Yunlong Mao,Tingting Chen,Yuan Zhang,Tiancong Wang,Sheng Zhong

DOI: https://doi.org/10.1109/tifs.2017.2668219

IF: 7.231

2017-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Collaborative spectrum sensing has become increasingly popular in cognitive radio networks to enable unlicensed secondary users to coexist with the licensed primary users and share spectrum without interference. Despite its promise in performance enhancement, collaborative sensing is still facing a lot of security challenges. The problem of revealing secondary users’ location information through sensing reports has been reported recently. Unlike any existing work, in this paper we not only address the location privacy issue in the collaborative sensing to be against semi-honest adversaries, but also take malicious adversaries into consideration. We propose efficient schemes to protect secondary users’ reports from being revealed in the aggregation process at the fusion center. We rigorously prove that our privacy-preserving collaborative sensing schemes are secure against attacks from both the fusion center and secondary users. We also evaluate our schemes extensively and verify its efficiency and feasibility.

Yunlong Mao,Tingting Chen,Yuan Zhang,Tiancong Wang,Sheng Zhong

DOI: https://doi.org/10.1145/2811587.2811594

2015-01-01

Abstract:Collaborative sensing has become increasingly popular in cognitive radio networks to enable unlicensed secondary users to coexist with the licensed primary users and share spectrum without interference. Despite its promise in performance enhancement, collaborative sensing is still facing a lot of security challenges. The problem of revealing secondary users' location information through sensing reports has been reported recently. Unlike any existing work, in this paper we not only address the location privacy issues in the collaborative sensing process against semi-honest adversaries, but also take the malicious adversaries into consideration. We propose efficient schemes to protect secondary users' report from being revealed in the report aggregation process at the fusion center. We rigorously prove that our privacy-preserving collaborative sensing schemes are secure against the fusion center and the secondary users in semi-honest model. We also evaluate our scheme extensively and verify its efficiency.

Xiuwen Liu,Yanjiao Chen

DOI: https://doi.org/10.1109/dyspan53946.2021.9677402

2021-01-01

Abstract:Database-driven Dynamic Spectrum Sharing (DSS) enhances active monitoring of spectrum usage, such that secondary users are allowed to opportunistically access licenced spectrum with the no-harmful-interference-to-primary-user constraint. A geo-location database administrator (DBA) maintains spectrum availability over its service region by periodically collecting and processing spatio-temporal spectrum data to construct Radio Environment Maps (REMs). To attract mobile users in the outsourced sensing tasks of spectrum measurements, crowdsourced spectrum sensing has great potential in REM construction. However, false measurements submitted by faulty/malicious users cannot be neglected. Constructing better REMs based on crowdsourced spectrum sensing remains an open challenge, especially considering privacy protection of mobile users. In this work, we introduce TAC-REM (Trust-aware Crowdsourced spectrum sensing for the resulting REM optimization), a novel differentially-private reverse auction mechanism. TAC-REM allows the DBA to iteratively select trustworthy spectrum measurements in the presence of false measurements. During each iteration, the DBA employs a spatio-temporal scheme for trustworthiness evaluation, which acts as a guide for user recruitment in crowdsourced spectrum sensing. The proposed adaptive greedy algorithm gradually incorporates the most trustworthy spectrum measurements. The process of user recruitment can be modeled as a stochastic submodular maximization problem, while guaranteeing budget feasibility, approximate REM accuracy maximization, differential bid privacy. Extensive simulations confirm the efficacy and efficiency of the proposed mechanism.

Yanzhe Che,Kevin Chiew,Xiaoyan Hong,Qinming He

DOI: https://doi.org/10.1145/2442810.2442820

2012-01-01

Abstract:ABSTRACTThere is a potential privacy breach when users access various location-based social applications on a mobile social network (MSN), e.g., sharing locations with friends. To preserve location privacy, one of the most common methods is to use a coarse or fake location instead of a user's exact location. However, most of these previous approaches only provide geometric strategies without considering the semantic context of the geographical locations. For example, if a cloaked region contains a part of a lake, where no boats are allowed, an adversary can easily prune the cloaked region to a smaller range covering a user's actual location. In this paper, we propose SALS, a semantics-aware location sharing framework based on cloaking zone for an MSN environment. By considering a user's social relations and activities which are available in an MSN environment, SALS does not assume any trustworthy entities, including strangers, friends or any third parties. As a solution, SALS enables users to cooperate with each other, in a Peer-to-Peer (P2P) way, to generate the cloaking zones, which will be used instead of the actual locations. Different from the previous cloaking techniques, SALS considers the semantic location which can influence the distribution probability of a user's locations. We also propose metrics for measuring the quality of the cloaking zone. The evaluation shows that our method can well defend the semantic-location attack.

Miao Xu,Wenyuan Xu,Jason O'Kane

DOI: https://doi.org/10.1109/MASS.2011.43

2011-01-01

Abstract:Wireless sensor networks are vulnerable to various attacks and network dynamics that can breach data privacy and harm data availability. Since those threats cannot be addressed purely by cryptography-based methods, this paper presents a data dissemination scheme that can enhance two goals: data privacy and data availability, leveraging the node location diversity presented in typical wireless sensor networks rather than relying on cryptographic techniques. We demonstrate that the message content is important to quantify the uncertainty associated with data privacy and data availability, and provide content-based definitions utilizing information states. Further, to strike the balance between two conflicting goals in an energy efficient way, we construct a spatial privacy graph based on the locations of network nodes, and use a distributed coloring scheme to ensure that any pairs of nodes whose combined data provide too much information should not send their sensed data to the same storage node. Additionally, sensor nodes selectively send data to multiple storage nodes to achieve higher availability. Our experimental results show that our scheme can achieve better data privacy and a higher level of data availability at smaller energy cost than other baseline data dissemination schemes.

Huifang Chen,Ming Zhou,Lei Xie,Kuang Wang,Jie Li

DOI: https://doi.org/10.1109/tvt.2016.2520983

IF: 6.8

2016-01-01

IEEE Transactions on Vehicular Technology

Abstract:Spectrum sensing and spectrum sharing are two fundamental issues in a cognitive radio network ( CRN). The spectrum sensing data falsification ( SSDF) attack imposes bad effects on both spectrum sensing and spectrum sharing. To deal with SSDF attacks and to incentivize secondary users ( SUs) to behave well, a joint spectrum sensing and resource allocation ( JSSRA) scheme in a CRN is proposed in this paper. The JSSRA problem is formulated as a weighted-proportional-fairness-based resource-allocation optimization problem under the constraint that the primary user ( PU) network is sufficiently protected. The problem is decomposed into two subproblems, namely, the resource allocation subproblem and cooperative SU number decision subproblem, which are solved by the Lagrangian dual algorithm and the brute-force algorithm, respectively. Moreover, a user-selection method based on reinforcement learning is presented to select reliable SUs for cooperative spectrum sensing ( CSS). In addition, the SU's trust degree is updated according to its behavior in CSS and is used in the sensed resource-allocation process. The key point of our proposed scheme is to make SUs improve the sensing reliability and prevent SUs from behaving maliciously by an incentive mechanism. Comprehensive performance evaluation is conducted by computer simulation. It is shown that the proposed JSSRA scheme deals with the SSDF attack well in cooperative sensing process to improve system robustness and achieves a significant system utility gain in resource allocation.

Hao Zhou,Yingjie Wu,Sisi Zhong,Zhao Luo,Xiaodong Wang

DOI: https://doi.org/10.1109/icicee.2012.418

2012-01-01

Abstract:The query privacy issue in location-based services (LBS) has recently received considerable attention. To protect the query privacy of users, current state-of-the-art techniques adopt cloaking which cloaks the sender's location to k-anonymized spatial region (ASR), such that an attack based on the sender's location cannot identify the query source with probability larger than 1/k, among other k-1 users. However, these techniques do not consider that these k-1 additional mobile users with different privacy requirements may send request at the same time. In this paper, we propose a new attack model that an adversary who observes all the ASRs at one time can identify the query source with probability larger than 1/k based on prior knowledge of the locations of all users. And we propose our two algorithms, namely, Basic and Adaptive Algorithms, which strengthen the privacy guarantee to defend such inference attack while still support personalized user privacy requirements. We verify the effectiveness of the proposed algorithms by experiments on location data which synthetically generated on real road maps.

Lingjie Duan,Alexander W. Min,Jianwei Huang,Kang G. Shin

DOI: https://doi.org/10.1109/JSAC.2012.121009

2011-09-06

Abstract:Collaborative spectrum sensing can significantly improve the detection performance of secondary unlicensed users (SUs). However, the performance of collaborative sensing is vulnerable to sensing data falsification attacks, where malicious SUs (attackers) submit manipulated sensing reports to mislead the fusion center's decision on spectrum occupancy. Moreover, attackers may not follow the fusion center's decision regarding their spectrum access. This paper considers a challenging attack scenario where multiple rational attackers overhear all honest SUs' sensing reports and cooperatively maximize attackers' aggregate spectrum utilization. We show that, without attack-prevention mechanisms, honest SUs are unable to transmit over the licensed spectrum, and they may further be penalized by the primary user for collisions due to attackers' aggressive transmissions. To prevent such attacks, we propose two novel attack-prevention mechanisms with direct and indirect punishments. The key idea is to identify collisions to the primary user that should not happen if all SUs follow the fusion center's decision. Unlike prior work, the proposed simple mechanisms do not require the fusion center to identify and exclude attackers. The direct punishment can effectively prevent all attackers from behaving maliciously. The indirect punishment is easier to implement and can prevent attacks when the attackers care enough about their long-term reward.

Cryptography and Security

Long Jiao,Yao Ge,Kai Zeng,B.C. Hilburn

2023-08-26

Abstract:In this work, we investigate the benefits of secondary user (SU) network beamforming on improving primary user (PU) location privacy in spectrum sharing systems, where the beamformer in the SU network is designed to suppress the aggregate interference to improve the location privacy of PUs. We consider two problems: improving SU network communication throughput subject to the specified PU location privacy requirements, and enhancing PU location privacy given the quality of service (QoS) requirements of SU networks. In the first problem, we provide an algorithm to achieve high data rates with the constrained PU location privacy level. Numerical results show that for a given PU location privacy requirement, the proposed scheme is able to interfere/exclude only a few SU nodes from the PU band and the network throughput can be greatly improved. In the second problem, to fully explore the potential of SU network beamforming for enhancing PU location privacy, we propose a two-step scheme to decouple the beamforming and privacy zone design so that the PU location privacy can be improved while satisfying the SU network throughput requirement. According to numerical evaluations, the proposed scheme can maintain/achieve higher PU location privacy than the benchmark beamforming schemes while satisfying a QoS requirement for the SU network.

Networking and Internet Architecture

Qianyun Zhang,Weihao Zeng,Zhijin Qin,Yun Lin,Zhenyu Guan,Jianwei Liu

DOI: https://doi.org/10.1109/jiot.2023.3344648

IF: 10.6

2024-01-01

IEEE Internet of Things Journal

Abstract:In cognitive radio networks, cooperative spectrum sensing (CSS) is a key approach to effectively discover spectrum opportunities for secondary users. However, due to the presence of malicious nodes, CSS faces significant challenges in the trust issue of sensing results caused by spectrum sensing data falsification and the privacy leakage of sensing nodes. In this article, we develop a trustworthy and privacy-preserving CSS solution based on blockchain, TaP2-CSS. It achieves the transparency and trustworthiness in exchanging and fusing sensing reports and preserves privacy of sensing nodes. More specifically, a fusion scheme is proposed to realize the high defense capability against the spectrum sensing falsification attack launched by lurking and persistent malicious nodes. Furthermore, to address privacy threats of sensing nodes, we propose a privacy-preserving sensing scheme based on dynamic sensing time for resource-constrained sensing nodes. It effectively limits the location information leaked by sensing reports without the need for complex cryptographic computation and protocol interaction. Comprehensive evaluation and comparison show that the proposed solution achieves high sensing accuracy in the presence of malicious nodes while preserving the privacy of sensing nodes.

Yu Gan,Chunxiao Jiang,Norman C. Beaulieu,Jian Wang,Yong Ren

DOI: https://doi.org/10.1109/TCOMM.2016.2600563

IF: 6.166

2016-01-01

IEEE Transactions on Communications

Abstract:Collaborative spectrum sensing is an effective method to improve detection rates in cognitive radio networks. However, it is vulnerable to spectrum sensing data falsification (SSDF) attacks when malicious secondary users (SUs) report fraudulent sensing data. In order to improve the robustness, numerous attack prevention schemes have been proposed to identify malicious SUs. Nevertheless, most of th...

Shengchao Liu,Jessie Hui Wang,Jilong Wang,Qianli Zhang

DOI: https://doi.org/10.1109/access.2020.2978488

IF: 3.9

2020-01-01

IEEE Access

Abstract:As location-based services become widely used in daily life, there is growing concern in preserving location privacy of users to avoid that attackers infer information about users by collecting and analyzing requests initiated by users. We argue that a good location privacy preservation scheme should have these properties. First, a user should never expose its precise location to any other entity. Second, a user should be able to specify its own requirement on the strength of privacy preservation, since a stricter preservation requirement may increase its overhead. Third, the scheme should be able to preserve as many as possible aspects of users' privacy under various attacks. With these desired properties in mind, we carefully design an encoding scheme of users' identifiers and a fully distributed architecture for our purpose and propose a privacy preservation scheme based on them. With the help of the encoding scheme and the distributed architecture, we develop a distributed negotiation algorithm to help users conduct negotiations among themselves to find their cloaked regions that satisfy their self-defined requirements without exposing their precise locations. The negotiations are completed without coordination from any central servers, and a random proxy is selected for each individual request, therefore the potential risks caused by any central server (location-based service servers or trusted-third-party servers) are mitigated as much as possible. Experiments show that our scheme can satisfy different strengths of privacy preservation required by each user even under the most severe scenarios.

Rongxing Lu,Xiaodong Lin,Zhiguo Shi,Jun Shao

DOI: https://doi.org/10.1109/infocom.2014.6848003

2014-01-01

Abstract:In this paper, we propose a privacy-preserving framework, called PLAM, for local-area mobile social networks. The proposed PLAM framework employs a privacy-preserving request aggregation protocol with k-Anonymity and l-Diversity properties while without involving a trusted anonymizer server to keep user preference privacy when querying location-based service (LBS), and integrates unlinkable pseudo-ID technique to achieve user identity privacy, location privacy. Moreover, the proposed PLAM framework also introduces the privacy-preserving and verifiable polynomial computation to keep LBS provider's functions private while preventing the provider from cheating in computation. Detailed security analysis shows that the proposed PLAM framework can not only achieve desirable privacy requirements but also resist outside attacks on source authentication, data integrity and availability. In addition, extensive simulations are also conducted, and simulation results guide us on how to set proper thresholds for k-anonymity, l-diversity to make a tradeoff between the desirable user preference privacy level and the request delay in different scenarios.

Cheng Huang,Dongxiao Liu,Anjia Yang,Rongxing Lu,Xuemin Shen

DOI: https://doi.org/10.1109/tmc.2024.3366340

IF: 6.075

2024-01-01

IEEE Transactions on Mobile Computing

Abstract:In this paper, we propose a privacy-preserving range-based positioning scheme, named PPRP, which can preserve the location privacy of both user equipment (UE) and anchors (ACs) in mobile networks. Specifically, PPRP is established on a decentralized trust-based framework that divides trust between two location management function (LMF) servers. With such a framework, UE and ACs are allowed to securely upload their range/range-difference measurement data to LMF servers using lightweight additive secret sharing techniques (ASS) instead of cumbersome cryptographic operations. Then, PPRP takes secret-shared measurement data as inputs and decomposes UE's location estimation procedures into secure two-party matrix computation sub-protocols, which are elaborately crafted using somewhat homomorphic encryption and randomization techniques to ensure both efficiency and privacy preservation in positioning. Furthermore, to mitigate the negative effects arising from non-line-of-sight (NLoS) ACs, PPRP achieves privacy-preserving residual-based NLoS analysis. To this end, we additionally propose a series of secure two-party sub-protocols to support various non-linear functions, including comparison, division, square root computation, oblivious shuffle and sorting. These sub-protocols serve as fundamental modules that can be effectively combined to perform sophisticated operations of NLoS analysis in a privacy-preserving manner. A comprehensive simulation-based security analysis demonstrates that PPRP can achieve location privacy preservation. Finally, we develop a proof-of-concept prototype and conduct extensive experiments to show PPRP's high performance in terms of positioning accuracy, computational efficiency, and communication complexity.

Chang Xu,Xuan Xie,Liehuang Zhu,Kashif Sharif,Chuan Zhang,Xiaojiang Du,Mohsen Guizani

DOI: https://doi.org/10.1007/s11432-019-1508-6

2020-01-01

Science China Information Sciences

Abstract:The recent proliferation of mobile devices has given rise to mobile online social networks(m OSNs), an emerging network paradigm that uses social networks as its main design element. As one of the most critical components in m OSNs, location sharing plays an important role in helping users share information and strengthen their social bonds, which however may compromise users’ privacy, including location information and social relationship details. To address these challenges, some solutions have been proposed. However, none of them considers the privacy of inter-user threshold distance, which effectively can be used to identify users, their friends, and location information, by malicious or undesired elements of the system. To overcome this limitation, we propose a secure distance comparison protocol. Furthermore,we present a privacy-preserving location-sharing scheme(PPLS), which allows users to build more complex access control policies. The safety of our scheme is validated by the security analysis and the experimental results demonstrate the efficiency of PPLS scheme.

Zhen Hong,Rui Wang,Shouling Ji,Raheem Beyah

DOI: https://doi.org/10.1109/tifs.2018.2876839

IF: 7.231

2019-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Cyber-physical systems (CPS) have been deployed in many areas and have reached unprecedented levels of performance and efficiency. However, the security and privacy problems in CPS have not been properly addressed, e.g., the monitored source location can be inferred by an attacker, which can substantially undermine the reliability of CPS. Unfortunately, the existing techniques to protect against the leakage of the source location do not achieve an acceptable balance among the source location privacy, transmission delay, and energy consumption to guarantee high reliability. To address this issue, we propose an attacker location evaluation-based fake source scheduling (FSSE) for source location privacy in CPS to enhance the privacy level and maintain the system performance. The proposed FSSE contains two main phases. The first, backbone construction, is dependent on the probability of capture derived from the communication information of self and neighboring nodes. This phase aims to build a backbone to form a baseline with respect to the source location privacy and transmission delay. The second phase is fake message scheduling, which is established to provide a trade-off among privacy, transmission delay, and communication overhead in terms of the hypothesized location of the attacker by using stochastic processes. Through analysis and simulation, we demonstrate that the proposed method has a more stable privacy level and more efficient transmission delay and energy consumption than the three compared algorithms, i.e., phantom routing, tree-based diversionary routing, and dynamic fake source selection.

Hongning Li,Tonghui Hu,Jiexiong Chen,Xiuqiang Wu,Qingqi Pei,Debiao He

DOI: https://doi.org/10.23919/cje.2022.00.007

IF: 1.019

2024-01-01

Chinese Journal of Electronics

Abstract:The scarcity of spectrum resources fails to meet the increasing throughput demands of vehicular networks. There is an urgent need to maximize the utilization of spectrum bands in mobile networks. To ascertain the availability of spectrum bands, users should engage in wireless channel sensing and collaboration. However, spectrum sensing data always involves users' privacy, such as their location. This paper first introduces sensing trajectory inference attack in cognitive vehicular networks and then proposes a data confusion-based privacy-preserving algorithm and a cryptonym array-based privacy-preserving aggregation scheme for spectrum sensing in cognitive vehicular networks. Unlike existing methods, the proposed schemes transmit confused data during the aggregation process. This deliberate obfuscation makes it almost impossible to infer users' location from the transmitted data. The analysis demonstrates the resilience of the proposed schemes against sensing trajectory inference attack.

engineering, electrical & electronic

Shuai Li,Haojin Zhu,Zhaoyu Gao,Xinping Guan,Kai Xing

DOI: https://doi.org/10.48550/arXiv.1111.5080

2013-03-22

Abstract:Collaborative spectrum sensing has been recognized as a promising approach to improve the sensing performance via exploiting the spatial diversity of the secondary users. In this study, a new selfishness issue is identified, that selfish users sense no spectrum in collaborative sensing. For easier presentation, it's denoted as entropy selfishness. This selfish behavior is difficult to distinguish, making existing detection based incentive schemes fail to work. To thwart entropy selfishness in distributed collaborative sensing, we propose YouSense, a One-Time Pad (OTP) based incentive design that could naturally isolate entropy selfish users from the honest users without selfish node detection. The basic idea of YouSense is to construct a trapdoor one-time pad for each sensing report by combining the original report and a random key. Such a one-time pad based encryption could prevent entropy selfish users from accessing the original sensing report while enabling the honest users to recover the report. Different from traditional cryptography based OTP which requires the key delivery, YouSense allows an honest user to recover the pad (or key) by exploiting a unique characteristic of collaborative sensing that different secondary users share some common observations on the same radio spectrum. We further extend YouSense to improve the recovery successful rate by reducing the cardinality of set of the possible pads. By extensive USRP based experiments, we show that YouSense can successfully thwart entropy selfishness with low system overhead.

Networking and Internet Architecture

Chaowen Guan,Aziz Mohaisen,Zhi Sun,Lu Su,Kui Ren,Yaling Yang

DOI: https://doi.org/10.1109/icdcs.2017.75

2017-01-01

Abstract:Dynamic spectrum sharing techniques applied in the UHF TV band have been developed to allow secondary WiFi transmission in areas with active TV users. This technique of dynamically controlling the exclusion zone enables vastly increasing secondary spectrum re-use, compared to the "TV white space" model where TV transmitters determine the exclusion zone and only "idle" channels can be re-purposed. However, in current such dynamic spectrum sharing systems, the sensitive operation parameters of both primary TV users (PUs) and secondary users (SUs) need to be shared with the spectrum database controller (SDC) for the purpose of realizing efficient spectrum allocation. Since such SDC server is not necessarily operated by a trusted third party, those current systems might cause essential threatens to the privacy requirement from both PUs and SUs. To address this privacy issue, this paper proposes a privacy-preserving spectrum sharing system between PUs and SUs, which realizes the spectrum allocation decision process using efficient multi-party computation (MPC) technique. In this design, the SDC only performs secure computation over encrypted input from PUs and SUs such that none of the PU or SU operation parameters will be revealed to SDC. The evaluation of its performance illustrates that our proposed system based on efficient MPC techniques can perform dynamic spectrum allocation process between PUs and SUs efficiently while preserving users' privacy.

Yachao Yuan,Yu Huang,Yali Yuan

DOI: https://doi.org/10.1016/j.cose.2023.103289

2023-05-11

Abstract:During the localization process in wireless networks, risks such as Sybil attacks and nodes' location privacy leakage can exist due to the open and shared nature of wireless networks. However, it is challenging to obtain accurate location for sensor nodes while preserving the privacy of observer nodes who assist in sensor node localization while in the presence of Sybil attacks. Therefore, in this paper, we propose a secure and private localization algorithm, PrSLoc, based on Differential Privacy and Approximate Point-In-Triangulation (APIT, a range-free positioning algorithm). Specifically, APIT is applied for sensor nodes' localization based on the received signal strength (RSS) from observer nodes as APIT doesn't require special hardware or additional devices to estimate node positions. Besides, Differential Privacy technique is utilized to protect the privacy of observer nodes' location information (i.e., nodes' identity, location, and transmission power). Additionally, we mitigate Sybil attacks using a novel lightweight Sybil detection approach introduced in this paper that is based on the twice difference of the perceived RSS. Simulation results demonstrate that PrSLoc can efficiently eliminate Sybil nodes while preserving the observers' privacy during wireless localization processes. Furthermore, the computation overhead and storage cost of the proposed PrSLoc are competitive compared with existing work. Our code can be found here: https://github.com/learning-lemon/PrSLoc-Sybil-Attack-Detection-for-Localization-with-Private-Observers-using-Differential-Privacy.git.

computer science, information systems