Hongbo Liu,Jie Yang,Yan Wang,Yingying Chen,Can Emre Koksal

2012-01-01

Abstract:Secret key generation among wireless devices using physical layer information of radio channel has been an attractive alternative for ensuring security in mobile environments. Received Signal Strength (RSS) based secret key extraction gains much attention due to its readily availability in wireless infrastructure. However, the problem of using RSS to generate keys among multiple devices to ensure secure group communication in practice remains open. In this work, we propose a framework for collaborative key generation among multiple wireless devices leveraging RSS. To deal with mobile devices not within each other’s communication range, we employ relay nodes to achieve reliable key extraction. To enable secure group communication, two protocols are developed to perform collaborative group key generation via star and chain topologies respectively. We further provide the theoretic analysis on the achievable secrecy rate for both star and chain topologies in the presence of an eavesdropper. Our prototype development using MICAz motes and extensive experiments using fading trend based key extraction demonstrate the feasibility of using RSS for group key generation in both indoor and outdoor environments, and concurrently achieving a lower bit mismatch rate compared to existing works.

Hongbo Liu,Jie Yang,Yan Wang,Yingying Chen

DOI: https://doi.org/10.1109/infcom.2012.6195843

2012-01-01

Abstract:Securing communication in mobile wireless networks is challenging because the traditional cryptographic-based methods are not always applicable in dynamic mobile wireless environments. Using physical layer information of radio channel to generate keys secretly among wireless devices has been proposed as an alternative in wireless mobile networks. And the Received Signal Strength (RSS) based secret key extraction gains much attention due to the RSS readings are readily available in wireless infrastructure. However, the problem of using RSS to generate keys among multiple devices to ensure secure group communication remains open. In this work, we propose a framework for collaborative key generation among a group of wireless devices leveraging RSS. The proposed framework consists of a secret key extraction scheme exploiting the trend exhibited in RSS resulted from shadow fading, which is robust to outsider adversary performing stalking attacks. To deal with mobile devices not within each other's communication range, we employ relay nodes to achieve reliable key extraction. To enable secure group communication, two protocols, namely star-based and chain-based, are developed in our framework by exploiting RSS from multiple devices to perform group key generation collaboratively. Our experiments in both outdoor and indoor environments confirm the feasibility of using RSS for group key generation among multiple wireless devices under various mobile scenarios. The results also demonstrate that our collaborative key extraction scheme can achieve a lower bit mismatch rate compared to existing works when maintaining the comparable bit generation rate.

Zi Li,Qingqi Pei,Ian Markwood,Yao Liu,Haojin Zhu

DOI: https://doi.org/10.1109/tifs.2017.2768020

IF: 7.231

2017-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Recently, people have witnessed a remarkable growth in the number of smart wearable devices. Accompanied with the development of a contactless data transmission technique, the lack of effective secret key establishment between lightweight wearable devices which support contactless data transmission technique becomes a security bottleneck. In this paper, we propose a novel wireless key establishment method by moving or shaking the wearable wireless devices. Instead of received signal strength (RSS) itself, we denote the RSS trajectories of two moving wireless devices as the materials of secret key. Moreover, inspired by channel reciprocity in a channel feature-based key establishment technique, we propose the concept of reciprocity of RSS trajectory that guarantees that even when the RSSs of two devices are the same, the identical RSS trajectories of two devices can successfully generate the secret key. In addition, to effectively utilize the RSS trajectories, we design a novel quantization scheme by considering the entropy and efficiency of key generation. Furthermore, we analyze the security of this key establishment procedure in an eavesdropped and monitored environment. We also perform an evaluation of 64-, 128-, 192-, and 256-b key generation in indoor/outdoor environment, and the results indicate that the times are 0.22/0.33, 0.61/0.74, 0.95/1.02, and 1.28/1.46 s, respectively. In addition, the ranges of efficiency and entropy are 0.654-0.795 and 0.968-0.993.

Shiming Fu,Tong Ling,Jun Yang,Yong Li

DOI: https://doi.org/10.3390/e26090758

IF: 2.738

2024-09-05

Entropy

Abstract:This paper explores physical layer group key generation in wireless relay networks with a star topology. In this setup, the relay node plays the role of either a trusted or untrusted central node, while one legitimate node (Alice) acts as the reference node. The channel between the relay and Alice serves as the reference channel. To enhance security during the channel measurement stage, a cooperative jamming-based scheme is proposed in this paper. This scheme allows the relay to obtain superimposed channel observations from both the reference channel and other relay channels. Then, a public discussion is utilized to enable all nodes to obtain estimates of the reference channel. Subsequently, the legitimate nodes can agree on a secret key (SK) that remains secret from the eavesdropper (Eve), or a private key (PK) that needs to be secret from both the relay and Eve. This paper also derives the lower and upper bounds of the SK/PK capacity. Notably, it demonstrates that there exists only a small constant difference between the SK/PK upper and lower bounds in the high signal-to-noise ratio (SNR) regime. Simulation results confirm the effectiveness of the proposed scheme for ensuring security and efficiency of group key generation.

physics, multidisciplinary

Jizhong Zhao,Wei Xi,Jinsong Han,Shaojie Tang,Xiangyang Li,Yunhao Liu,Yihong Gong,Zehua Zhou

DOI: https://doi.org/10.48550/arxiv.1208.0688

2012-01-01

Abstract:Generating keys and keeping them secret is critical in secure communications. Due to the "open-air" nature, key distribution is more susceptible to attacks in wireless communications. An ingenious solution is to generate common secret keys by two communicating parties separately without the need of key exchange or distribution, and regenerate them on needs. Recently, it is promising to extract keys by measuring the random variation in wireless channels, e.g., RSS. In this paper, we propose an efficient Secret Key Extraction protocol without Chasing down Errors, SKECE. It establishes common cryptographic keys for two communicating parties in wireless networks via the realtime measurement of Channel State Information (CSI). It outperforms RSS-based approaches for key generation in terms of multiple subcarriers measurement, perfect symmetry in channel, rapid decorrelation with distance, and high sensitivity towards environments. In the SKECE design, we also propose effective mechanisms such as the adaptive key stream generation, leakage resilient consistence validation, and weighted key recombination, to fully exploit the excellent properties of CSI. We implement SKECE on off-the-shelf 802.11n devices and evaluate its performance via extensive experiments. The results demonstrate that SKECE achieves a more than 3x throughput gain in the key generation from one subcarrier in static scenarios, and due to its high efficiency, a 50 on the communication overhead compared to the state-of-the-art RSS based approaches.

Zhi Wang,Jinsong Han,Wei Xi,Jizhong Zhao

DOI: https://doi.org/10.1007/s11227-014-1247-1

2014-01-01

Abstract:Generating keys and keeping them secret are critical in secure communications. Due to the “open air” nature, key distribution is more susceptible to attacks in wireless communications. An ingenious solution is to generate secret keys for two communicating parties separately without the need of key exchange or distribution, and regenerate them on needs. Recently, it is promising to extract keys by measuring the random variation in wireless channels, e.g., RSS. In this paper, we propose an efficient secret key extraction protocol with decorrelating compressive (SKEDC). It establishes common cryptographic keys for two communicating parties in wireless networks via real-time measurement on channel state information (CSI). It outperforms RSS-based key generation approaches in terms of multiple subcarriers measurement, perfect symmetry in channel for key coincidence, rapid decorrelation with distance, and high sensitivity towards environments changes. In the SKEDC design, we also propose effective mechanisms, such as the adaptive key stream generation, to fully exploit the excellent properties of CSI and eliminate the correlation among the subcarriers. We implement SKEDC on off-the-shelf 802.11n devices and evaluate its performance via extensive experiments. The results demonstrate that SKEDC achieves more than \(3\times \) throughput gain in the key generation from the state-of-the-art RSS-based approaches.

Hailiang Xiong,Guangyuan Wang,Jian Ding,Weihong Zhu,Hongji Xu,Changwu Hu,Zhenzhen Mai,Ruochen Bian

DOI: https://doi.org/10.1049/cmu2.12147

IF: 1.345

2021-01-01

IET Communications

Abstract:This paper focuses on high efficiency secret key generation mechanism of physical-layer communication over fading channels in ubiquitous wireless networks. The secret key rate via traditional physical-layer approach could be limited when the wireless propagation channels connecting two sensors change slowly. To generate a high-rate secret key and improve the communication efficiency over quasi-static block fading channels, a novel multi-randomness device-to-device secret key generation strategy and a cooperative communication mechanism aided by relay nodes are proposed. In the proposed schemes, the legitimate members to send random signals rotationally in every coherent time T are set; thus, two legitimate ubiquitous wireless network members, Alice and Bob, can obtain the potential correlated information by exploiting the randomness and the reciprocity of the wireless propagation channels. Considering the reciprocity of wireless channels is variable while the forward channel gain and backward channel gain are correlated in coherent time, a modified secret key generation scheme is proposed via layered coding with theoretical secret key rates derived. The simulation results show that the proposed scheme outperforms traditional approaches with favourable application prospects in ubiquitous wireless communications networks and internet of things.

Jie Tang,Hong Wen,Huan-Huan Song,Long Jiao,Kai Zeng

DOI: https://doi.org/10.1109/jiot.2022.3147598

IF: 10.6

2022-01-01

IEEE Internet of Things Journal

Abstract:With the increasing demands for sharing confidential information among massive Internet of Things (IoT) devices in 5G and beyond wireless networks, many applications require the common secret key generation for a group of IoT devices. However, most of the existing works on physical layer secret key generation (PLKG) only focus on the pairwise key generation between two users, which is a low efficient and high cost to be extended to the scenarios of group key generation. In this work, we propose a new efficient multiple-input–multiple-output (MIMO) physical layer group secret key generation scheme to reduce the consumption of channel probing and improve the efficiency for group key generation. Different from current schemes, in the proposed scheme, the transmitter randomly generates the group secret key and directly broadcasts the downlink data symbols to the group users. At the receiver end, each group user can efficiently “observe” the common group key through the downlink broadcasting data symbols, while keeping perfect secrecy of the shared group key against eavesdroppers. The performance of reliability, security, and the group key generation rate is fully investigated, which shows the advantages of high efficiency, low consumption, and strong robustness of the proposed scheme. Extensive simulations are conducted to validate the effectiveness of the proposed scheme.

Hongbo Liu,Yang Wang,Jie Yang,Yingying Chen

DOI: https://doi.org/10.1109/infcom.2013.6567117

2013-01-01

Abstract:Securing wireless communication remains challenging in dynamic mobile environments due to the shared nature of wireless medium and lacking of fixed key management infrastructures. Generating secret keys using physical layer information thus has drawn much attention to complement traditional cryptographic-based methods. Although recent work has demonstrated that Received Signal Strength (RSS) based secret key extraction is practical, existing RSS-based key generation techniques are largely limited in the rate they generate secret bits and are mainly applicable to mobile wireless networks. In this paper, we show that exploiting the channel response from multiple Orthogonal Frequency-Division Multiplexing (OFDM) subcarriers can provide fine-grained channel information and achieve higher bit generation rate for both static and mobile cases in real-world scenarios. We further develop a Channel Gain Complement (CGC) assisted secret key extraction scheme to cope with channel non-reciprocity encountered in practice. Our extensive experiments using WiFi networks in both indoor as well as outdoor environments demonstrate that our approach can achieve significantly faster secret bit generation rate at 60 ~ 90bit/packet, and is resilient to malicious attacks identified to be harmful to RSS-based techniques including predictable channel attack and stalking attack.

Youjing Lu,Fan Wu,Qianyi Huang,Shaojie Tang,Linghe Kong,Guihai Chen

DOI: https://doi.org/10.1145/3480461

2021-01-01

ACM Transactions on Sensor Networks

Abstract:To build a secure wireless networking system, it is essential that the cryptographic key is known only to the two (or more) communicating parties. Existing key extraction schemes put the devices into physical proximity and utilize the common inherent randomness between the devices to agree on a secret key, but they often rely on specialized hardware (e.g., the specific wireless NIC model) and have low bit rates. In this article, we seek a key extraction approach that only leverages off-the-shelf mobile devices, while achieving significantly higher key generation efficiency. The core idea of our approach is to exploit the fast varying inaudible acoustic channel as the common random source for key generation and wireless parallel communication for exchanging reconciliation information to improve the key generation rate. We have carefully studied and validated the feasibility of our approach through both theoretical analysis and a variety of measurements. We implement our approach on different mobile devices and conduct extensive experiments in different real scenarios. The experiment results show that our approach achieves high efficiency and satisfactory robustness. Compared with state-of-the-art methods, our approach improves the key generation rate by 38.46% and reduces the bit mismatch ratio by 42.34%.

Qian Wang,Hai Su,Kui Ren,Kwangjo Kim

DOI: https://doi.org/10.1109/infcom.2011.5934929

2011-01-01

Abstract:Recently, there has been great interest in physical layer security techniques that exploit the randomness of wireless channels for securely extracting cryptographic keys. Several interesting approaches have been developed and demonstrated for their feasibility. The state-of-the-art, however, still has much room for improving their practicality. This is because i) the key bit generation rate supported by most existing approaches is very low which significantly limits their practical usage given the intermittent connectivity in mobile environments; ii) existing approaches suffer from the scalability and flexibility issues, i.e., they cannot be directly extended to support efficient group key generation and do not suit for static environments. With these observations in mind, we present a new secret key generation approach that utilizes the uniformly distributed phase information of channel responses to extract shared cryptographic keys under narrowband multipath fading models. The proposed approach enjoys a high key bit generation rate due to its efficient introduction of multiple randomized phase information within a single coherence time interval as the keying sources. The proposed approach also provides scalability and flexibility because it relies only on the transmission of periodical extensions of unmodulated sinusoidal beacons, which allows effective accumulation of channel phases across multiple nodes. The proposed scheme is thoroughly evaluated through both analytical and simulation studies. Compared to existing work that focus on pairwise key generation, our approach is highly scalable and can improve the analytical key bit generation rate by a couple of orders of magnitude.

Kui Ren,Hai Su,Qian Wang

DOI: https://doi.org/10.1109/mwc.2011.5999759

IF: 12.777

2011-01-01

IEEE Wireless Communications

Abstract:Due to the broadcast nature of wireless channels, wireless communication is vulnerable to eavesdropping, message modification, and node impersonation. Securing the wireless communication requires the shared secret keys between the communicating entities. Traditional security schemes rely on public key infrastructures and cryptographic algorithms to manage secret keys. Recently, many physical-layer-based methods have been proposed as alternative solutions for key generation in wireless networks. These methods exploit the inherent randomness of the wireless fading channel to generate secret keys while providing information-theoretical security without intensive cryptographic computations. This article provides an overview of the existing PHY-based key generation schemes exploiting the randomness of the wireless channels. Specifically, we first introduce the fundamental and general framework of the PHY-based key generation schemes and then categorize them into two classes: received-signal-strength-based and channel- phase-based protocols. Finally, we present a performance comparison of them in terms of key disagreement probability, key generation rate, key bit randomness, scalability, and implementation issues.

Jay Prakash,Chenxi Liu,Jemin Lee,Tony Q.S. Quek

DOI: https://doi.org/10.48550/arXiv.1803.07358

2018-03-20

Abstract:Direct-sequence spread spectrum (DSSS) has been recognized as an effective jamming resilient technique. However, the effectiveness of DSSS relies on the use of either pre-shared unique secret keys or a bank of public codes, which can be prohibitively expensive in future large-scale decentralized wireless networks, e.g., the Internet of Things. To tackle this problem, in this work we develop a new framework for self-controlled physical-layer-security-based spreading sequence generation. Specifically, we exploit the shared randomness inherent in wireless channels to generate and refresh secret seeds at each communicating node using shared randomness extraction, entropy pooling and random seed generation. The generated secret seeds are then utilized to perform DSSS. To evaluate the performance, we implement our framework on software defined radio platform and examine the successful transmission probability of the system under various models of broadband jamming along with an special case wherein adversary is assumed to have leaked information on key rate. Both our analysis and real-world measurements confirm that communication systems based on our framework can achieve jamming-resilient communications without requiring pre-shared sequences.

Information Theory

Lin Wang,Haonan An,Haojin Zhu,Wenyuan Liu

DOI: https://doi.org/10.1109/jiot.2020.2986399

IF: 10.6

2020-08-01

IEEE Internet of Things Journal

Abstract:Consumer Internet-of-Things platforms, especially in smart home, have received widespread attention. A large number of end-to-end and edge-to-end wireless communication links are subject to significant security and privacy risks. Key generation using radio link side-channel information is a burgeoning technology to solve this problem. This article designs a symmetric key generation method without environmental constraints, namely, MobiKey. The basic idea is taking the human mobility in home or the swing of the antenna to generate symmetric keys based on channel reciprocity. We leverage the practical phase information as the channel feature to generate symmetric keys between two communicating parties. To overcome the effects of noise on both communication sides and get a better performance, MobiKey harnesses the adaptive quantization method to make the bit generation rate and bit matching rate higher. MobiKey also uses the adaptive inconsecutive samples to increase the confusion of the adversary. Moreover, we propose the D-Gray code to enhance the randomness of quantization. MobiKey is implemented on different commercial devices, and the results show that it has comparative advantages in key generation consistency, randomness, and security. In addition, the performance in preventing predictable channel attacks and eavesdropping attack is discussed.

computer science, information systems,telecommunications,engineering, electrical & electronic

Fangfang Yang,Mohammad A. Islam,Fan Wu,Shaolei Ren

DOI: https://doi.org/10.1109/CNS53000.2021.9705032

2021-01-01

Abstract:Secure communication between wireless devices has become an important issue for mobile devices. To achieve this, many efforts have been devoted to leveraging random ambient signals to generate a shared secret key between participating devices. However, the existing methods often suffer from limited authentication distance (e.g., less than 4cm for WiFi-based secret key generation). In this paper, we propose a novel secret key generation method, called CompKey, which allows wireless devices in the proximity of a computer to securely associate with each another by exploiting electromagnetic radiation (EMR) emitted from the computer. Unlike the existing approaches that often rely on ambient signals' amplitudes, CompKey extracts the EMR's frequency information, which fluctuates randomly with time, as a secret source. We design a difference-based encoding method, which preserves randomness of the frequency and avoids many consecutive zeros and ones in the generated key. We show via experiment evaluation that participating devices can reliably achieve around 10 bits/s bit generation rate and 100% key matching rate when they are located within 50cm away from the source computer. Moreover, the experiment results with the presence of attackers demonstrate that our method is robust against eavesdroppers and strong copy attackers who can imitate the key generation process.

Amitha Mayya,Arsenia Chorti,Rafael F. Schaefer,Gerhard P. Fettweis

2024-04-25

Abstract:In this paper, the feasibility of implementing a lightweight key distribution scheme using physical layer security for secret key generation (SKG) is explored. Specifically, we focus on examining SKG with the received signal strength (RSS) serving as the primary source of shared randomness. Our investigation centers on a frequency-selective line-of-sight (LoS) multipath channel, with a particular emphasis on assessing SKG rates derived from the distributions of RSS. We derive the received signal distributions based on how the multipath components resolve at the receiver. The mutual information (MI) is evaluated based on LoS 3GPP channel models using a numerical estimator. We study how the bandwidth, delay spread, and Rician K-factor impact the estimated MI. This MI then serves as a benchmark setting bounds for the SKG rates in our exploration.

Signal Processing

Qiuhua Wang,Mingyang Kang,Guohua Wu,Yizhi Ren,Chunhua Su

DOI: https://doi.org/10.1587/transinf.2019ini0001

2020-01-01

IEICE Transactions on Information and Systems

Abstract:Secret key generation based on channel characteristics is an effective physical-layer security method for 5G wireless networks. The issues of how to ensure the high key generation rate and correlation of the secret key under active attack are needed to be addressed. In this paper, a new practical secret key generation scheme with high rate and correlation is proposed. In our proposed scheme, Alice and Bob transmit independent random sequences instead of known training sequences or probing signals; neither Alice nor Bob can decode these random sequences or estimate the channel. User's random sequences together with the channel effects are used as common random source to generate the secret key. With this solution, legitimate users are able to share secret keys with sufficient length and high security under active attack. We evaluate the proposed scheme through both analytic and simulation studies. The results show that our proposed scheme achieves high key generation rate and key security, and is suitable for 5G wireless networks with resource-constrained devices.

Peng Xu,Jun Yang,Gaojie Chen,Zheng Yang,Yong Li,Moe Z. Win

DOI: https://doi.org/10.1109/tifs.2023.3329740

IF: 7.231

2023-12-05

IEEE Transactions on Information Forensics and Security

Abstract:This paper investigates the performance of key generation between two nodes assisted by a relay in the presence of correlated eavesdropping channels. A cooperative jamming scheme is utilized to impose superimposed channel measurements on the relay and eavesdropper. Both lower and upper bounds on key capacities for both secret key (SK) and private key (PK) generation are evaluated, where the lower bounds are derived by using minimum mean square error and zero forcing methods for channel estimation, and the upper bounds are derived by formulating several enhanced discrete memoryless source (DMS) models. The analytical expressions are further simplified in the high signal-to-noise ratio (SNR) regime. We discover that one of the two legitimate channels should specialize in playing a role of jamming the relay or eavesdropper. We also demonstrate that the derived lower and upper bounds are tight when the eavesdropping channels are lowly or highly correlated. When the eavesdropping channels are uncorrelated, the SK and PK capacities can be determined since the corresponding upper and lower bounds are equal. Moreover, at high SNRs, a constant gap exists between the SK/PK upper and lower bounds as the correlation coefficient becomes one.

computer science, theory & methods,engineering, electrical & electronic

Wei Xi,Chen Qian,Jinsong Han,Kun Zhao,Sheng Zhong,Xiang-Yang Li,Jizhong Zhao

DOI: https://doi.org/10.1145/2976749.2978298

2016-01-01

Abstract:Device-to-device communication is important to emerging mobile applications such as Internet of Things and mobile social networks. Authentication and key agreement among multiple legitimate devices is the important first step to build a secure communication channel. Existing solutions put the devices into physical proximity and use the common radio environment as a proof of identities and the common secret to agree on a same key. However they experience very slow secret bit generation rate and high errors, requiring several minutes to build a 256-bit key. In this work, we design and implement an authentication and key agreement protocol for mobile devices, called The Dancing Signals (TDS), being extremely fast and error-free. TDS uses channel state information (CSI) as the common secret among legitimate devices. It guarantees that only devices in a close physical proximity can agree on a key and any device outside a certain distance gets nothing about the key. Compared with existing solutions, TDS is very fast and robust, supports group key agreement, and can effectively defend against predictable channel attacks. We implement TDS using commodity off-the-shelf 802.11n devices and evaluate its performance via extensive experiments. Results show that TDS only takes a couple of seconds to make devices agree on a 256-bit secret key with high entropy.

Hung-Min Sun,Shuai-Min Chen,Ying-Chu Hsiao,Yue-Hsun Lin,Frank Chee-Da Tsai

2007-01-01

Abstract:The Relay Task Group of IEEE 802.16 has developed IEEE 802.16j which supports mobile multi-hop relay (MMR). MMR utilizes relay stations (RS) to extend network capability. Since attacks are easy to mount in wireless interface between RSs and BS, security issues seem to be more important. This paper proposes a group key management scheme that agrees with the Security Zone Key (SZK) specified in IEEE 802.16j. The scheme has two features. First, the re-keying mechanism is efficient lightweight. Second, the scheme is flexible to allow new RSs to join the group.