Qing-Hua Zheng,David L. Pepyne,Qing Wang

DOI: https://doi.org/10.1007/bf02973455

IF: 1.871

2004-01-01

Journal of Computer Science and Technology

Abstract:Wireless transmission is becoming increasing ubiquitous, but there is a big black hole in the security of this kind of network. Although IEEE 802.11 provides an optional Wired Equivalent Privacy (WEP) to implement the authentication and confidentiality, it leaves a lot of vulnerabilities and threats. This paper proposes a protocol called SPRNG for wireless data-link layer security. SPRNG is based on the sender and receiver who generate in a synchronized way a pseudo-random number sequence. In each transmission, the sender and receiver use a pair of random numbers, one for data frame authentication, and the other for encryption key. The random numbers are used as "one-time passwords" for sender authentication and as fresh encryption keys for each frame. SPRNG is designed to be compatible with the existing 802.11 products. Like WEP, the current 802.11 security protocol, SPRNG uses a symmetric key as its seed. SPRNG has already been simulated and tested in experiment, it shows that SPRNG has stronger security than WEP because it reveals little information for attackers. The key problem of SPRNG, synchronization loss problem, is also presented. Though motivated by wireless security, SPRNG is generic for many other applications, especially in the point to point communication.

Jianqing Fu,Chunming Wu,XiaoPing Chen,Rong Fan

DOI: https://doi.org/10.1109/iccet.2010.5485559

2010-01-01

Abstract:Nowadays, the use of Radio Frequency Identification (RFID) systems in industry and stores has increased. Nevertheless, some of these systems present problems that may discourage potential users. Hence, high confidence and efficient privacy protocols are urgently needed. Previous studies to achieve privacy authentication can be grouped into tree-based and synchronization approaches. But all of the tree-based designs are not suitable to large scale RFID systems, and most of the synchronization designs have security flaws. So in this paper, we propose a scalable pseudo random RFID private mutual authentication protocol (SPRA) to archive both scalable and security. The analysis results show that SPRA effectively enhances the security protection for RFID private authentication, and has the authentication efficiency of O(1).

Ruixue Sun,Zhiguo Shi,Rongxing Lu,Jian Qiao,Xuemin (Sherman) Shen

DOI: https://doi.org/10.1109/WCSP.2012.6542795

2012-01-01

Abstract:The 60 GHz ultra-high-speed Wireless Personal Area Network (WPAN) has received considerable attention in recent years. Information security, which ensures secure communication within the network, is of particular importance. In this paper, we propose an efficient lightweight key management scheme for 60 GHz WPAN, which deploys secure encryption algorithms and one-way hash function to achieve efficient key exchange and updating managements. Detailed security analysis has shown its security provisions. In addition, performance evaluation is also provided to demonstrate its efficiency in terms of session key distribution and group key updating.

Jianqing Fu,Xiaoning Jiang,Lingdi Ping,Rong Fan

DOI: https://doi.org/10.1109/icime.2009.14

2009-01-01

Abstract:In this paper, we identify a vulnerability of IEEE 802.11 wireless Mesh LANs in which a compromised mesh point can still receive data from other mesh points. Then we propose a new protocol that can counter this attack by considering the effective period of both the mesh points (MPs) when decide the lifetime of the key shared between them. We also amend 802.11s draft in order not to bring about a fundamental change to the whole key hierarchy, and propose a protocol to refresh the shared key when it expired. Then we prove the security of the protocol using protocol composition logic (PCL).

Yanfei Fan,Bin Lin,Yixin Jiang,Xuemin (Sherman) Shen

DOI: https://doi.org/10.1109/glocom.2008.ecp.891

2008-01-01

Abstract:In this paper, we propose an efficient privacy-preserving scheme for secure packet transmission at wireless link layer. The proposed scheme is constructed by using hash values in reverse hash chains as interface identifiers. It can successfully and efficiently resist the Media Access Control (MAC) address based attacks, such as flow tracking and traffic analysis, which are launched by either outside or even inside attackers. In addition, some optimization techniques are also introduced to further improve the efficiency of the proposed scheme. The extensive analysis and simulations demonstrate the enhanced security and efficiency of the proposed scheme.

Zang Li,Wenyuan Xu,Robert D. Miller,Wade Trappe

DOI: https://doi.org/10.1145/1161289.1161297

2006-01-01

Abstract:Although conventional cryptographic security mechanisms are essential to the overall problem of securing wireless networks, these techniques do not directly leverage the unique properties of the wireless domain to address security threats. The properties of the wireless medium are a powerful source of domain-specific information that can complement and enhance traditional security mechanisms. In this paper, we propose to utilize the fact that the radio channel decorre-lates rapidly in space, time and frequency in order to to establish new forms of authentication and confidentiality that operate at the physical layer and can be used to facilitate cross-layer security paradigms. Specifically, for authentication services, we illustrate two channel probing techniques that can be used to verify the authenticity of a transmitter. Similarly, for confidentiality, we examine several strategies for establishing shared secrets/keys between two communicators using the wireless medium. These strategies range from extracting keys from channel state information, to utilizing the channel variability to secretly disseminate keys. We then validate the feasibility of using physical layer techniques for securing wireless systems by presenting results from experiments involving the USRP/GNURadio software defined radio platform.

Yi-Li Huang,Fang-Yie Leu,Ko-Chung Wei

DOI: https://doi.org/10.1016/j.mcm.2012.11.022

2013-09-01

Mathematical and Computer Modelling

Abstract:Recently, wireless networks, such as Wi-Fi and 3G, have been widely equipped and popularly used in the world. People holding smart devices can conveniently access the Internet services through modern wireless networks. However, when people are enjoying using wireless systems, network security has been a crucial challenge because wireless messages, encrypted or unencrypted, may be maliciously intercepted by hackers. After analyzing and/or decrypting the messages, hackers can illegally capture or steal important information, such as credit card numbers or usernames/passwords, carried in the messages. Currently, SSL and IPsec are utilized to protect the delivery of these types of information. However, each of the two security protocols has its own drawbacks both in their key exchange and message encryption/decryption processes. To solve these drawbacks, in this paper, we propose a secure communication system, named the Wireless Security System with Data Connection Core (WiSDC for short), which consists of two security schemes, including a symmetric key exchange process and a two-dimensional stream cipher mechanism. The former employs random numbers and the connection keys contained in the Data Connection Core (the DCC for short) to generate internal keys, through which the security level of the key exchange process can be enhanced. Here, the DCC is a set of random numbers created when the underlying user registers himself/herself with the wireless system being considered, and the random numbers are only known to the user and AAA server of the wireless system. The latter invokes two operators, including exclusive-or⊕ and binary adder +2 operators, and two Pseudo Random Number Sequences (PRNSs) to encrypt plaintext so as to well protect the ciphertext. The WiSDC also adopts a pseudo random number generator, which feeds back keys in current stage as a part of the inputs of the next stage, to generate more complicated keys for data encryption. Experimental results show that the WiSDC can effectively protect transmitted messages for wireless environments. The analytical results indicate that the WiSDC has higher security level and execution efficiency than those of the SSL and IPsec.

Dan Raphaeli,Snir Nisim

DOI: https://doi.org/10.48550/arXiv.2012.03100

2020-12-05

Systems and Control

Abstract:In this paper we present SPIRAP, SPinal Random Access Protocol, a new method for multiuser detection over wireless fading channel. SPIRAP combines sequential decoding with rateless Spinal code. SPIRAP appears to be an efficient protocol for transmitting small packets in a minimally controlled network and can be attractive for the Internet of Things (IOT) applications. The algorithm applies equivalently to any other rateless code, we chose Spinal for its good performance. We show that SPIRAP may achieve higher rate than TDMA and ALOHA in some cases and without the need for users synchronization.

Qing Yang,QiaoLiang Li,Xiaoming Wang,Naixue Xiong,Yi Pan

DOI: https://doi.org/10.1007/978-3-540-88582-5_45

2008-01-01

Abstract:The establishment of shared keys between communicating neighbor nodes in wireless sensor networks is a challenge due to resource-constrained sensor networks. Several key pre-distribution schemes have been proposed in literatures to establish pairwise keys between sensor nodes. However, many of them are either too complicated to fit for wireless sensor networks or insecure for some common aggressions. In this paper, we propose a random key management scheme based on random key pre-distribution for wireless sensor networks. To achieve better performance and security, the proposed scheme employs two different phases to establish enhanced pairwise keys between neighboring nodes. Compared with other existing random key pre-distribution schemes, our scheme has better resilience against node capture and also performs better in terms of network connectivity and scalability with appropriate memory, computation and communication overheads.

Wei Guo

2013-01-01

Abstract:The paper, considering the secure problems of the broadcast nature of wireless network, drawing lessons from temporary key generation algorithm based on channel characteristics, based on the reciprocal physical layer characteristics of wireless channel, puts forward an innovative key generation algorithm of three-state quantization of wireless channel reciprocal characteristics, and accomplish a safety communication system which use this algorithm. Secondly, our system combines the secure transmission system with a bound personal identification card to assure the safety of communications and also utilize GPS and Wi-Fi to finish an active positioning daemon system to protect the communication terminal. In general, our work provides a one-time pad, based on information security system and the physical layer characteristics of wireless channel, wireless communication security solutions, which has positive meanings for the research of wireless network security.

Jay Prakash,Chenxi Liu,Jemin Lee,Tony Q.S. Quek

DOI: https://doi.org/10.48550/arXiv.1803.07358

2018-03-20

Abstract:Direct-sequence spread spectrum (DSSS) has been recognized as an effective jamming resilient technique. However, the effectiveness of DSSS relies on the use of either pre-shared unique secret keys or a bank of public codes, which can be prohibitively expensive in future large-scale decentralized wireless networks, e.g., the Internet of Things. To tackle this problem, in this work we develop a new framework for self-controlled physical-layer-security-based spreading sequence generation. Specifically, we exploit the shared randomness inherent in wireless channels to generate and refresh secret seeds at each communicating node using shared randomness extraction, entropy pooling and random seed generation. The generated secret seeds are then utilized to perform DSSS. To evaluate the performance, we implement our framework on software defined radio platform and examine the successful transmission probability of the system under various models of broadband jamming along with an special case wherein adversary is assumed to have leaked information on key rate. Both our analysis and real-world measurements confirm that communication systems based on our framework can achieve jamming-resilient communications without requiring pre-shared sequences.

Information Theory

Kui Ren,Hai Su,Qian Wang

DOI: https://doi.org/10.1109/mwc.2011.5999759

IF: 12.777

2011-01-01

IEEE Wireless Communications

Abstract:Due to the broadcast nature of wireless channels, wireless communication is vulnerable to eavesdropping, message modification, and node impersonation. Securing the wireless communication requires the shared secret keys between the communicating entities. Traditional security schemes rely on public key infrastructures and cryptographic algorithms to manage secret keys. Recently, many physical-layer-based methods have been proposed as alternative solutions for key generation in wireless networks. These methods exploit the inherent randomness of the wireless fading channel to generate secret keys while providing information-theoretical security without intensive cryptographic computations. This article provides an overview of the existing PHY-based key generation schemes exploiting the randomness of the wireless channels. Specifically, we first introduce the fundamental and general framework of the PHY-based key generation schemes and then categorize them into two classes: received-signal-strength-based and channel- phase-based protocols. Finally, we present a performance comparison of them in terms of key disagreement probability, key generation rate, key bit randomness, scalability, and implementation issues.

Daojing He,Chun Chen,Sammy Chan,Jiajun Bu,Laurence T. Yang

DOI: https://doi.org/10.1109/tie.2012.2218562

IF: 7.7

2012-01-01

IEEE Transactions on Industrial Electronics

Abstract:Wireless reprogramming in a wireless sensor network (WSN) is the process of propagating a new code image or relevant commands to sensor nodes. As a WSN is usually deployed in hostile environments, secure reprogramming is and will continue to be a major concern. While all existing insecure/secure reprogramming protocols are based on the centralized approach, it is important to support distributed reprogramming in which multiple authorized network users can simultaneously and directly reprogram sensor nodes without involving the base station. Very recently, a novel secure and distributed reprogramming protocol named SDRP has been proposed, which is the first work of its kind. However, in this paper, we identify an inherent design weakness in the user preprocessing phase of SDRP and demonstrate that it is vulnerable to an impersonation attack by which an adversary can easily impersonate any authorized user to carry out reprogramming. Subsequently, we propose a simple modification to fix the identified security problem without losing any features of SDRP. Our experimental results demonstrate that it is possible to eliminate the design weakness by adding 1-B redundant data and that the execution time of the suggested solution in a 1.6-GHz laptop PC is no more than 1 ms. Therefore, our solution is feasible and secure for real-world applications. Moreover, we show that, in order to further improve the security and efficiency of SDRP, any better established identity-based signature algorithm can be directly employed in SDRP. Based on implementation results, we demonstrate efficiency improvement over the original SDRP.

Gill R. Tsouri,Jeff Wilczewski

DOI: https://doi.org/10.1145/2093698.2093851

2011-01-01

Abstract:Utilizing the randomness of the wireless channel for securing on-body communication in the presence of an on-body eavesdropper is considered. The feasibility of establishing a secure, unique and random key is investigated using a radio platform operating in the 2.4GHz ISM band. A low-complexity algorithm for establishing a symmetric encryption key tailored to the on-body propagation environment is proposed and justified. The algorithm uses the readily available radio signal strength indicator from existing packets going back and forth over the communication link and presents marginal system overheads. The secret bit sequences generated by the algorithm are evaluated for matching between the two communicating parties, mismatching with an eavesdropper placed on the body, and degree of randomness. It is shown that the algorithm generates long and highly random bit sequences which are perfectly matched between the legitimate communicating parties yet weakly matched with the eavesdropper's bit sequences.

Anusha Thanganadar,Venkatesan Raman

DOI: https://doi.org/10.34028/iajit/21/2/3

2024-01-01

The International Arab Journal of Information Technology

Abstract:The secured data transmission in Wireless Sensor Network (WSN) relies on effective key generation and secured sharing. The generated key must be random to enhance data confidentiality. The processes associated with the security in WSN must be designed at reduced computing time and communication cost. Our research work aims to design a novel lightweight key-sharing protocol that is needed for ensuring data confidentiality. The protocol must meet the constraints of WSN by being lightweight and consuming less energy. Security breaches in WSNs occur due to insecure keys. This can be overcome by generating shared keys which are generated once using the dynamic features of Sensor Nodes (SNs) when the Cluster Heads (CHs) are selected. In this research work, we have generated the Master Shared Key (MSK) at the transmitter node by forming a Galois Ring (GR) using WSN parameters and derived the Shared Random Key (SRK) using matched positions of exchanged Random Sequences (RSs). It is protected using a Physically Unclonable Function (PUF). The novelty lies in the SRK generation from MSK which is chosen at random from the polynomials generated during the formation of GR. The MSK is securely shared with the receiver node by encrypting using a Preloaded Key (PK). After this exchange, the key for encryption and decryption is derived by the transmitter and the receiver by exchanging RSs. The SRK is then encrypted using a key which is a unique fingerprint of the SN generated using PUF and stored in the SNs and the CHs to prevent node capture attack that occurs in WSN. Our proposed Shared Random Key Agreement Protocol (SRKAP) is comparable to the Localized Encryption and Authentication Protocol (LEAP) and performs better compared to the Elliptic Curve Diffie Hellman (ECDH) algorithm

computer science, information systems, artificial intelligence,engineering, electrical & electronic

Hailiang Xiong,Guangyuan Wang,Jian Ding,Weihong Zhu,Hongji Xu,Changwu Hu,Zhenzhen Mai,Ruochen Bian

DOI: https://doi.org/10.1049/cmu2.12147

IF: 1.345

2021-01-01

IET Communications

Abstract:This paper focuses on high efficiency secret key generation mechanism of physical-layer communication over fading channels in ubiquitous wireless networks. The secret key rate via traditional physical-layer approach could be limited when the wireless propagation channels connecting two sensors change slowly. To generate a high-rate secret key and improve the communication efficiency over quasi-static block fading channels, a novel multi-randomness device-to-device secret key generation strategy and a cooperative communication mechanism aided by relay nodes are proposed. In the proposed schemes, the legitimate members to send random signals rotationally in every coherent time T are set; thus, two legitimate ubiquitous wireless network members, Alice and Bob, can obtain the potential correlated information by exploiting the randomness and the reciprocity of the wireless propagation channels. Considering the reciprocity of wireless channels is variable while the forward channel gain and backward channel gain are correlated in coherent time, a modified secret key generation scheme is proposed via layered coding with theoretical secret key rates derived. The simulation results show that the proposed scheme outperforms traditional approaches with favourable application prospects in ubiquitous wireless communications networks and internet of things.

Zijie Ji,Phee Lep Yeoh,Gaojie Chen,Junqing Zhang,Yan Zhang,Zunwen He,Hao Yin,Yonghui Li

DOI: https://doi.org/10.1109/jiot.2022.3160508

IF: 10.6

2022-01-01

IEEE Internet of Things Journal

Abstract:This article proposes a wireless key generation solution for secure low-latency communications with active jamming attack prevention in wireless networked control systems (WNCSs) of Industrial Internet of Things (IIoT) applications. We first identify a new vulnerability in physical-layer key generation schemes using wireless channel and random pilots (RPs) in static environments. We derive a closed-form expression for the probability that the RP-based key is successfully attacked by a long-term eavesdropper at a fixed location. To prevent such attacks, we propose a one-time pad (OTP) encrypted transmission solution assisted by one-way self-interference (SI), which has low-latency, high-security benefits, and active attack detection capability. The performance of the proposed scheme is analytically compared with two benchmark RP-based schemes, and its advantages are verified in a ray-tracing-based simulation environment. We further investigate the impact of critical design parameters, which reveal fundamental insights for the deployment and implementation of our proposed secure communications scheme.

computer science, information systems,telecommunications,engineering, electrical & electronic

David Pepyne

DOI: https://doi.org/10.3969/j.issn.1671-8267.2003.02.001

2003-01-01

Abstract:Objective Aiming at lots of vulnerabilities in the Wired Equivalent Privacy (WEP) which threats the authentication and confidentiality in wireless communication, a new kind of mutual authentication and privacy mechanism named MWEP(Modified WEP) is proposed. Methods MWEP is based on pseudo random number generator (PRNG) and asymmetric cryptograph approach, it generates a unique session-key like "One-Time Password" for each data frame transmission between any two mobile stations. Results Using this session-key to encrypt the transmission data, not only can it avoid replay attack, but also provide a good secure virtual channel for the sender and receiver. MWEP can be incorporated into IEEE 802.11. Conclusion It shows that the proposed mechanism is effective and practical after comparison with WEP and simulation.

Pengcheng Mu,Qinye Yin

DOI: https://doi.org/10.1117/12.913399

2011-01-01

Abstract:A method of using random antenna switching (RAS) is proposed to guarantee the information security during the physical layer transmission. The method uses multiple antennas at the base station and a single antenna at the mobile terminal. The expected mobile terminal (target user) first transmits a training symbol which is used by the base station to estimate the channel. The base station then randomly selects several antennas to transmit each symbol. The weighting coefficients are obtained according to the estimated channel, which is similar to the distributed beamforming except that the magnitudes are random in this paper. Signals from all the selected antennas are finally superimposed in phase at the target user so that the maximum likelihood demodulation can be directly implemented. The RAS makes the channel for an eavesdropper change fast and randomly to prevent the eavesdropper from demodulating the signals. Simulation results show that the target user's bit error rate of RAS is lower with less transmission power than the traditional method of using random weighting coefficients, while the eavesdropper cannot correctly demodulate and hence the low probability of interception is achieved.