Securing smartphone based ITS

Abstract

GPS-equipped smartphones present several advantages for data acquisition in Intelligent Transportation Systems (ITS), compared to solutions that require a new communication infrastructure. However, there are still significant challenges to meet before deployment. Traffic information and location samples must be collected in a secure manner, to not jeopardize the system operation. Equally important, users must be assured about their privacy, notably the protection of information on their whereabouts. To address this two-fold problem, we propose extending the Generic Bootstrapping Architecture (GBA) with anonymous authentication. Identity and location information are protected and separated, and location samples cannot be linked to each other and to any specific user. Thus, our scheme protects users even in the case of a compromised ITS server. Initial evaluation results indicate the feasibility of our approach with off-the-self mobile platforms.