Schnorr Approval-Based Secure and Privacy-Preserving IoV Data Aggregation
Rui Liu, Jianping Pan
TL;DR
SADA introduces a two-layer IoV data aggregation framework that enables privacy-preserving data collection without heavy vehicle-side cryptography. It combines recoverable masking with a Schnorr-based data approval mechanism (MuSig-inspired) to ensure authenticity of aggregated data while preserving vehicle identities and trajectories behind cluster heads. The framework includes a recoverable masking protocol, a data-approval generation process, pre-checking, cluster-key auditing, and a rigorous ROM-based security analysis, achieving low computation and communication overhead for vehicles. The approach eliminates the need for pseudonym management and provides clear liability separation, making it practical for real-world IoV deployments while defending against fake data injection and input invalidation attacks.
Abstract
Secure and privacy-preserving data aggregation in the Internet of Vehicles (IoV) continues to be a focal point of interest in both the industry and academia. Aiming at tackling the challenges and solving the remaining limitations of existing works, this paper introduces a novel Schnorr approval-based IoV data aggregation framework based on a two-layered architecture. In this framework, a server can aggregate the IoV data from clusters without inferring the raw data, real identity and trajectories of vehicles. Notably, we avoid incorporating the widely-accepted techniques such as homomorphic encryption and digital pseudonym to avoid introducing high computation cost to vehicles. We propose a novel concept, data approval, based on the Schnorr signature scheme. With the approval, the fake data injection attack carried out by a cluster head can be defended against. The separation of liability is achieved as well. The evaluation shows that the framework is secure and lightweight for vehicles in terms of the computation and communication costs.