TY - JOUR
T1 - A2RID -Anonymous Direct Authentication and Remote Identification of Commercial Drones
AU - Wisse, Eva
AU - Tedeschi, Pietro
AU - Sciancalepore, Savio
AU - Di Pietro, Roberto
N1 - Publisher Copyright:
IEEE
PY - 2023/6/15
Y1 - 2023/6/15
N2 - The recent worldwide introduction of RemoteID (RID) regulations forces all unmanned aircrafts (UAs), also known as drones, to broadcast in plaintext on the wireless channel their identity and real-time location, for accounting and monitoring purposes. Although improving drones' monitoring and situational awareness, the RID rule also generates significant privacy concerns for UAs' operators, threatened by the ease of tracking of UAs and related confidentiality and privacy concerns connected with the broadcasting of plaintext identity information. In this article, we propose anonymous direct authentication and remote identification (A2RID), a protocol suite for A2RID of heterogeneous commercial UAs. 2RID integrates and adapts protocols for anonymous message signing to work in the UA domain, coping with the constraints of commercial drones and the tight real-time requirements imposed by the RID regulation. Overall, the protocols in the 2RID suite allow a UA manufacturer to pick the configuration that best suits the capabilities and constraints of the drone, i.e., either a processing-intensive but memory-lightweight solution (namely, CS-2RID) or a computationally friendly but memory-hungry approach (namely, DS-2RID). Besides formally defining the protocols and formally proving their security in our setting, we also implement and test them on real heterogeneous hardware platforms, i.e., the Holybro X-500 and the ESPcopter, releasing open-source the produced code. For all the protocols, we demonstrated experimentally the capability of generating anonymous RemoteID messages well below the time bound of 1 s required by RID, while at the same time having quite a limited impact on the energy budget of the drone.
AB - The recent worldwide introduction of RemoteID (RID) regulations forces all unmanned aircrafts (UAs), also known as drones, to broadcast in plaintext on the wireless channel their identity and real-time location, for accounting and monitoring purposes. Although improving drones' monitoring and situational awareness, the RID rule also generates significant privacy concerns for UAs' operators, threatened by the ease of tracking of UAs and related confidentiality and privacy concerns connected with the broadcasting of plaintext identity information. In this article, we propose anonymous direct authentication and remote identification (A2RID), a protocol suite for A2RID of heterogeneous commercial UAs. 2RID integrates and adapts protocols for anonymous message signing to work in the UA domain, coping with the constraints of commercial drones and the tight real-time requirements imposed by the RID regulation. Overall, the protocols in the 2RID suite allow a UA manufacturer to pick the configuration that best suits the capabilities and constraints of the drone, i.e., either a processing-intensive but memory-lightweight solution (namely, CS-2RID) or a computationally friendly but memory-hungry approach (namely, DS-2RID). Besides formally defining the protocols and formally proving their security in our setting, we also implement and test them on real heterogeneous hardware platforms, i.e., the Holybro X-500 and the ESPcopter, releasing open-source the produced code. For all the protocols, we demonstrated experimentally the capability of generating anonymous RemoteID messages well below the time bound of 1 s required by RID, while at the same time having quite a limited impact on the energy budget of the drone.
KW - Applied Security and Privacy
KW - Drones
KW - Encryption
KW - Privacy
KW - Privacy-Enhancing Technologies
KW - Protocols
KW - Public key
KW - Regulation
KW - Security
KW - Unmanned Aerial Vehicles
KW - unmanned aerial vehicles
KW - privacy
KW - security
KW - Applied security and privacy
KW - privacy-enhancing technologies
UR - http://www.scopus.com/inward/record.url?scp=85148423845&partnerID=8YFLogxK
U2 - 10.1109/JIOT.2023.3240477
DO - 10.1109/JIOT.2023.3240477
M3 - Article
AN - SCOPUS:85148423845
SN - 2327-4662
VL - 10
SP - 10587
EP - 10604
JO - IEEE Internet of Things Journal
JF - IEEE Internet of Things Journal
IS - 12
M1 - 10029376
ER -