Enhancing vehicular communication security: A two-factor authentication protocol for V2V communications in IoV

As a crucial component of intelligent transportation systems, the Internet of Vehicles (IoV) facilitates the intelligent and efficient management of road traffic. The IoV aims to improve the safety and efficiency of road traffic by facilitating the exchange of real-time road information, optimizing the management of traffic flow and effectively reducing traffic accidents. However, since Telematics fails to secure communication between entities involved in communication, it is vulnerable to multiple attacks and faces serious security challenges such as identity forgery, message tampering, and privacy leakage. Currently available authentication schemes, limited by their reliance on a single verification method, often fall short in resisting attacks and protecting privacy, and they cannot meet the lightweight requirements. To address these challenges, this paper proposes a two-factor Authentication and Key Exchange(AKE) protocol for Vehicle-to-Vehicle (V2V) communication. The proposed protocol combines password-based and biometric authentication with homomorphic hashing and Physically Unclonable Functions (PUF) to achieve dual-factor authentication and secure key exchange. While ensuring high efficiency, the proposed protocol effectively mitigates various known attacks, significantly enhancing the overall security of IoV. We conducted both formal and informal security analyses of the proposed protocol, utilizing the widely recognized Scyther tool for the formal security verification of the Internet security protocol. Comparative analysis with existing advanced authentication protocols demonstrates that our proposed protocol better satisfies the security requirements of IoV.