J. Xie et al.

A survey of blockchain technology applied to smart cities: research issues and challenges

IEEE Commun Surv Tutor

(2019)

Cited by (42)

An attribute-encryption-based cross-chain model in urban internet of vehicles
2024, Computers and Electrical Engineering
With the maturity of Internet of Vehicles (IoV) technology and blockchain technology, numerous application scenarios have emerged, including urban Internet of Vehicles, Highway Internet of Vehicles, and Specific Area Internet of Vehicles. However, the urban Internet of Vehicles systems face data security and operational mode discretization challenges. To address these issues, we propose a data security cross-chain model for the urban Internet of Vehicles. Our model utilizes hash time lock contracts to exchange data between vehicles of the same brand and model but located in different urban areas. It also uses trusted relay chains to facilitate data exchange between vehicles of the same brands but varying models within the same urban area, thus solving the problem of difficult inter-system data exchange in the urban Internet of Vehicles. In the urban Internet of Vehicles, the transmitted data encompasses business and general data, which may have varying sensitivities. To ensure data confidentiality, we propose the HR-CP-ABE algorithm, which extends CP-ABE functionalities by incorporating hierarchical decryption and revocable vehicle attributes. And the fine-grained access control by setting different access tree structures and file access validity periods. This guarantees the confidentiality and security of urban data. Finally, experimental results demonstrate that the proposed model effectively satisfies the standards for cross-chain transactions as outlined in the Evaluation Requirements for Blockchain Application Security Technology(DB43/T 1842–2020) and Evaluation Requirements for Blockchain Network Security Technology(DB43/T 1840–2020). Additionally, our model demonstrates enhanced resilience against man-in-the-middle and replay attacks.
Blockchain for unmanned underwater drones: Research issues, challenges, trends and future directions
2023, Journal of Network and Computer Applications
Two-thirds of the earth's surface is surrounded by water and the majority of it is still unexplored. The underwater monitoring of the oceans and their surroundings is highly crucial from several perspectives, e.g., to unearth the hidden minerals/oils, to monitor the life of underwater species, military and rescue applications, surveillance of maritime borders, and predict tidal wave behaviors among others. The exploration and inspection activities of the underwater environment are mainly performed remotely by unmanned underwater vehicles or robots because human direct involvement in such a complex environment might not be a feasible option. Moreover, the recent maturity in digital automation and underwater drone technology along with the emergence and improvements in wireless, communication, and sensing technologies had already encouraged the research community to drive deep into this domain. Among several disruptive enabling technologies, Blockchain has emerged as a vital enabling technology to fulfil key requirements for secure data sharing, storage, process tracking, collaboration, and resource management. This study presents a comprehensive review of the utilization of Blockchain in different underwater applications, discussing various use cases along with detailing blockchain-based architectures, potential challenges, solutions, and future research directions. Potential challenges of underwater applications addressed by Blockchain have been detailed. This work identifies knowledge gaps between theoretical research and real-time Blockchain integration in realistic underwater drone applications. The key limitations for effective integration of Blockchain in real-time integration in Unmanned Underwater Drones (UUD) applications, along with directions for future research have been presented.
Smart contract-based caching and data transaction optimization in mobile edge computing
2022, Knowledge-Based Systems
Citation Excerpt :
In this framework, providers and encrypted block hashes can be cached in edge computing service providers. As shown in Table 1, (1) Refs. [17–23] focus on caching in mobile edge computing environment, with the main goal to improve content caching hit rate as well as content download latency, but ignore the security of cached content and user privacy protection; (2) Refs. [24,25] emphasize on the profit of content providers when studying the data transaction problem of cached content in blockchain environment, with the primary objective is to achieve high caching efficiency as well as to maximize profits, but ignores the Quality of Service(QoS) of content caching services in a blockchain environment; (3) Refs. [26–30] focus on the problem of caching in a combined blockchain and mobile edge computing environment. The main goals are to protect user privacy and security and to improve the performance of user sharing-based caching, but ignore the response time of the caching server, and the transmission delay of the requested content.
The emergence of mobile edge computing can provide technical support for the development of Internet services and for coping with massive data traffic, thereby reducing network latency and ensuring efficient network operations and service delivery. However, the mobile edge computing environment is prone to data loss and privacy leakage, and data security and reliability cannot be guaranteed. The application of blockchain technology ensures the stability and dependability of data caching and transactions. In order to guarantee the security of data caching in the mobile edge computing environment and minimize the response time of caching servers, this paper proposes a decentralized data caching strategy in the mobile edge computing environment. The strategy uses a greedy algorithm to make the transmission delay of the requested content as small as possible under the multiple constraints of the storage space of each server and whether the content is cached on the server. To address the problem that data trading platforms are unable to afford the computation and storage of massive amounts of data and cannot guarantee that the data will not be leaked, this paper proposes a secure decentralized data transaction program. The scheme promotes the increase of transaction turnover rate and improves the revenue of both participating parties by establishing a buyer–seller matching algorithm. According to the experimental results, the proposed data caching strategy can improve the cache hit rate and reduce the transmission delay; the proposed data transaction solution can increase the revenue of both the data holder and the data buyer.
Design and implementation of NDN-based Ethereum blockchain
2022, Journal of Network and Computer Applications
Citation Excerpt :
The blockchain technology is utilized as a decentralized database for recording the transactions. Other applications includes PKI system (Lou et al., 2018), securing NDN vehicular networks (Khelifi et al., 2020), cache poisoning defense and access control (Lei et al., 2020). For a comprehensive review of the blockchain use cases in ICN, please refer to Asaf et al. (2020).
Blockchain technology allows public parties to agree on a common state without relying on a central authority. Despite it brings many innovative use cases, the technology is still in its early stage that needs improving on many aspects. One of the issues is to deliver blockchain data more efficiently. Named Data Networking (NDN), a new network paradigm, is designed to make content distribution with ease by enabling in-network caching and built-in multicasting, which blockchain technologies can take advantage. Moreover, blockchain may contribute to extending NDN application ecosystems including decentralized applications. Therefore, it is instrumental to have a working blockchain system that runs on NDN platform to supports its research and development.
In this work, we design and implement an NDN-based Ethereum blockchain platform. We propose new protocols for propagating blockchain data making full use of NDN features for the delivery of transactions and blocks. Our experiments show that the distribution of blockchain data in NDN is more efficient than that of IP network. The latency of block delivery is also reduced, which in turn supports tuning blockchain parameter for better security. Our developed blockchain client is freely distributed as an open-source project. We hope that it can provide a platform to foster blockchain research on NDN in the future.
Business Innovation based on artificial intelligence and Blockchain technology
2022, Information Processing and Management
Citation Excerpt :
It can promote a wider range of other developments and the use of AI (Filimonau & Naumova, 2020; Wang, Huang, Hsu & Yang, 2016). Artificial intelligence means machinery which has historically been designed to execute intellectual tasks (Khelifi et al., 2020). Blockchain is a decentralized computer network that records and stores data in a transparent and immutable ledger system, displaying an event sequence (Amin, Faragallah & El-Latif, 2010; Kaur, Garg, Kaddoum, Ahmed & Atiquzzaman, 2019).
The growing business evolution and the latest Artificial Intelligence (AI) make the different business practices to be enhanced by the ability to create new means of collaboration. Such growing technology helps to deliver brand services and even some new kinds of corporate interactions with customers and staff. AI digitization simultaneously emphasized businesses to focus on the existing strategies and regularly and early pursue new market opportunities. While digital technology research in the framework of business innovation is gaining greater interest and the privacy of data can be maintained by Blockchain technology. Therefore in this paper, Business Innovation based on artificial intelligence and Blockchain technology (BI-AIBT) has been proposed to enhance the business practices and maintain the secured interaction among the various clients. The collection of qualitative empirical data is made up of few primary respondents from two distinct business sectors. BI-AIBT has been evaluated by undertaking and exploring the difference and similarities between digitalization's impact on value development, proposal, and business capture. Besides, organizational capacities and staff skills interaction issues can be improved by BT. The experimental result suggests that digital transformation is usually regarded as essential and improves business innovation strategies. The numerical result proposed BI-AIBT improves the demand prediction ratio (97.1%), product quality ratio (98.3%), Business development ratio (98.9%), customer behavior analysis ratio (96.3%), and customer satisfaction ratio (97.2%).
Futuristic blockchain based scalable and cost-effective 5G vehicular network architecture
2021, Vehicular Communications
In the present era, smart and efficient vehicular network architectures are necessary due to fast technological advancements in vehicles. Many problems arise in these complex networks, which can be handled using blockchain and the Internet of Things (IoT). We proposed a comprehensive blockchain based 5G vehicular network architecture, which is cost-effective, scalable, secure, and handles various vehicular network issues in a smart city. The proposed architecture consists of all essential components like reputation system, incentive mechanism, and priority based techniques to handle different limitations in the literature. Simulations results for different scenarios depict the high execution cost of a single controller node, minor node, and ordinary node as 106305, 85864, and 65491 gas values and transaction cost as 130521, 109824, and 89195 gas values. The results depict the effectiveness of the proposed architecture in terms of scalability, time and cost-effectiveness.

View all citing articles on Scopus

Senlin Luo is currently a Deputy Director, Laboratory Director, and Professor of Information System and Security Countermeasures Experimental Center, Beijing Institute of Technology. His current research interests include Machine Learning, Medical Data Mining, and Information Security.

Boubakr Nour is a Ph.D. scholar at Beijing Institute of Technology, Beijing, China. His work focuses on next-generation networking and Internet. He is recipient of best paper award for IEEE GLOBECOM (2018), and the Excellent Student Award at Beijing Institute of Technology in 2016, 2017, and 2018 consecutively.

Hassine Moungla is an Associate Professor at the University of Paris Descartes and a member of the Paris Descartes Computer Science Laboratory (LIPADE). His research interests lie in the field of Wireless Area Body Networking for medical and health applications, Wireless Sensor Networking, QoS in WSN, Middleware for 5G Mobile and Sensor Networks.

Syed Hassan Ahmed is currently working at JMA Wireless as a Product Specialist for Distributed Antenna System (DAS), CBRS, Small Cell, and virtualized RAN product line. Previously, he was an Assistant Professor in the Department of Computer Science at Georgia Southern University, USA.

Mohsen Guizani is currently a Professor at the CSE Department in Qatar University. He is the author of nine books and more than 500 publications in refereed journals and conferences. He received the 2017 IEEE Communications Society WTC Recognition Award as well as the 2018 AdHoc Technical Committee Recognition Award.

^☆: This paper is for CAEE special section SI-icsa. Reviews processed and recommended for publication to the Editor-in-Chief by Associate Editor Dr. Debiao He.

View full text

A blockchain-based architecture for secure vehicular Named Data Networks☆

Highlights

Abstract

Graphical abstract

Introduction

Section snippets

Blockchain overview

Security and trust in vehicular NDN

BC-VNDN: Blockchain-based architecture for secure VNDN

Implementation and evaluation

Conclusion

Declaration of Competing Interest

Acknowledgments

Comput Commun

Comput Electr Eng

Veh Commun

Comput Secur

J Inf Secur Appl

Named data networking in vehicular ad hoc networks: state-of-the-art and challenges

IEEE Commun Surv Tutor

Security and privacy issues in vehicular named data networks: an overview

Mob Inf Syst

Named data networking (NDN) project

Technical Report NDN-0001

NNCP: a named data network control protocol for IoT applications

Proceedings of the IEEE conference on standards for communications and networking (CSCN)

Reputation-based Blockchain for secure NDN caching in vehicular networks

Proceedings of the IEEE conference on standards for communications and networking (CSCN)

A survey of blockchain technology applied to smart cities: research issues and challenges

IEEE Commun Surv Tutor