Wenlong Shen,Weisheng Hong,Xianghui Cao,Bo Yin,Devu Manikantan Shila,Yu Cheng

2014-01-01

Abstract:With the rapid growth of smartphone and tablet users, Device-to-Device (D2D) communications have become an attractive solution for enhancing the performance of traditional cellular networks. However, relevant security issues involved in D2D communications have not been addressed yet. In this paper, we investigate the security requirements and challenges for D2D communications, and present a secure and efficient key agreement protocol, which enables two mobile devices to establish a shared secret key for D2D communications without prior knowledge. Our approach is based on the Diffie-Hellman key agreement protocol and commitment schemes. Compared to previous work, our proposed protocol introduces less communication and computation overhead. We present the design details and security analysis of the proposed protocol. We also integrate our proposed protocol into the existing Wi-Fi Direct protocol, and implement it using Android smartphones.

Kecheng Liu,Wenlong Shen,Yu Cheng,Lin X. Cai,Qing Li,Sheng Zhou,Zhisheng Niu

DOI: https://doi.org/10.1109/jiot.2018.2877174

IF: 10.6

2019-04-01

IEEE Internet of Things Journal

Abstract:Mobile device-to-device (D2D) network has now become a standardized feature in many mobile devices, by which mobile devices can communicate with each other even when commercial Internet access is not available. Because D2D network is expected to be an intrinsic part of the Internet of Things (IoT) and mobile device is the smartest and the most advanced commercial device in everyday usage, the D2D feature and related security protocols it adopts influences the design and implementation of many other IoT devices. While D2D network provides tangible benefits to users, it also raises the security risks of information leaking. This paper presents an in-depth empirical security analysis on mobile D2D network among Android devices. Android apps could establish a mobile D2D network in various ways, including Wi-Fi hotspot, Wi-Fi Direct, and Bluetooth. Those mobile D2D protocols normally take different protection mechanisms, which makes security investigation considerably challenging. In this paper, we focus on most popular apps in the Google Play Store, with aggregated downloads more than 500 million. Our analysis reveals some critical vulnerabilities. The key findings are bi-fold. First, the current mobile D2D network framework enabled by Android has significant flaw of overprivilege issue. Second, we have identified that most data transfer over mobile D2D network is unencrypted. Furthermore, we exploit the identified Android framework flaws to construct three proof-of-concept attacks and we conclude this paper with security lessons and suggestions of possible solutions against the identified security issues.

computer science, information systems,telecommunications,engineering, electrical & electronic

Mingsheng Cao,Luhan Wang,Hua Xu,Dajiang Chen,Chunwei Lou,Ning Zhang,Yixin Zhu,Zhiguang Qin

DOI: https://doi.org/10.1109/access.2019.2900727

IF: 3.9

2019-01-01

IEEE Access

Abstract:Device-to-Device (D2D) communication is a promising method for the emerging Internet of Things. Secure information exchange plays a key role in the application of D2D communication. Considering that the wireless devices are powered by batteries, in this paper, a lightweight secure D2D system is designed by using multiple sensors on mobile devices. Specifically, by leveraging an acceleration sensor equipped in two wireless devices, a lightweight and efficient key distribution scheme for secure D2D communication is proposed. Based on the distributed secure key, an efficient near-field authentication is developed with a speaker and a microphone to determine whether these two devices are physically close; and a secure information exchange scheme with high efficiency, which includes message encryption/decryption and message authentication, is presented over the audio channel and the RF channel. The Extensive experiments are provided to demonstrate that our system can achieve a secure information exchange between two wireless devices with low energy consumption and computing resources.

Weirong Cui,Chenglie Du,Jinchao Chen

DOI: https://doi.org/10.1007/s11276-017-1588-9

IF: 2.701

2017-01-01

Wireless Networks

Abstract:Wireless device-to-device (D2D) communication, which enables direct communication between co-located devices without Internet access, is becoming common. Simultaneously, security issues have become technical barriers to D2D communication due to its open-air nature and lack of centralized control. Automatically establishing the secure association between wireless devices that do not share a prior trust remains an open and challenging problem. Recent work has proposed to extract shared keys from the similar ambient radio signals of two co-located wireless devices. Using such methods, information reconciliation based on error-correcting techniques is implemented to make two co-located devices extract the same bitstreams as the shared keys from their similar ambient radio environment. However, due to the bounded capability of the error-correcting code, existing methods can only work effectively in a very short distance range. In this paper, we propose a novel solution, called proximity-based secure pairing (PSP), which allows two wireless devices in physical proximity to automatically authenticate each other and obtain shared keys according to the channel state information of the WiFi signals. In contrast to existing methods, PSP is built on private set intersection computation rather than information reconciliation, which makes it effective over a wider distance range while ensuring security and efficiency. We provide a thorough security analysis and performance evaluation of PSP and demonstrate its advantages in terms of security, efficiency and usability over state-of-the-art methods.

Colin Funai,Cristiano Tapparello,Wendi Heinzelman

DOI: https://doi.org/10.1109/ICCNC.2017.7876178

2016-01-01

Abstract:With the increasing availability of mobile devices that natively support Device-to-Device (D2D) communication protocols, we are presented with a unique opportunity to realize large scale ad hoc wireless networks. Recently, a novel D2D protocol named WiFi Direct has been proposed and standardized by the WiFi Alliance with the objective of facilitating the interconnection of nearby devices. However, WiFi Direct has been designed following a client-server hierarchical architecture, where a single device manages all the communications within a group of devices. In this paper, we propose and analyze different solutions for supporting the communications between multiple WiFi Direct groups using Android OS devices. By describing the WiFi Direct standard and the limitations of the current implementation of the Android WiFi Direct framework, we present possible solutions to interconnect different groups to create multi-hop ad hoc networks. Experimental results show that our proposed approaches are feasible with different overhead in terms of energy consumption and delay at the gateway node. Additionally, our experimental results demonstrate the superiority of techniques that exploit the device ability to maintain simultaneous physical connections to multiple groups.

Networking and Internet Architecture

Daohua Zhu,A. Lee Swindlehurst,S. Ali A. Fakoorian,Wei Xu,Chunming Zhao

DOI: https://doi.org/10.1109/icassp.2014.6853869

2014-01-01

Abstract:In systems that allow device-to-device (D2D) communications, user pairs in close proximity communicate directly without using an access point (AP) as an intermediary. D2D communications leads to improved throughput, reduced power consumption and interference, and more flexible resource allocation. We show that the D2D paradigm also provides significantly improved security at the physical layer, by reducing exposure of the information to eavesdroppers from two relatively high-power transmissions to a single low-power hop. We derive the secrecy outage probability (SOP) for the D2D and cellular systems, and compare performance for D2D scenarios in the presence of a multi-antenna eavesdropper. The cellular approach is only seen to have an advantage in certain cases when the AP has a large number of antennas and perfect channel state information.

Chao Yao,Hongliang Zhang,Lingyang Song

DOI: https://doi.org/10.1145/2746285.2764931

2015-01-01

Abstract:WiFi Direct is a new technology proposed by WiFi Alliance to enable direct device to device communications using the same spectrum as WiFi. In some scenarios, communication distance between two devices cannot be covered by one hop, and thus, multihop Device to Device (D2D) communication is required to solve this problem. However, existing WiFi Direct protocol doesn't provide multihop message routing. In this paper, we propose a multihop D2D communication protocol based on WiFi Direct, and implement it on Android smartphone. Devices will form a group in consideration of power and topology condition, delay-tolerant routing between two groups is supported by the protocol.

Wei Xi,Chen Qian,Jinsong Han,Kun Zhao,Sheng Zhong,Xiang-Yang Li,Jizhong Zhao

DOI: https://doi.org/10.1145/2976749.2978298

2016-01-01

Abstract:Device-to-device communication is important to emerging mobile applications such as Internet of Things and mobile social networks. Authentication and key agreement among multiple legitimate devices is the important first step to build a secure communication channel. Existing solutions put the devices into physical proximity and use the common radio environment as a proof of identities and the common secret to agree on a same key. However they experience very slow secret bit generation rate and high errors, requiring several minutes to build a 256-bit key. In this work, we design and implement an authentication and key agreement protocol for mobile devices, called The Dancing Signals (TDS), being extremely fast and error-free. TDS uses channel state information (CSI) as the common secret among legitimate devices. It guarantees that only devices in a close physical proximity can agree on a key and any device outside a certain distance gets nothing about the key. Compared with existing solutions, TDS is very fast and robust, supports group key agreement, and can effectively defend against predictable channel attacks. We implement TDS using commodity off-the-shelf 802.11n devices and evaluate its performance via extensive experiments. Results show that TDS only takes a couple of seconds to make devices agree on a 256-bit secret key with high entropy.

Andrei Bytes,Jay Prakash,Jianying Zhou,Tony Q.S. Quek

DOI: https://doi.org/10.48550/arXiv.2002.03144

2020-04-26

Abstract:The number of active users of Wi-Fi Direct Device-to-Device file sharing applications on Android has exceeded 1.8 billion. Wi-Fi Direct, also known as Wi-Fi P2P, is commonly used for peer-to-peer, high-speed file transfer between mobile devices, as well as a close proximity connection mode for wireless cameras, network printers, TVs and other IoT and mobile devices. For its end users, such type of direct file transfer does not incur cellular data charges. However, despite the popularity of such applications, we observe that the software vendors tend to prioritize the ease of user flow over the security in their implementations, which leads to serious security flaws. We perform a comprehensive security analysis in the context of security and usability and report our findings in the form of 17 Common Vulnerabilities and Exposures (CVE) which have been disclosed to the corresponding vendors. To address the similar flaws at the early stage of the application design, we propose a joint consideration of security and usability for such applications and their protocols that can be visualized in form of a customised User Journey Map (UJM).

Cryptography and Security,Human-Computer Interaction,Networking and Internet Architecture

Md. Monjurul Islam,Zhongshan Zhang

DOI: https://doi.org/10.1109/iccsn.2019.8905280

2019-01-01

Abstract:Device-to-device (D2D) communication is such a paradigm that appears to be a sustainable alleviation for the existing cellular network as the existing network struggling to accommodate the excessive amount of data demand for the cellular users due to the scarcity of the wireless resources. Security threats are the critical impediment to achieve the purpose of the D2D communication as attackers may easily intercept the wireless communication link due to the vulnerable attribute of the wireless communication channel and its broadcasting nature which degrades the performance of the D2D communication. The highest possible security steps need to take into account to upgrade the performance of the D2D communication. In D2D communication, the network layer is the vital layer as data routing and transmission are performed throughout this layer and attackers constantly attempts to affect the transmitted data through this layer. In this paper, we propose three ways secure handshaking mechanism to emphasize the security of the D2D communication by ensuring the secure transmission channel between two users, authenticating the users and encrypting the transmitted data. Thus, the propose handshaking mechanism minimizes security threats and maximizes the performance of D2D communication.

Hao Xu,Cunhua Pan,Wei Xu,Jianfeng Shi,Ming Chen,Wei Heng

DOI: https://doi.org/10.1109/glocom.2018.8647915

2018-01-01

Abstract:This paper investigates the physical layer security issue of a device-to-device (D2D) underlaid cellular system with a multi-antenna base station (BS) and a multi-antenna eavesdropper. To investigate the potential of D2D communication in improving network security, the conventional network without D2D users (DUs) is first considered. It is shown that the problem of maximizing the sum secrecy rate (SR) of cellular users (CUs) for this special case can be transformed to an assignment problem and optimally solved. Then, a D2D underlaid network is considered. Since the joint optimization of resource block (RB) allocation, CU-DU matching and power control is a mixed integer programming, the problem is difficult to handle. Hence, the RB assignment process is first conducted by ignoring D2D communication, and an iterative algorithm is then proposed to solve the remaining problem. Simulation results show that the sum SR of CUs can be greatly increased by D2D communication, and compared with the existing schemes, a better secrecy performance can be obtained by the proposed algorithms.

Zhifei Mao,Jing Ma,Yuming Jiang,Bin Yao

DOI: https://doi.org/10.1109/iscc.2017.8024690

2017-01-01

Abstract:WiFi Direct is a recent device-to-device communication technology standardized by the WiFi Alliance. Its increasing availability on popular mobile systems (e.g. Android) presents a unique opportunity for developers to implement mobile social networks (MSNs), a new paradigm that facilitates data dissemination without Internet access by leveraging human mobility and short-range communication technologies. Since WiFi Direct is not originally designed for such applications, it is significant to learn its performance in practice. In this paper, we investigate goodput and fairness of WiFi Direct for data dissemination in MSNs. To this end, we develop an MSN application and conduct three sets of experiments on a testbed comprising several Android devices. Experimental results show that the data loads and mobility of nodes greatly impact the goodput and fairness.

Rui Liu,Guanding Yu,Fengzhong Qu,Zihan Zhang

DOI: https://doi.org/10.1109/access.2016.2603237

IF: 3.9

2016-01-01

IEEE Access

Abstract:In this paper, a novel technology, namely, device-to-device communications in the unlicensed spectrum (D2D-U) is proposed, which can allow D2D users to transmit on the unlicensed spectrum and coexist with the incumbent Wi-Fi networks. In D2D-U networks, D2D users can share the licensed spectrum with the existing cellular users or share the unlicensed spectrum with legacy Wi-Fi networks. Therefore, mutual interference across different networks and different users should be properly coordinated to optimize the system performance. In this paper, within the framework of D2D-U, we propose a joint mode selection and resource allocation algorithm to minimize the overall interference that cellular and Wi-Fi users suffer from the D2D communications while guaranteeing the signal-to-noise-and-interference ratio requirements of all users, including those of cellular, D2D, and Wi-Fi. Through theoretical analysis and numerical simulation, we show that using unlicensed spectrum can significantly mitigate the interference to both cellular and Wi-Fi users. Moreover, the duty cycle-based unlicensed spectrum access method achieves better system throughput than the listen-before-talk-based access method in most of the cases.

Mingsheng Cao,Dajiang Chen,Zhongye Yuan,Zhiguang Qin,Chunwei Lou

DOI: https://doi.org/10.1109/mownet.2018.8428890

2018-01-01

Abstract:Key distribution plays a crucial role in secure device-to-device (D2D) communication. However, due to the lack of infrastructure of D2D communication and the limited storage and computing capability of wireless devices, many key distribution methods based traditional cryptography cannot be directly applied to D2D communication scenarios. In this paper, a lightweight key distribution scheme is proposed by using acceleration sensors. Specifically, a lightweight extreme points extraction and filtering algorithm is presented in the proposed scheme to extract extreme points for key generation. Moreover, a lightweight index matching algorithm is designed in the proposed scheme to further improve the bit match rate. Furthermore, an application of the proposed scheme is developed on android system and developed by JAVA. Through extensive experiments, it is demonstrated that the proposed scheme can distribute a secure key with high entropy and low computing resources and energy consumption.

Claudio Casetti,Carla Fabiana Chiasserini,Luciano Curto Pelle,Carolina Del Valle,Yufeng Duan,Paolo Giaccone

DOI: https://doi.org/10.1109/wowmom.2015.7158136

2015-01-01

Abstract:The added value of Device-to-Device (D2D) communication amounts to an efficient content discovery mechanism that enables users to steer their requests toward the node most likely to satisfy them. In this paper, we address the implementation of content-centric routing in a D2D architecture for Android devices based on WiFi Direct, a protocol recently standardised by the Wi-Fi Alliance. After discussing the creation of multiple D2D groups, we introduce novel paradigms featuring intra- and inter-group bidirectional communication. We then present the primitives involved in content advertising and requesting among members of the multi-group network. Finally, we evaluate the performance of our architecture in a real testbed involving Android devices in different group configurations. We also compare the results against the ones achievable exploiting Bluetooth technologies.

Yunqing Sun,Jin Cao,Xiongpeng Ren,Canhui Tang,Ben Niu,Yinghui Zhang,Hui Li

DOI: https://doi.org/10.1109/tits.2024.3368335

IF: 8.5

2024-01-01

IEEE Transactions on Intelligent Transportation Systems

Abstract:Device-to-device (D2D) communication, as a traffic offloading technology in the fifth-generation (5G) network, can be widely used in several scenarios to provide 5G characteristics of higher speed, lower latency, and larger capacity. D2D data transmission over wireless channels among mobile devices is vulnerable to security threats and privacy violations from third parties and relay nodes. However, academia and industry have yet to propose relevant schemes or standards for D2D relay data transmission scenarios. We first propose a generic construction for D2D relay communication in this paper. Then, a concrete anonymous and secure D2D data transmission scheme with trajectory tracking is presented based on Chebyshev polynomials, hash-based message authentication code, and symmetric encryption. We employ a formal verification tool -Tamarin, modal logic analysis -BAN logic, and informal security analysis to demonstrate the security features of the proposed scheme. The performance evaluation shows that the proposed scheme can achieve desirable efficiency compared with other related schemes. Finally, we developed an APP‘, D2DWatchmen’, to simulate the whole protocol and test its robustness and real execution time, where the result shows good availability and effectiveness.

engineering, electrical & electronic,transportation science & technology, civil

Xinlei Chen,Yulei Zhao,Yong Li,Xu Chen,Ning Ge,Sheng Chen

DOI: https://doi.org/10.1109/jsac.2018.2825658

IF: 16.4

2018-01-01

IEEE Journal on Selected Areas in Communications

Abstract:In a device-to-device (D2D) communications underlaying cellular network, any user is a potential eavesdropper for the transmissions of others that occupy the same spectrum. The physical-layer security mechanism of theoretical secure capacity, which maximizes the rate of reliable communication from the source user to the legitimate receiver and ensure unauthorized users learn as little as information as possible, is typically employed to guarantee secure communications. As hand-held devices are carried by human beings, we may leverage their social trust to decrease the number of potential eavesdroppers. Aiming to establish a new paradigm for solving the challenging problem of security and efficiency tradeoff, we propose a social trust-aware D2D communication architecture that exploits the social-domain trust for securing the physical-domain communication. In order to understand the impact of social trust on the security of transmissions, we analyze the system ergodic rate of social trust aided communications via stochastic geometry, and our result based on a real data set shows that the proposed social trust aided D2D communication increases the system secrecy rate by about 63% compared with the scheme without considering social trust relation. Furthermore, in order to provide implementation mechanism, we utilize matching theory to implement efficient resource allocation among multiple users. Numerical results show that our proposed mechanism increases the system secrecy rate by 28% with fast convergence over the social oblivious approach.

Lei Wang,Zhonglei Li,Mingkai Chen,Aiqing Zhang,JingWu Cui,Baoyu Zheng

DOI: https://doi.org/10.1109/wcsp.2017.8171117

2017-01-01

Abstract:With the increasing of mobile devices, Device-to-Device(D2D) communication is considered as a promising technology for achieving direct communication of devices. But the security issues still remain to be solved. In this paper, We utilize D2D communication between UEs in proximity to share epidemic media contents. We propose a Secure Content Sharing Protocol(SCSP) that combine with the credibility between users. The credibility involves user's interest, interaction and geographical location. By means of encryption, signature and authentication in SCSP, the data confidentiality, non-repudiation and mutual authentication can be guaranteed. Furthermore, the user's privacy can be protected based on Pallier Homomorphic Encryption. At last, it is shown that the proposed SCSP can meet the security requirements and have lower computation cost in comparison with other related works through security analysis and quantitative evaluation.

Jiaheng Wang,Qi Tang,Chungang Yang,Robert Schober,Jing Li

DOI: https://doi.org/10.1109/lsp.2016.2611614

2016-01-01

IEEE Signal Processing Letters

Abstract:Device-to-device (D2D) communication underlaying cellular networks improves spectral efficiency but causes interference to cellular users (CUs). Such interference can be utilized to help CUs prevent wiretapping. This paper aims to achieve the twofold goal of security provisioning for CUs and spectral efficiency enhancement for D2D links by optimizing the resource sharing of CUs and D2D links. We first provide the necessary and sufficient conditions for the accessibility of a CU channel by a D2D link. Then, we derive the jointly optimal resource sharing strategy, including the closed-form power control and the optimal channel pairing of CUs and D2D links. Numerical results show that the proposed strategy can improve both the CUs' security and D2D spectral efficiency.

Yuhang Wang,Zhiyong Chen,Yao,Manyuan Shen,Bin Xia

DOI: https://doi.org/10.1109/wcsp.2014.6992171

2014-01-01

Abstract:In this paper, we aim to optimize the secrecy rate of the cellular user (CU) in a single cell where the Device-to-Device (D2D) communication shares the uplink resource with CU. The interference link from CU to the D2D receiver can be considered as the eavesdropping link in the sense that the D2D receiver may try to decode the cellular user's message. The proposed scheme aims to optimize the achievable secrecy data rate of CU when guaranteeing the quality-of-service (QoS) requirement of the D2D link. In particular, for a given D2D pair, we propose an secure region of the CU partner, where the physical layer security of the CU partner can be guaranteed. The D2D link is not allowed to share the spectrum with CU residing outside the secure region. Furthermore, an optimal power allocation algorithm is designed to optimize the secrecy capacity of CU. Numerical results are conducted to evaluate the performance of the proposed scheme and verify the characterization of the secure region.