Researchers have introduced an Ethereum-based fully distributed authentication mechanism that could significantly enhance security and efficiency in vehicular ad-hoc networks (VANETs), addressing long-standing challenges in certificate management, single points of failure, and real-time authentication latency. Published in Blockchain , this work presents EBDA, a novel framework that replaces traditional PKI certificate systems with a blockchain-maintained Graph of Trust (GoT), enabling certificate-free, fully decentralized identity authentication for vehicles.)
Secure and efficient identity authentication is a fundamental requirement for VANETs, where vehicles must communicate reliably in highly dynamic environments while preserving conditional privacy. Traditional approaches relying on public key infrastructures (PKI) suffer from complex certificate management, high overhead, and single points of failure. To overcome these barriers, the research team led by Chunyan Liu at Lanzhou University of Technology, with contributors including Hongkun Tian, Tingting Feng, Fuliang Lin, and Xiaoqin Feng (corresponding author), developed a complete Ethereum-based fully distributed authentication mechanism (EBDA) for VANETs.
"The core innovation of EBDA is to replace the traditional PKI certificate system with a blockchain-maintained Graph of Trust (GoT)," explains the research team. "Through three dedicated smart contracts deployed on three separate blockchains—identity management blockchain (IMBC), pseudonym registration blockchain (PBC), and pseudonym revocation blockchain (PRBC)—EBDA fully decentralizes the management of vehicle identities and pseudonyms." Vehicles use pseudonyms to preserve privacy in vehicle-to-vehicle communications, while authentication is achieved certificate-free via transitive trust within the GoT.
A key innovation lies in handling latency-sensitive operations. While blockchain operations are confined to low-frequency control-plane procedures such as vehicle registration, pseudonym issuance, and revocation, time-critical message authentication is performed entirely off-chain through local pseudonym verification and signature checking. This design meets VANETs' millisecond-level latency requirements while maintaining full decentralization and accountability.
The prototype implementation on a simulated Ethereum network (Ganache) combined with VANET simulation (Veins, OMNet++, SUMO) demonstrated that EBDA significantly reduces authentication latency by at least 22.93% compared with representative blockchain-assisted schemes (BPAS and TBAA), while maintaining low computational and storage overhead. The experiments also showed that vehicle verification latency remains stable at approximately 18 ms regardless of the number of vehicle owners in the GoT (tested from 20 to 100 owners), illustrating the scalability of the approach in dense urban scenarios.
To ensure robust security, the researchers conducted comprehensive security analysis covering message authentication, conditional privacy preservation, replay attack resistance, man-in-the-middle attack resistance, and DDoS attack resistance. The pseudonym generation algorithm, based on a cross-coupled diagonal tent mapping PRNG, passed all NIST statistical randomness tests, ensuring pseudonym unforgeability.
"The proposed EBDA addresses the centralization and inefficiency issues of PKI-based methods," notes the research team. "It leverages blockchain and smart contracts to ensure secure and efficient authentication." Beyond the architecture itself, the study also discusses how GoT initialization is a one-time or low-frequency governance process decoupled from time-critical authentication, with trust relationships established among independent entities through mutually signed statements rather than being issued by a single authority.
Looking ahead, the team plans to extend the GoT to incorporate reputation-based adaptive trust management, enabling dynamic revocation of malicious vehicle identities without relying on trusted authorities during the revocation phase. The researchers also plan to add cross-domain authentication to enable secure interactions between vehicles and the external Internet of Things. The authors believe that this research could lay the groundwork for secure, efficient, and fully decentralized authentication systems, enabling safer and more reliable vehicular communication in future intelligent transportation systems.
This paper ” An ethereum-based fully distributed authentication mechanism in VANETs ,” was published in Blockchain . Liu C, Tian H, Feng T, Lin F, Feng X. An ethereum-based fully distributed authentication mechanism in VANETs. Blockchain 2026(1):0003, https://doi.org/10.55092/blockchain20260003.
Blockchain
Experimental study
Not applicable
An ethereum-based fully distributed authentication mechanism in VANETs
25-Mar-2026