A Survey of Security Threats and Trust Management in Vehicular Ad Hoc Networks

This paper presents a survey of state-of-the-art trust models for Vehicular Ad Hoc Networks (VANETs). Trust management plays an essential role in isolating malicious insider attacks in VANETs which traditional security approaches fail to thwart. To this end, many trust models are presented; some of them only address trust management, while others address security and privacy aspects besides trust management. This paper first reviews, classifies, and summarizes state-of-the-art trust models, and then compares their achievements. From this literature survey, our reader will easily identify two broad classes of trust models that exist in literature, differing primarily in their evaluation point. For example, most trust models follow receiver-side trust evaluation and to the best of our knowledge, there is only one trust model for VANETs which evaluates trust at the sender-side unless a dispute arises. In the presence of a dispute, a Roadside Unit (RSU) rules on the validity of an event. In receiver-side trust models, each receiver becomes busy while computing the trust of a sender and its messages upon the messages’ arrival. Conversely, in the sender-side class, receivers are free from any kind of computation as the trust is verified at the time the message is announced. Also, vehicles can quickly act on the information, such as taking a detour to an alternate route, as it supports fast decision-making. We provide a comparison between these two evaluation techniques using a sequence diagram. We then conclude the survey by suggesting future work for sender-side evaluation of trust in VANETs. Additionally, the challenges (real-time constraints and efficiency) are emphasized whilst considering the deployment of a trust model in VANETs

💡 Research Summary

The paper provides a comprehensive survey of trust management schemes for Vehicular Ad Hoc Networks (VANETs), focusing on how trust is evaluated and the implications of different evaluation points. After introducing VANETs as a cornerstone of Intelligent Transportation Systems, the authors outline the limitations of conventional security mechanisms (authentication, encryption, etc.) in dealing with insider attacks, thereby motivating the need for trust management.

The authors first describe the VANET architecture—roadside units (RSUs), onboard units (OBUs), and optional central/trust authorities (CA/TA)—and enumerate typical communication patterns (single‑hop beacons, multi‑hop emergency alerts) and the IEEE 802.11p/DSRC physical layer. They then list the security requirements (availability, authentication, privacy, integrity, non‑repudiation, real‑time constraints, efficiency) and classify attacks (external vs. internal, active vs. passive, DDoS, Sybil, false‑information injection, etc.).

The core of the survey covers trust models published between 2005 and 2024. Selection criteria include citation impact, publication year, and technological diversity. Each model is examined against a common set of attributes: data collection method (direct observation, indirect recommendation, RSU/CA feedback), evaluation process (receiver‑side vs. sender‑side), underlying technology (blockchain, machine learning, fuzzy logic, Bayesian networks, etc.), threat mitigation capabilities, simulation environment, and performance metrics (communication overhead, decision latency, detection accuracy). The authors organize the models into two principal families based on the evaluation point.

Receiver‑side evaluation: In this traditional approach, every receiving vehicle computes a trust score for the sender upon message arrival. The score typically fuses multiple metrics such as historical behavior, neighbor recommendations, event frequency, and context information. While this yields fine‑grained, locally informed decisions, it imposes significant computational load on resource‑constrained OBUs and increases latency—critical drawbacks in high‑speed, low‑latency VANET scenarios.

Sender‑side evaluation: A comparatively novel paradigm where trust is assigned to the sender beforehand by a trusted infrastructure (RSU or central authority). The trust credential is attached to the message as a digital signature or token. Receivers merely verify the credential, eliminating per‑message trust computation. This reduces decision time and network traffic, enabling faster reactions such as immediate detours. The survey identifies only a single existing work that adopts pure sender‑side evaluation, and that work resorts to RSU arbitration only when a dispute arises. Consequently, the authors argue that a systematic, continuous sender‑side framework is largely unexplored.

The paper juxtaposes the two families using sequence diagrams and tabular comparisons (Tables 1‑4). It highlights trade‑offs: blockchain‑based schemes provide immutable audit trails but suffer from block‑generation delay and storage overhead; machine‑learning‑based schemes adapt to dynamic environments yet risk over‑fitting and require labeled data; fuzzy or Bayesian methods are lightweight but may deliver lower detection accuracy.

A critical observation is that most surveyed models rely on simulation tools (OMNeT++, Veins, SUMO) and lack validation in real‑world testbeds, raising questions about scalability and robustness under realistic radio conditions, mobility patterns, and heterogeneous hardware.

The authors conclude by emphasizing the potential of sender‑side trust evaluation for meeting VANET’s stringent real‑time and efficiency constraints. They propose future research directions: (1) designing distributed credential issuance mechanisms (e.g., lightweight blockchain or DAG structures) that can operate on OBUs; (2) enabling collaborative dispute resolution among multiple RSUs to avoid single points of failure; (3) integrating zero‑knowledge proofs to preserve driver privacy while still proving sufficient trustworthiness; and (4) conducting extensive field trials to corroborate simulation results.

Overall, the survey systematically classifies existing VANET trust models, clarifies the fundamental distinction between receiver‑side and sender‑side evaluation, and outlines concrete pathways for advancing trust management toward scalable, low‑latency, and privacy‑preserving deployments in future intelligent transportation systems.