pShare: Privacy-Preserving Ride-Sharing System with Minimum-Detouring Route
Abstract
:1. Introduction
- We propose a flexible, privacy-preserving online ride-sharing matching scheme pShare, which performs matching between a shared driver and group riders with minimum detouring distance, while protecting their location privacy against the ORH service provider.
- We propose a zone-based riders-filtering approach, which can divide surrounding requested riders on the similarity of their traveling routes. Meanwhile, we have designed a secure comparing protocol, which computes users’ encrypted data and outputs the ride-sharing results along with the minimum-detouring route.
- We evaluate the scheme using generated user datasets which obey real-world distribution. The experimental results demonstrate that pShare can achieve the functionality with high accuracy and practical efficiency.
2. Model and Problem Definitions
2.1. Problem Definition
2.2. System Model and Threat Model
- In our system, all entities are semi-honest. That means they always honestly follow the scheme but are curious about the information of users. So the goal of privacy is to prevent the RS or the CS from learning about users’ sensitive infomation, which includes precise locations and appointed time.
- There is no collusion between the RS and the CS because they are managed by different parties. Nor will the RS collude with the drivers because the RS is always a big company and takes much attention to the reputation.
- The communication channel between two entities is secure, which means no man-in-the-middle attack will be launched. Nobody can utilize channel information to locate users.
2.3. Design Goals
- Accuracy. The RS should perform matching over ride-requests and drivers’ status accurately. However, there exists a trade-off between accuracy and privacy level with different zone scales. Thus, under a proper privacy level, our goal of accuracy is that the RS should be able to find riders with minimum ATT in a big probability.
- Efficiency. The system should be efficient such that the responding time for riders and drivers is all acceptable in a real-time ride-matching scenario.
- Privacy. During the whole process of the scheme, the RS and CS should be prevented from learning the precise location information of users. Riders and drivers should likewise not learn each other’s information unless they are matched.
3. Preliminaries
3.1. Paillier Cryptosystem
3.2. Garbled Circuit
3.3. Data Packing
3.4. Road Travel Time Estimation
4. Proposed Approach
4.1. System Overview
4.2. Protocol Details
- Setup. In this procedure, the system needs to be initialized. First, the map is partitioned into zones, and the anchor point of each zone needs to be set up as described in III.D; the travel time between any two anchor points is precomputed. Then the CS generates the key pair and broadcasts to other parties in the system.
- Ride Request Submit. When a rider needs the ride-sharing service, he will first compute the estimated travel time and using the public road network and navigation system in his mobile device, where s and d are the locations of his start point and destination point. Then he encrypts them with and obtains and , respectively, in which represents the ciphertext form. After that, the rider selects the deadline of pick-up time and the deadline of drop-off time and encrypts them. Finally, the rider submits the ride-sharing request .
- Driver Location Update. Similarly, the driver needs to submit his current status to finish the matching process. First, he computes with his end device and , then submits his status , where l is the driver’s current location and v is the current vehicle load. If , namely that the driver has existing riders, the schedule of driver should also be submitted to the RS, which include onboard riders’ encrypted requests and the existing path. The definition of path is described in the following paper.
- Riders Filtering. To mitigate the computation overhead, the RS needs to filter the riders on their coarse locations of start point and destination point (i.e., the corresponding zones) as Algorithm 1.On receiving from a driver’s status D, the RS first checks if there are any existing riders. If , the RS searches the surrounding riders of within a fixed-size region and outputs the set . For each rider r of , the RS obtains the shortest route between and from precomputed data. Then the RS gets , which represents the zones sequence the route passes through. The RS selects M riders with the longest length of from as the root riders, meanwhile M corresponding rider sets are constructed. In addition, the RS computes the expanded path for each root rider of . As Figure 2 indicates, indicates the black area, and is computed as the grey area and the black area in order to include more potential riders. For the rest of the riders, the RS compares their paths and the directions with the root riders as follows, and riders with similar traveling routes will be added to the corresponding set.Algorithm 1 Request Filtering Algorithm (RFA). Input: D, Output: - 1:
- for do
- 2:
- if then
- 3:
- Add r into ;
- 4:
- end if
- 5:
- end for
- 6:
- Select M riders with max length of ;
- 7:
- for 1 to M do
- 8:
- Compute ;
- 9:
- Construct ;
- 10:
- Add to ;
- 11:
- end for
- 12:
- for every do
- 13:
- for 1 to M do
- 14:
- if and then
- 15:
- Add r to ;
- 16:
- end if
- 17:
- end for
- 18:
- end for
- 19:
- return
 For each rider except root riders, the RS judges if the following conditions are met:where (9) indicates is in the path of ; when (9) is met, the RS judges if they have similar directions with the appearing order of the start point and the destination point in (10), if . Once qualified, will be added to the set . Note that a rider could be added to more than one set.If and the driver has an existing schedule, the RS will refer the existing path to add potential riders to just one set as the Algorithm 2 does.Algorithm 2 Filtering Algorithm with Existing Schedule (FAES). Input: D, R Output: - 1:
- Construct the rider set
- 2:
- Compute with
- 3:
- for every do
- 4:
- if and then
- 5:
- Add r to ;
- 6:
- end if
- 7:
- end for
- 8:
- return
 
- Ride-Sharing Matching. In this module, the RS performs the ride-sharing matching with the CS in two phases. In the first phase, the RS and CS jointly compute the shortest path for all rider combinations. Each combination consists of v riders, where we usually choose . If there is no eligible combination of riders, the RS will try with smaller combinations. After that, a comparing phase is conducted to pick out the combination with minimum along with the shortest path.Phase 1 (Path Planning) For a rider combination C with v riders, the RS finds the shortest path as follows:For each rider in C, we regard as vertices of a graph, the travel time between and is the corresponding edge . Therefore, the path-planning problem is to find the shortest path on ciphertexts that passes through all vertices.Definition 1.Given a rider combination C, the ride-sharing path is a vector of vertices that indicates the pick-up or drop-off order. Each vertice represents a location point of together with a time constraint . The path should cover all nodes of the graph. A legal path has to meet the following constraints:To find the shortest path, the RS needs to compare all practical paths with their total traveling time. As depicted in Figure 3, for all paths that meet (11) and (12), the RS checks and selects the driving path that would not fail any deadline in (13). To do this, the RS computes the encrypted travel time for all edges using (3) and (8) and gets . Then the RS computes for each path as follows:in which represents the total time consumption to reach the node .For each path, the RS compares each point with its deadline time. Suppose are p-bit integers. Then the RS randomly chooses -bit length integers () and applies the following operations:The RS first packs and in (15), (16) and then adds the encrypted integers to each item of in (17) and obtains , which is the packing ciphertexts after blinding operation. Similarly, for the deadline time of each point , the RS generates random integers and executes the same blinding operations in (15)–(17).Then the RS sends and to the CS, and they jointly finish the judging for each path. On receiving and , the CS decrypts the ciphertext and unpacks the data. For each path , the RS holds and ; the CS holds and ; and they execute the garbled circuit as shown in Figure 4, in which the SCMP circuit is shown in Figure 5. CMP, MUX, SUB, and MIN denote a comparator circuit, a multiplexer circuit, a subtractor circuit, and a minimum circuit, respectively. We present the details of the circuit in Algorithm 3. The circuit first restores the real values from blind values (1) and then compares the arriving time and the deadline time for each point (2–8). Only if all deadlines are satisfied will the circuit output the total time consumption of the ride-sharing process (9–10), or the circuit outputs a big enough integer (12).Then for all paths , the RS and CS jointly execute a path-planning circuit to select the path with minimum traveling time. We present the circuit in Figure 6.Algorithm 3 The time-comparing circuit . Input: , , , Output: or - 1:
- Compute and
- 2:
- for do
- 3:
- if then
- 4:
- 5:
- else
- 6:
- 7:
- end if
- 8:
- end for
- 9:
- if then
- 10:
- return
- 11:
- else
- 12:
- return
- 13:
- end if
 Phase 2. (Riders Selection) In this phase, for all rider combinations , the system compares their and outputs the best combination, in which is the total number of combinations, and is the total detouring time of all riders. First, the RS computes the of each combination. For each rider , the detouring time is the traveling time difference between the time consumption of driving in the current path and directly to the destination. The of is presented as the following equation:For example, the of the path in Figure 3 can be computed as:Moreover, we can obtain the corresponding ciphertext as:For each combination , the RS computes the , then packs them and obtains . As with the previous blinding operations, the RS generates random integers , then computes the blinding ciphertexts and sends it to the CS. After decryption and unpacking operations, the RS and the CS execute the RCS algorithm to select out the best rider combination as Algorithm 4.Finally, the RS obtains the result and establishes a secure communication channel between the driver and the riders in combination so that they can communicate for pick-up details.Algorithm 4 Rider Combination Selection (RCS). Input: RS: ; CS: Output: The combination with minimum - 1:
- 2:
- for do
- 3:
- if then
- 4:
- 5:
- else
- 6:
- if then
- 7:
- 8:
- end if
- 9:
- end if
- 10:
- end for
 
5. Privacy and Security Analysis
6. Evaluation
6.1. Experimental Setup
6.2. Experiment Results
7. Related Work
7.1. Privacy-Preserving Ride-Matching
7.2. Privacy-Preserving Ride-Sharing
8. Conclusions
Author Contributions
Funding
Institutional Review Board Statement
Informed Consent Statement
Data Availability Statement
Conflicts of Interest
References
- Cramer, J.; Krueger, A.B. Disruptive Change in the Taxi Business: The Case of Uber; Working Paper 22083; American Economic Review: Pittsburgh, PA, USA, 2016. [Google Scholar] [CrossRef]
- Available online: https://www.didiglobal.com/ (accessed on 23 October 2021).
- Belk, R. You are what you can access: Sharing and collaborative consumption online. J. Bus. Res. 2014, 67, 1595–1600. [Google Scholar] [CrossRef]
- Caulfield, B. Estimating the environmental benefits of ride-sharing: A case study of Dublin. Transp. Res. Part D Transp. Environ. 2009, 14, 527–531. [Google Scholar] [CrossRef] [Green Version]
- Available online: https://www.scmp.com/tech/big-tech/article/3139786/china-takes-didi-app-stores-two-days-after-beijing-announces (accessed on 23 October 2021).
- Pham, A.; Dacosta, I.; Jacot-Guillarmod, B.; Huguenin, K.; Hajar, T.; Tramèr, F.; Gligor, V.; Hubaux, J.P. Privateride: A privacy-enhanced ride-hailing service. Proc. Priv. Enhancing Technol. 2017, 2017, 38–56. [Google Scholar] [CrossRef] [Green Version]
- Pham, A.; Dacosta, I.; Endignoux, G.; Pastoriza, J.R.T.; Huguenin, K.; Hubaux, J.P. ORide: A Privacy-Preserving yet Accountable Ride-Hailing Service. In Proceedings of the 26th USENIX Security Symposium (USENIX Security 17), Vancouver, BC, Canada, 16–18 August 2017; USENIX Association: Vancouver, BC, USA, 2017; pp. 1235–1252. [Google Scholar]
- Luo, Y.; Jia, X.; Fu, S.; Xu, M. pRide: Privacy-Preserving Ride Matching Over Road Networks for Online Ride-Hailing Service. IEEE Trans. Inf. Forensics Secur. 2019, 14, 1791–1802. [Google Scholar] [CrossRef]
- Yu, H.; Shu, J.; Jia, X.; Zhang, H.; Yu, X. lpRide: Lightweight and Privacy-Preserving Ride Matching Over Road Networks in Online Ride Hailing Systems. IEEE Trans. Veh. Technol. 2019, 68, 10418–10428. [Google Scholar] [CrossRef]
- Wang, X.; Mu, Y.; Chen, R. One-round privacy-preserving meeting location determination for smartphone applications. IEEE Trans. Inf. Forensics Secur. 2016, 11, 1712–1721. [Google Scholar] [CrossRef]
- Su, J.S.; Cao, D.; Wang, X.F.; Sun, Y.P.; Hu, Q.L. Attribute-based encryption schemes. J. Softw. 2011, 22, 1299–1315. [Google Scholar] [CrossRef]
- Aïvodji, U.M.; Huguenin, K.; Huguet, M.J.; Killijian, M.O. Sride: A privacy-preserving ridesharing system. In Proceedings of the 11th ACM Conference on Security & Privacy in Wireless and Mobile Networks, Stockholm, Sweden, 18–20 June 2018; pp. 40–50. [Google Scholar]
- He, Y.; Ni, J.; Wang, X.; Niu, B.; Li, F.; Shen, X. Privacy-preserving partner selection for ride-sharing services. IEEE Trans. Veh. Technol. 2018, 67, 5994–6005. [Google Scholar] [CrossRef]
- Hallgren, P.; Orlandi, C.; Sabelfeld, A. PrivatePool: Privacy-preserving ridesharing. In Proceedings of the 2017 IEEE 30th Computer Security Foundations Symposium (CSF), Santa Barbara, CA, USA, 21–25 August 2017; pp. 276–291. [Google Scholar]
- Paillier, P. Public-key cryptosystems based on composite degree residuosity classes. In International Conference on the Theory and Applications of Cryptographic Techniques; Springer: Berlin/Heidelberg, Germany, 1999; pp. 223–238. [Google Scholar]
- Yao, C.C. How to generate and exchange secrets. In Proceedings of the 27th Annual Symposium on Foundations of Computer Science, Toronto, ON, Canada, 27–29 October 1986. [Google Scholar]
- Huang, Y.; Evans, D.; Katz, J.; Malka, L. Faster secure two-party computation using garbled circuits. In Proceedings of the USENIX Security Symposium, San Francisco, CA, USA, 8–12 August 2011; Volume 201, pp. 331–335. [Google Scholar]
- Kolesnikov, V.; Schneider, T. Improved garbled circuit: Free XOR gates and applications. In International Colloquium on Automata, Languages, and Programming; Springer: Berlin/Heidelberg, Germany, 2008; pp. 486–498. [Google Scholar]
- Yu, H.; Jia, X.; Zhang, H.; Yu, X.; Shu, J. PSRide: Privacy-preserving shared ride matching for online ride hailing systems. IEEE Trans. Dependable Secur. Comput. 2019, 18, 1425–1440. [Google Scholar] [CrossRef]
- Lindell, Y.; Pinkas, B. A proof of security of Yao’s protocol for two-party computation. J. Cryptol. 2009, 22, 161–188. [Google Scholar] [CrossRef]
- Yu, H.; Zhang, H.; Yu, X.; Du, X.; Guizani, M. PGRide: Privacy-Preserving Group Ridesharing Matching in Online Ride Hailing Services. IEEE Internet Things J. 2020, 8, 5722–5735. [Google Scholar] [CrossRef]
- Available online: www.openstreetmap.org (accessed on 23 October 2021).
- Available online: www.cs.uic.edu (accessed on 23 October 2021).
- Available online: https://github.com/kunerd/jpaillier (accessed on 23 October 2021).
- Available online: https://github.com/yhuang912/FastGC (accessed on 23 October 2021).
- Shokri, R.; Theodorakopoulos, G.; Le Boudec, J.Y.; Hubaux, J.P. Quantifying location privacy. In Proceedings of the 2011 IEEE Symposium on Security and Privacy, Oakland, CA, USA, 22–25 May 2011; pp. 247–262. [Google Scholar]
- Niu, B.; Li, Q.; Zhu, X.; Cao, G.; Hui, L. Achieving k-anonymity in privacy-aware location-based services. In Proceedings of the IEEE INFOCOM 2014—IEEE Conference on Computer Communications, Toronto, ON, Canada, 27 April–2 May 2014. [Google Scholar]
- Damiani, M.L.; Bertino, E.; Silvestri, C. The PROBE Framework for the Personalized Cloaking of Private Locations. Trans. Data Priv. 2010, 3, 123–148. [Google Scholar]
- Luo, Y.; Jia, X.; Duan, H.; Wang, C.; Xu, M.; Fu, S. pRide: Private Ride Request for Online Ride Hailing Service with Secure Hardware Enclave. In Proceedings of the 2019 IEEE/ACM 27th International Symposium on Quality of Service (IWQoS), Phoenix, AZ, USA, 24–25 June 2019; pp. 1–10. [Google Scholar] [CrossRef]
- Sherif, A.B.; Rabieh, K.; Mahmoud, M.M.; Liang, X. Privacy-preserving ride sharing scheme for autonomous vehicles in big data era. IEEE Internet Things J. 2016, 4, 611–618. [Google Scholar] [CrossRef]
- Li, M.; Zhu, L.; Lin, X. Efficient and privacy-preserving carpooling using blockchain-assisted vehicular fog computing. IEEE Internet Things J. 2018, 6, 4573–4584. [Google Scholar] [CrossRef]
- Freedman, M.J.; Nissim, K.; Pinkas, B. Efficient Private Matching and Set Intersection; Springer: Berlin/Heidelberg, Germany, 2004. [Google Scholar]
- Kerschbaum, F. Outsourced private set intersection using homomorphic encryption. In Proceedings of the ASIACCS ’12—7th ACM Symposium on Information, Computer and Communications Securit, Seoul, Korea, 2–4 May 2012. [Google Scholar]








| Description | pShare | ORide [7] | pRide [8] | PSRide [19] | PrivatePool [14] | PGRide [21] | 
|---|---|---|---|---|---|---|
| Ride-sharing | Yes | No | No | Yes | Yes | Yes | 
| Traveling cost | Road traveling time | Euclidean distance | Road traveling time | Road traveling time | Euclidean distance | Euclidean distance | 
| Group matching | Yes | No | No | No | No | Yes | 
| Minimum ATT | Yes | ∖ | ∖ | Yes | Yes | No | 
| Size of () | pShare Scheme | |||||
|---|---|---|---|---|---|---|
| Rider | Driver | Server | ||||
| Comm. (KBs) | Comp. (ms) | Comm. (KBs) | Comp. (ms) | Comm. (MBs) | Comp. (s) | |
| 25 | 0.51 | 26 | 0.13 + 0.52 * | 11 | 0.48 | 3.2 | 
| 50 | 0.51 | 26 | 0.13 + 0.52 * | 11 | 1.64 | 10.1 | 
| 75 | 0.51 | 26 | 0.13 + 0.52 * | 11 | 3.66 | 15.8 | 
| 100 | 0.51 | 26 | 0.13 + 0.52 * | 11 | 6.25 | 23.3 | 
| 125 | 0.51 | 26 | 0.13 + 0.52 * | 11 | 10.76 | 30.3 | 
| 150 | 0.51 | 26 | 0.13 + 0.52 * | 11 | 18.48 | 39.4 | 
| Publisher’s Note: MDPI stays neutral with regard to jurisdictional claims in published maps and institutional affiliations. | 
© 2022 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/).
Share and Cite
Huang, J.; Luo, Y.; Xu, M.; Hu, B.; Long, J. pShare: Privacy-Preserving Ride-Sharing System with Minimum-Detouring Route. Appl. Sci. 2022, 12, 842. https://doi.org/10.3390/app12020842
Huang J, Luo Y, Xu M, Hu B, Long J. pShare: Privacy-Preserving Ride-Sharing System with Minimum-Detouring Route. Applied Sciences. 2022; 12(2):842. https://doi.org/10.3390/app12020842
Chicago/Turabian StyleHuang, Junxin, Yuchuan Luo, Ming Xu, Bowen Hu, and Jian Long. 2022. "pShare: Privacy-Preserving Ride-Sharing System with Minimum-Detouring Route" Applied Sciences 12, no. 2: 842. https://doi.org/10.3390/app12020842
APA StyleHuang, J., Luo, Y., Xu, M., Hu, B., & Long, J. (2022). pShare: Privacy-Preserving Ride-Sharing System with Minimum-Detouring Route. Applied Sciences, 12(2), 842. https://doi.org/10.3390/app12020842
 
         
                                                


 
       