Design and implementation of the idemix anonymous credential system
Proceedings of the 9th ACM conference on Computer and communications security
Hi-index | 0.00 |
Upcoming years will see a massive deployment of electric vehicles and, combined with this, of charging infrastructure. This will require protocols and standards that will control authentication, authorization, and billing of electric-vehicle charging. The ISO/IEC 15118 protocol that addresses the communication between the charging station and the vehicle is going to play an important role, at least in Europe. While it foresees security protection, there are no significant mechanisms for privacy protection in place. In this paper, we investigate the privacy protection of ISO/IEC 15118 and the surrounding charging and payment infrastructure by means of a Privacy Impact Assessment (PIA). Based on this we propose modular extensions of the protocol applying state-of-the-art Privacy Enhancing Technologies like anonymous credentials to come to a system with maximum privacy protection. We conducted a second PIA to show the benefits to privacy protection that our POPCORN protocol provides compared to the original ISO/IEC 15118. We also describe a proof-of-concept implementation of our system based on a model of electric vehicle and charging station that shows the feasibility of our approach and allows a first preliminary analysis of performance and other issues.