Secure Electronic Ticket Scheme for ITS

• Main Authors: Yu-Tsai Hsu, 許有財
• Other Authors: Wei-Bin Lee
• Format: Others
• Language: zh-TW
• Published: 2006
• Online Access: http://ndltd.ncl.edu.tw/handle/18553002265276122711

碩士 === 逢甲大學 === 資訊工程所 === 94 === The amount of vehicles has grown up rapidly in many countries in recent years. The capacity of freeways is very limited. Broadening driveways or building new roads haven’t effectively prevented the traffic from worsening. How to use advanced technology to make the efficiency of communications and transportation has become an important policy for many countries. Especially, how to use the Electronic Toll Collection, ETC to enhance the transportation efficiency on traffic has become an essential issue. In 2003, Matsuo and Ogata proposed a scheme of ETC which was suitable for Intelligent Transport System, ITS. The purpose was to solve the inefficiency caused by complicated communication steps and long verification of payments in the past. But, we found the security flaws in their scheme. That is the ticket user can not verify if the ticket seed is valid or not. It was occurred by this method without the authentication from user to issuer. It caused the risk of user to get the forge ticket seed. Specially, at the period when refluxing the tickets, the ticket issuer do not have to verification identification on the shops, which causes attackers could to intercept the tickets, and acted be the legal shops to get the money successfully. Therefore, in this paper we point out the risk to be attack on Matsuo and Ogata’s method, and we also proposed how an improvement method. We not only to keep the original advantages of Matsuo and Ogata’s method but also avoid those two security concerns we brought up to strengthen and improve the security of the use of electronic ticket on ITS.