Yang,Yanjiao Chen,Wei Wang,Gang Yang

DOI: https://doi.org/10.1109/twc.2020.2970412

IF: 10.4

2020-01-01

IEEE Transactions on Wireless Communications

Abstract:The potential of multiuser MIMO (MU-MIMO) to increase network capacity has been intensively studied. To enable concurrent transmission in Frequency-Division Duplex (FDD) systems with limited feedback, users have to report the estimated channel state information (CSI) to the base station (BS) for interference elimination, which however has been proven to be vulnerable. In this paper, we reveal how to utilize the CSI feedbacks to launch sniffing attacks in a deterministic way, where the sniffing attack enables the attackers to eavesdrop other users in the same transmission group. We conduct a rigorous theoretical analysis on the construction of the forged CSI. In the proposed sniffing attacks, the malicious users can successfully sniff other users’ messages without knowing their own messages for signal cancellation. To make sniffing attacks more practical, we explore the possibilities of sniffing multiple users by a coalition of malicious users or a single malicious user. To thwart sniffing attacks, we design a novel secure CSI feedback (SCF) protocol based on the random masking technique, which requires simple modifications at the BS and incurs a little additional workload. Extensive theoretical analysis and experimental results are provided to further validate the effectiveness of our proposed sniffing attacks and the corresponding countermeasure.

Yunlong Mao,Ying He,Yuan Zhang,Jingyu Hua,Sheng Zhong

DOI: https://doi.org/10.1109/tmc.2019.2937081

IF: 6.075

2020-01-01

IEEE Transactions on Mobile Computing

Abstract:Multi-User MIMO (MU-MIMO) has attracted much attention due to its significant advantage of increasing the utilization ratio of wireless channels. However, Frequency-Division Duplex (FDD) systems are vulnerable to eavesdropping, since the explicit CSI feedback can be manipulated. In this paper, we show that Time-Division Duplex (TDD) systems are insecure as well. In particular, we show that it is possible to eavesdrop on other users' downloads by tuning training sequences. In order to defend MU-MIMO against such threats, we propose a secure CSI estimation scheme, which can provide correct estimates of CSI when adversarial users are in presence. We prove that our scheme is secure against training sequence based eavesdropping attack. We have implemented our scheme for TDD MU-MIMO systems and performed a series of experiments. Results demonstrate that our secure CSI estimation scheme is highly effective in protecting TDD MIMO networks against eavesdropping attack. Furthermore, we extend our scheme to support massive MU-MIMO networks, with a carefully redesigned uplink protocol and optimized power allocation to achieve higher spectral efficiency. To be more practical, we also take mismatch channel issue into our consideration. An enhancement scheme is proposed and we show that our scheme with enhancement is secure and correct under mismatch channel.

Sulei Wang,Zhe Chen,Yuedong Xu,Qiben Yan,Chongbin Xu,Xin Wang

DOI: https://doi.org/10.1109/infocom.2019.8737412

2019-01-01

Abstract:Multiuser MIMO (MU-MIMO) empowers access points (APs) with multiple antennas to transmit multiple data streams concurrently to users by exploiting spatial multiplexing. In MU-MIMO, users need to estimate channel state information (CSI) and report it to APs, thus opening a backdoor to attackers who may forge CSI to eavesdrop the content of victims. In this paper, we explore the eavesdropping attack in a novel and practical context in which CSI forgery entangles MU-MIMO user selection in a many-users regime. The attacker hopes to optimize both the eavesdropping opportunity of being selected with the victim and the corresponding decoding quality. We propose new attack and defense mechanisms: (1) USE Attack that enables attackers to achieve near optimal eavesdropping opportunity and high decoding quality through constructing orthogonal CSI against victims followed by stepwise refinements; (2) AngleSec that exploits channel reciprocity for attacker detection without any modification to legacy CSI feedback in which CSI forgery induces a mismatching of downlink and uplink angular spectra at the AP. We implement and evaluate USE Attack and AngleSec in a software defined radio platform WARPv3. Extensive experiments manifest that USE Attack significantly improves the overall eaves-dropping quality compared with state-of-the-art counterparts and AngleSec is able to detect CSI forgery attackers almost for sure.

Samer Bazzi,Wen Xu

DOI: https://doi.org/10.1109/tsp.2017.2711522

IF: 4.875

2017-01-01

IEEE Transactions on Signal Processing

Abstract:We consider the problem of downlink training sequence design for frequency-division-duplex multiuser massive multiple-input multiple-output systems in the general case where users have distinct spatial correlations. The training sequences leverage spatial correlations and are designed to minimize the channel estimation weighted sum mean square error (MSE) under the assumption that users employ minimum MSE estimators. Noting that the weighted sum MSE function is invariant to unitary rotations of its argument, a solution is obtained using a steepest descent method on the Grassmannian manifold. We extend the proposed design to scenarios with temporal correlations combined with Kalman filters at the users, and design sequences exploiting the multiuser spatio-temporal channel structure. Finally, we consider scenarios where only a limited number of bits $B$ are available at the base station (BS) to inform the users of each chosen sequence, e.g., sequences are chosen from a set of $2^B$ vectors known to the BS and users, and develop a subspace version of matching pursuit techniques to choose the desired sequences. Simulation results using realistic channel models show that the proposed solutions improve user fairness with a proper choice of weights, lead to accurate channel estimates with training durations that can be much smaller than the number of BS antennas, and show substantial gains over randomly chosen sequences for even small values of $B$.

Yaxin Yu,Yinglei Teng,Binghui Wang,An Liu,Vincent Lau

DOI: https://doi.org/10.1109/gcwkshps58843.2023.10464906

2023-01-01

Abstract:In FDD massive multiple-input multiple-output (MIMO) systems, user equipments (UEs) are required to send back the downlink channel state information (CSI) to base stations (BSs). However, the high-dimentional CSI souring proportional to antennas leads to unacceptable feedback overhead. Recently, deep learning (DL) has shown its unique powerful ability to compress and reconstruct CSI. In this paper, a novel Multilayer Perceptron (MLP) based feedback network, named M-Net, is proposed, where the specific spatial correlation of channels is emphasized by tailored feature processing modules. To meet the practical requirements of lightweight networks and ensure low inference latency, M-Net adopts parameter sharing to reduce network complexity and eliminates complex operations. Additionally, to leverage the computational resources at the BSs, we design a scalable decoder to further improve the performance of the network. Simulation results show that the proposed M-Net achieves almost the state-of-the-art (SOTA) performance with the lowest computational complexity, while exhibiting a remarkable 49.63% reduction in the inference delay compared to TransNet. Finally, we demonstrate that the M-Net variants achieve the SOTA performance by only deep enning the M-Net decoder. The open source codes are available at https://github.com/Password-YYX/M-Net.

Fei Wang,Wei Xi,Jinsong Han,Kun Zhao,Yuan Gao

DOI: https://doi.org/10.1145/3054977.3057325

2017-01-01

Abstract:Multiple-In-Multiple-Out (MIMO) offers great potential for increasing network capacity by exploiting spatial diversity with multiple antennas. Multiuser MIMO (MU-MIMO) further enables Access Points (APs) with multiple antennas to transmit multiple data streams concurrently to several clients. However, the uplink data transmission (from client to AP) of MU-MIMO is more vulnerable because its wide distribution and diversification. We explore the vulnerability in clients' feedback of estimated CSI to the AP. We then propose two attacks potentially taken by malicious clients and malicious AP respectively: (1) the forging client attack that malicious client report the forged CSI to the AP and (2) forging AP attack that malicious AP transmits wrong training frame to clients. Both of these attacks can lead to incorrect resolving at AP and ruin the whole uplink communication. Correspondingly, we design countermeasures for these attacks, namely CVU and CFU. We evaluate their performance via simulators. Based on our experimental results, we suggest a new CSI feedback scheme to prevent CSI forging, which only requires slight modification at the client side and easy for deployment.

Ronghong Mo,Chau Yuen,Jun Zhang,Xiaoming Chen

DOI: https://doi.org/10.1109/ICC.2016.7511287

2016-01-01

Abstract:In this paper we investigate the physical layer security for downlink MU-MIMO systems where the transmitter and the eavesdropper are equipped with multiple antennas, while the legitimate users have single antenna. This is a more challenging topic because the eavesdropper appears to be more powerful than the legitimate users. We propose a transmission scheme able to enhance secure transmission for legitimate users, by intentionally applying different beamforming matrices to pilot signals and data signals. The beamforming matrix for data signals is constructed in a way that legitimate users can derive the channel matrix experienced by data signals based on pilot signals, whereas the eavesdropper fails to obtain the channel matrix experienced by data signals even with the aid of pilot signals. Therefore coherent detection at the eavesdropper is impossible and the signal-plus-interference-to-noise (SINR) of the eavesdropper is significantly degraded. In addition, the proposed beamforming design is formulated as an optimization problem to maximize the minimum SINR. We theoretically prove that with this formulation, the resultant optimal SINR is not affected by the proposed format of beamforming matrix for data signals. Numerical results show that, the proposed beamforming design outperforms the conventional beamforming design in terms of ergodic secrecy sum rate. Furthermore, with suitable beamforming designs, the ergodic secrecy sum rate achieved will not be noticeably affected by the number of antennas at the eavesdropper, although it is significantly degraded with conventional beamforming design.

Die Hu,Wei Zhang,Lianghua He,Jun Wu

DOI: https://doi.org/10.1109/lwc.2018.2859329

IF: 6.3

2019-01-01

IEEE Wireless Communications Letters

Abstract:In this letter, we investigate secure transmission for multi-cell multi-user massive multiple-input multiple-output systems with an active eavesdropper. During the uplink (UL) training, the eavesdropper can attack the training phase to cause pilot contamination. To resist such pilot contamination attack (PCA), we propose a secure transmission that does not require statistical information of the channels. In the proposed transmission strategy, we first detect PCA by a simple method. If the PCA is not detected, we then estimate the UL data of the users by a semi-blind method based on an asynchronous protocol. After that, we perform the data-aided channel estimation and design the corresponding precoder. Simulation results demonstrate that the proposed transmission can effectively resist the PCA even when the PCA detection method fails.

Kai Zhang,Zhisheng Niu

DOI: https://doi.org/10.1109/ICC.2007.914

2007-01-01

Abstract:The performance of multiuser MIMO downlink systems with block diagonalization (BD) relies on the channel state information (CSI) at the transmitter to a great extent. For time division duplex TDD systems, the transmitter estimates the CSI while receiving data at current time slot and then uses the CSI to transmit at the next time slot. When the wireless channel is time-varying, the CSI for transmission is imperfect due to the time delay between the estimation of the channel and the transmission of the data and severely degrades the system performance. In this paper, we propose a linear method to suppress the interferences among users and data streams caused by imperfect CSI at transmitter. The transmitter first sends pilot signals through a linear spatial precoding matrix so as to make possible that the receiver can estimate CSI of other users, and then the receiver exploits a linear prefilter to suppress the interference. The numerical results show that the proposed schemes achieve obvious performance enhancement in comparison to the scheme assuming perfect CSI at the transmitter.

Yingyang Chen,Li Wang,Zijun Zhao,Meng Ma,Bingli Jiao

DOI: https://doi.org/10.1109/LCOMM.2016.2549014

IF: 3.5529

2016-01-01

IEEE Communications Letters

Abstract:This letter generalizes the precoding-aided spatial modulation (PSM) to a multiuser (MU) downlink scenario. With precoding vectors elaborately designed, a proposed MU-PSM scheme has the capability to resist a multiple antenna eavesdropper. Specifically, signal precoding matrices (SPMs) are designed to cancel the MU interference and modulate partial information bits on the indices of receive antennas. To improve physical layer security, scrambling on SPMs is conceived to construct a fast-varying precoding matrix, which contributes to the degradation at Eve's blind estimation and detection. Moreover, issues of detection algorithms and a lower bound of secrecy rate are addressed to verify security enhancement in the proposed scheme.

Yong Chen,Tao Zhang,Xiaoqiang Qiao,Hao Wu,Jiang Zhang

DOI: https://doi.org/10.1109/access.2020.3048158

IF: 3.9

2021-01-01

IEEE Access

Abstract:This paper investigates a secure transmission in the multiple-input multiple-output (MIMO) cognitive wiretap networks, where a secondary transmitter (Alice) sends data to a secondary receiver (Bob) in the presence of an eavesdropper (Eve). In order to solve the problems of inter channel interference and inter antenna synchronization encountered by traditional MIMO technologies, the antenna transmission scheme is adopted at the transmitter. As a comparison, we design two different antenna transmission schemes, namely transmit antenna selection maximal-ratio combining (TAS-MRC) scheme and differential spatial modulation maximal-ratio combining (DSM-MRC) scheme, respectively. Moreover, due to outdated channel state information (CSI) of the interference link from Alice to the primary user (PU), we propose power control mechanism to protect the quality of service (QoS) of PU. Furthermore, the closed-form for the secrecy outage probability and the secrecy throughput with TAS-MRC and DSM-MRC schemes are derived to evaluate the secrecy performance, respectively. What's more, we explore the security diversity gain and coding gain based on the asymptotic secrecy outage probability. As the results, it demonstrates that DSM-MRC requires less CSI and is convenient for modulation and demodulation, but sacrifices some secrecy performance gains between two proposed schemes.

computer science, information systems,telecommunications,engineering, electrical & electronic

Hongmei Wang,Xibin Xu,Ming Zhao,Weilin Wu,Yan Yao

DOI: https://doi.org/10.1109/wcnc.2008.65

2008-01-01

Abstract:The performance of multiuser MIMO (MU-MIMO) downlink systems with preceding and decoding method by minimizing the total mean square error (TMSE) of all data streams of all users (T-MMSE) depends on the accuracy of the channel state information (CSI) available at the transmitter (CSIT). In this paper, a robust transmission scheme is proposed to suppress the interferences among data streams and users caused by imperfect CSIT. At the transmitter, the precoders are obtained through an iterative procedure by minimizing the expectation of the TMSE of all data streams of all users conditioned on the estimated CSI under a total transmit power constraint. At each user, a linear decoder is calculated based on the minimum mean square error (MMSE) criteria according to the realtime CSI. To fulfill it, a new pilot-sending architecture is introduced. Numerical results demonstrate that the proposed scheme is robust not only to the channel uncertainty at the transmitter but also to the channel uncertainty at each user, and can effectively improve the system performance.

Xiaoming Chen,Yu Zhang

DOI: https://doi.org/10.1109/jsyst.2015.2413843

IF: 4.802

2017-01-01

IEEE Systems Journal

Abstract:In this paper, we consider a homogenous multiantenna downlink network, where a passive eavesdropper intends to intercept the communication between a base station and multiple secure users (SUs) over Rayleigh fading channels. In order to guarantee the security of information transfer, physical-layer security is employed accordingly. For such a multiple user (MU) secure network, the number of accessing SUs, i.e., the transmission mode, has a great impact on the secrecy performance. Specifically, on one hand, a large number of accessing SUs will result in high interuser interference at SUs, resulting in a reduction in the capacity of the legitimate channel. On the other hand, high interuser interference will interfere with the eavesdropper and thus degrades the performance of the eavesdropper channel. Generally speaking, the harmful interuser interference may be transformed as a useful tool in antieavesdropping. The focus of this paper is on selecting the optimal transmission mode according to channel conditions and system parameters to maximize the sum secrecy outage capacity. Moreover, through asymptotic analysis, we present several simple mode selection schemes in some extreme cases. Finally, simulation results validate the effectiveness of the proposed mode selection schemes in MU secure communications.

Hongmei Wang,Xibin Xu,Ming Zhao,Yan Yao

DOI: https://doi.org/10.1109/GLOCOM.2007.667

2007-01-01

Abstract:Based on the analysis of the effect of the outdated channel state information (CSI) available at the transmitter (CSIT) on multiuser MIMO (MU-MIMO) downlink systems with block zero-forcing precoding (BZFP) method, two linear processing methods, BZFP at the transmitter with total MMSE decoding at the receiver (TBZF-RTMMSE) and BZFP at the transmitter with partial MMSE decoding at the receiver (TBZF-RPMMSE) are proposed. To fulfill them, a new pilot-sending and channel estimation architecture is introduced. Analysis and simulation results show that the two proposed methods can effectively reduce the impairment of the outdated CSIT and improve the system sum capacity in the suitable time delay region of the CSIT.

Amitav Mukherjee,A. Lee Swindlehurst

DOI: https://doi.org/10.48550/arXiv.1008.3730

2010-08-23

Abstract:Accurate channel state information (CSI) at the transmitter is critical for maximizing spectral efficiency on the downlink of multi-antenna networks. In this work we analyze a novel form of physical layer attacks on such closed-loop wireless networks. Specifically, this paper considers the impact of deliberately inaccurate feedback by malicious users in a multiuser multicast system. Numerical results demonstrate the significant degradation in performance of closed-loop transmission schemes due to intentional feedback of false CSI by adversarial users.

Information Theory

Bui Minh Tuan,Diep N. Nguyen,Nguyen Linh Trung,Van-Dinh Nguyen,Nguyen Van Huynh,Dinh Thai Hoang,Marwan Krunz,Eryk Dutkiewicz

2024-10-28

Abstract:Wireless communications are particularly vulnerable to eavesdropping attacks due to their broadcast nature. To effectively deal with eavesdroppers, existing security techniques usually require accurate channel state information (CSI), e.g., for friendly jamming (FJ), and/or additional computing resources at transceivers, e.g., cryptography-based solutions, which unfortunately may not be feasible in practice. This challenge is even more acute in low-end IoT devices. We thus introduce a novel deep learning-based FJ framework that can effectively defeat eavesdropping attacks with imperfect CSI and even without CSI of legitimate channels. In particular, we first develop an autoencoder-based communication architecture with FJ, namely AEFJ, to jointly maximize the secrecy rate and minimize the block error rate at the receiver without requiring perfect CSI of the legitimate channels. In addition, to deal with the case without CSI, we leverage the mutual information neural estimation (MINE) concept and design a MINE-based FJ scheme that can achieve comparable security performance to the conventional FJ methods that require perfect CSI. Extensive simulations in a multiple-input multiple-output (MIMO) system demonstrate that our proposed solution can effectively deal with eavesdropping attacks in various settings. Moreover, the proposed framework can seamlessly integrate MIMO security and detection tasks into a unified end-to-end learning process. This integrated approach can significantly maximize the throughput and minimize the block error rate, offering a good solution for enhancing communication security in wireless communication systems.

Information Theory,Signal Processing

Hui-Ming Wang,Ke-Wen Huang,Theodoros A. Tsiftsis

DOI: https://doi.org/10.48550/arXiv.1801.04104

2018-01-12

Abstract:Transmitter-side channel state information (CSI) of the legitimate destination plays a critical role in physical layer secure transmissions. However, channel training procedure is vulnerable to the pilot spoofing attack (PSA) or pilot jamming attack (PJA) by an active eavesdropper (Eve), which inevitably results in severe private information leakage. In this paper, we propose a random channel training (RCT) based secure downlink transmission framework for a time division duplex (TDD) multiple antennas base station (BS). In the proposed RCT scheme, multiple orthogonal pilot sequences (PSs) are simultaneously allocated to the legitimate user (LU), and the LU randomly selects one PS from the assigned PS set to transmit. Under either the PSA or PJA, we provide the detailed steps for the BS to identify the PS transmitted by the LU, and to simultaneously estimate channels of the LU and Eve. The probability that the BS makes an incorrect decision on the PS of the LU is analytically investigated. Finally, closed-form secure beamforming (SB) vectors are designed and optimized to enhance the secrecy rates during the downlink transmissions. Numerical results show that the secrecy performance is greatly improved compared to the conventional channel training scheme wherein only one PS is assigned to the LU.

Information Theory

Jiahua Qiu,Kui Xu,Xiaochen Xia,Zhexian Shen,Wei Xie,Dongmei Zhang,Meng Wang

DOI: https://doi.org/10.1109/tsipn.2022.3149112

2022-01-01

IEEE Transactions on Signal and Information Processing over Networks

Abstract:In this paper, we mainly study how to improve the secure transmission performance of cell-free massive multiple-input multiple-output (MIMO) systems by using location technology. In cell-free massive MIMO systems, active pilot attacks will contaminate the uplink channel estimation and affect the downlink precoding of access points (APs). In order to effectively reduce the impact of active pilot attacks on user transmission, this paper respectively proposes an user location estimation method based on fingerprint positioning and a channel estimation algorithm based on location information. Firstly, under the imperfect channel state information, the location information of users and eavesdropper is obtained by using fingerprint positioning method and K-means clustering algorithm. Then, combined with location information, AP selection strategy and channel estimation method based on non-overlapping angle of arrival (AOA) criterion are proposed respectively. Based on the location information of users and eavesdropper, we use discrete Fourier transform (DFT) to distinguish the uplink channels of legitimate user and eavesdropper from the angle domain, thus eliminating the pilot contamination caused by active pilot attacks. The results show that compared with the traditional transmission method, the proposed secure transmission strategy can increase the secrecy rate of up to 2 b/s/Hz, which effectively enhances the secure transmission performance of cell-free massive MIMO in strong interference environment.

telecommunications,engineering, electrical & electronic