Random Time-hopping Secure Ranging Strategy Against Distance-Reduction Attacks in UWB

Wenlong Gou,Chuanhang Yu,Gang Wu
2024-06-10
Abstract:In order to mitigate the distance reduction attack in Ultra-Wide Band (UWB) ranging, this paper proposes a secure ranging scheme based on a random time-hopping mechanism without redundant signaling overhead. Additionally, a secure ranging strategy is designed for backward compatibility with existing standards such as IEEE 802.15.4a/z, combined with an attack detection scheme. The effectiveness and feasibility of the proposed strategy are demonstrated through both simulation and experimental results in the case of the Ghost Peak attack, as demonstrated by Patrick Leu et al. The random time-hopping mechanism is verified to be capable of reducing the success rate of distance reduction attacks to less than 0.01%, thereby significantly enhancing the security of UWB ranging.
Signal Processing,Cryptography and Security
What problem does this paper attempt to address?
The paper mainly addresses the issue of distance reduction attacks in Ultra-Wide Band (UWB) ranging, proposing a secure ranging strategy based on a random time-hopping mechanism. In UWB ranging, distance reduction attacks such as the Ghost Peak attack inject attack signals during the legitimate signal reception process, forging or enhancing specific signal segments (such as Scrambled Timestamp Sequences, STS), thereby misleading the ranging results. These attacks exploit the predictability of the signal structure and vulnerabilities in the standard protocols, and security vulnerabilities still exist even under the latest IEEE 802.15.4z standard. To counter these attacks, the secure ranging scheme proposed in the paper includes the following key points: 1. **Random Time-Hopping Mechanism**: By introducing random delays in the transmission time of legitimate messages, the difficulty of aligning attack signals with legitimate signals is increased, thus avoiding distance reduction attacks. This method does not require modifications to the existing UWB physical layer standards, reducing the cost of practical deployment. 2. **Synchronization Scheme without Redundant Signaling Overhead**: To avoid additional signaling overhead, the paper proposes a scheme based on a pre-stored hash table of random hopping values and STs counter value retrieval, ensuring that the transmitter and receiver can synchronize the random hopping delay values in real-time without consuming extra signaling resources. 3. **Attack Detection Module**: Combining the principle of channel reciprocity and autoencoders, an attack detection module has been designed that can identify anomalies when an attack occurs, triggering a switch from the classic DS-TWR mode to the more secure but energy-consuming time-hopping DS-TWR mode. 4. **Performance Analysis and Verification**: Theoretical analysis and experimental results show that the proposed strategy significantly reduces the success rate of Ghost Peak attacks to a very low level, proving its effectiveness and robustness in different scenarios. In summary, the paper aims to enhance the security of UWB ranging by increasing the randomness of legitimate message transmission times, while maintaining compatibility with existing standards and low complexity. This strategy is of significant importance for defending against distance reduction attacks that rely on signal alignment.