Jianwei Liu,Yinghui He,Chaowei Xiao,Jinsong Han,Le Cheng,Kui Ren

DOI: https://doi.org/10.1109/INFOCOM48880.2022.9796920

2022-01-01

Abstract:Behavior recognition plays an essential role in numerous behavior-driven applications (e.g., virtual reality and smart home) and even in the security-critical applications (e.g., security surveillance and elder healthcare). Recently, WiFi-based behavior recognition (WBR) technique stands out among many behavior recognition techniques due to its advantages of being non-intrusive, device-free, and ubiquitous. However, existing WBR research mainly focuses on improving the recognition precision, while neglecting the security aspects. In this paper, we reveal that WBR systems are vulnerable to manipulating physical signals. For instance, our observation shows that WiFi signals can be changed by jamming signals. By exploiting the vulnerability, we propose two approaches to generate physically online adversarial samples to perform untargeted attack and targeted attack, respectively. The effectiveness of these attacks are extensively evaluated over four real-world WBR systems. The experiment results show that our attack approaches can achieve 80% and 60% success rates for untargeted attack and targeted attack in physical world, respectively. We also propose three methods to mitigate the hazard of such attacks.

Runmin Ou,Yanjiao Chen,Yangtao Deng

DOI: https://doi.org/10.1109/jiot.2022.3222204

IF: 10.6

2023-01-01

IEEE Internet of Things Journal

Abstract:The rapid development of the Internet of Things (IoT) boosts the spread of intelligent spaces. Biometrics-based user identification has gained great popularity recently, among which gait analysis offers a stable, user-friendly, and economical solution. Thanks to the advancement in wireless sensing technologies, capturing gait characteristics using WiFi signals has become a promising new paradigm. The identification process is contactless, insensitive to lighting conditions, and can reuse the incumbent WiFi infrastructure. In this article, we present a gait-based dual-user identification framework named WiWalk to tackle the difficulty where users walk closely together with mixed effects on WiFi signals. The core of WiWalk is to train a deep neural network that can separate and recover individual signals from the mixed ones. Since the separation process inevitably causes information loss, we carefully design a series of algorithms for interference elimination, segmentation, and feature extraction, to enhance the identification accuracy. We conduct extensive experiments to evaluate WiWalk at different locations and times with users of different ages, genders, clothing, and walking behaviors. WiWalk can reach an accuracy of 94.44%, which is suitable for smart homes or offices with a small user base.

Hao Kong,Li Lu,Jiadi Yu,Yanmin Zhu,Feilong Tang,Yi-Chao Chen,Linghe Kong,Feng Lyu

DOI: https://doi.org/10.1109/infocom48880.2022.9796740

2022-01-01

Abstract:With the development of smart indoor environments, user authentication becomes an essential mechanism to support various secure accesses. Although recent studies have shown initial success on authenticating users with human activities or gestures using WiFi, they rely on predefined body gestures and perform poorly when meeting undefined body gestures. This work aims to enable WiFi-based user authentication with undefined body gestures rather than only predefined body gestures, i.e., realizing a gesture-independent user authentication. In this paper, we first explore physiological characteristics underlying body gestures, and find that statistical distributions under WiFi signals induced by body gestures can exhibit invariant individual uniqueness unrelated to specific body gestures. Inspired by this observation, we propose a user authentication system, which utilizes WiFi signals to identify individuals in a gesture-independent manner. Specifically, we design an adversarial learning-based model, which suppresses specific gesture characteristics, and extracts invariant individual uniqueness unrelated to specific body gestures, to authenticate users in a gesture-independent manner. Extensive experiments in indoor environments show that the proposed system is feasible and effective in gesture-independent user authentication.

Hangcheng Cao,Wenbin Huang,Guowen Xu,Xianhao Chen,Ziyang He,Jingyang Hu,Hongbo Jiang,Yuguang Fang

2024-04-24

Abstract:Deep learning technologies are pivotal in enhancing the performance of WiFi-based wireless sensing systems. However, they are inherently vulnerable to adversarial perturbation attacks, and regrettably, there is lacking serious attention to this security issue within the WiFi sensing community. In this paper, we elaborate such an attack, called WiIntruder, distinguishing itself with universality, robustness, and stealthiness, which serves as a catalyst to assess the security of existing WiFi-based sensing systems. This attack encompasses the following salient features: (1) Maximizing transferability by differentiating user-state-specific feature spaces across sensing models, leading to a universally effective perturbation attack applicable to common applications; (2) Addressing perturbation signal distortion caused by device synchronization and wireless propagation when critical parameters are optimized through a heuristic particle swarm-driven perturbation generation algorithm; and (3) Enhancing attack pattern diversity and stealthiness through random switching of perturbation surrogates generated by a generative adversarial network. Extensive experimental results confirm the practical threats of perturbation attacks to common WiFi-based services, including user authentication and respiratory monitoring.

Cryptography and Security

Wade Trappe,Wenyuan Xu

DOI: https://doi.org/10.7282/t3rj4jw7

2007-01-01

Abstract:Wireless networks are built upon a shared medium that makes it easy for adversaries to conduct radio interference, or jamming attacks, which effectively cause a denial of service (DoS) of either transmission or reception functionalities. These attacks can be easily accomplished by an adversary by either bypassing MAC-layer protocols, or emitting a radio signal targeted at jamming a particular channel. In this thesis, we examine the issue of jamming wireless networks, and sensor networks in particular, by studying both the attack and defense side of the problem. On the attack side, we present four different jamming attack models that can be used by an adversary to disable the operation of a wireless network, and evaluate their effectiveness in terms of how each method affects the ability of a wireless node to send and receive packets. In order to cope with the problem of jamming, we discuss a two-phase strategy involving the diagnosis of the attack, followed by a suitable defense strategy. For detection, we show that single measurement statistics are not enough to reliably classify the presence of a jamming attack, and propose multimodal detection methods. To cope with jamming, we propose a technique, channel surfing, which involves evading the interferer in the spectral domain. Several different channel surfing models are presented, and we evaluate their effectiveness using a testbed of MICA2 motes. Beyond channel surfing, we overview a second defense strategy whereby it is possible to establish a low data rate jamming resistant communication channel by modulating the interarrival times between jammed packets.

Yanzi Zhu,Zhujun Xiao,Yuxin Chen,Zhijing Li,Max Liu,Ben Y. Zhao,Haitao Zheng

2018-01-01

Abstract:Our work demonstrates a new set of silent reconnaissance attacks, which leverages the presence of commodity WiFi devices to track users inside private homes and offices, without compromising any WiFi network, data packets, or devices. We show that just by sniffing existing WiFi signals, an adversary can accurately detect and track movements of users inside a building. This is made possible by our new signal model that links together human motion near WiFi transmitters and variance of multipath signal propagation seen by the attacker sniffer outside of the property. The resulting attacks are cheap, highly effective, and yet difficult to detect. We implement the attack using a single commodity smartphone, deploy it in 11 real-world offices and residential apartments, and show it is highly effective. Finally, we evaluate potential defenses, and propose a practical and effective defense based on AP signal obfuscation.

Yu Gu,Huan Yan,Mianxiong Dong,Meng Wang,Xiang Zhang,Zhi Liu,Fuji Ren

DOI: https://doi.org/10.1109/tcss.2021.3056654

2021-06-01

IEEE Transactions on Computational Social Systems

Abstract:User authentication is the first and most critical step in protecting a man–machine system from a malicious spoofer. However, security and privacy are just like the two sides of one coin, hard to see both at the same time, especially by the current mainstream credential- and biometric-based approaches. To this end, we propose WiONE, a safe and privacy-preserving user authentication system leveraging the ubiquitous Wi-Fi infrastructure by exploring "how you behave" rather than "who you are". The key idea is to apply deep learning to user physical behavior captured by Wi-Fi channel state information (CSI) to identify legitimate users while rejecting spoofers. The design of WiONE faces two challenges, namely, how to capture the subtle behavior, such as a keystroke on CSI, and how to mitigate the heavy environment-specific training required by deep learning. For the former, we design a behavior enhancement model based on the Rician fading to highlight the behavior-induced information by suppressing the behavior-unrelated information on channel response. For the latter, we develop a behavior characterization method tailored for the prototypical networks to facilitate the extraction of the domain-independent behavioral features and enable one-shot recognition of a new user in a new environment. Numerous experiments are conducted in several real-world environments, and the results show that WiONE outperforms its state-of-the-art rivals in authentication performance with much less training effort.

English Else

Fang Qi,Yingkai Zhao,Md Zakirul Alam Bhuiyan,Tao Hai,Monirul Islam,Shaobo Zhang,Zhe Tang

DOI: https://doi.org/10.1002/cpe.7313

2023-01-01

Abstract:Nowadays, wireless radio signals are ubiquitous and are around us; some signals pass through us, and some reflect off us. Substantial advancements in recent years demonstrate that such signals are utilized for diverse emerging applications, including people activity, motion watches, healthcare, and so forth. A few questions would be that may raise severe concerns in future cybersecurity and private domains. For example, what if Wi-Fi signals are utilized to watch a person doings and actions, which are mostly without the person's authorization and authentication. How far such signal utilization can attack privacy intrusively, silently, more particularly, what/where we do, say, command, see, write, draw, go, perform, everything can be known. In this article, we investigate watching human activities by leveraging Wi-Fi signals and discuss a few application prototypes. We attempt to learn whether or not attackers have the ability to passively watch our Internet activity as well as physical activities and motions through Wi-Fi. With all-new advances, one must be aware that cyberattackers may apply unauthorized use of these advances to their benefit. We discuss some of the countermeasures and approaches to mitigate these risks with Wi-Fi signal leveraging.

Liu Jianwei,Han Jinsong,Yang Lei,Wang Fei,Lin Feng,Ren Kui

DOI: https://doi.org/10.48550/arxiv.2004.04909

2020-01-01

Abstract: Recent years have witnessed the bloom development of the human-centered wireless sensing applications, in which some human information, such as the user's identity and motions, can be retrieved through analyzing the signal distortion caused by the target person. However, the openness of wireless transmission raises increasing concerns on user privacy, since either the human identity or human motion is sensitive in certain scenarios, including personal residence, laboratory, and office. Researchers have reported that commodity WiFi signals can be abused to identify users. To dispel this threat, in this paper we propose a privacy-preserving framework to effectively hide the information of user behaviors in wireless signals while retaining the ability of user authentication. The core of our framework is a novel Siamese network-based deep model, namely RFBP-Net. In this way, wireless sensing reveals user information moderately. We conduct extensive experiments on both the real WiFi and RFID system and open datasets. The experiment results show that RFBP-Net is able to significantly reduce the activity recognition accuracy, i.e., 70% reduction in the RFID system and 80% reduction in the WiFi system, with a slight penalty in the user authentication accuracy, i.e., only 5% and 1% decrease in the RFID and WiFi system, respectively.

Zhu Wang,Bin Guo,Zhiwen Yu,Xingshe Zhou

DOI: https://doi.org/10.1109/mcom.2018.1700144

IF: 9.03

2018-05-01

IEEE Communications Magazine

Abstract:Human behavior recognition has been considered as a core technology that can facilitate a variety of applications. However, accurate detection and recognition of human behavior is still a big challenge that attracts a lot of research effort. Recent advances in wireless technology (e.g., Wi-Fi channel state information, i.e., CSI) enable a new behavior recognition paradigm, which is able to recognize behaviors in a device-free and non-intrusive manner. In this article, we first provide an overview of the basics of Wi-Fi CSI-based behavior recognition. Afterward, we classify related applications into three granularities, signals, actions, and activities, and then provide some insights for designing new schemes. Finally, we conclude by discussing the challenges, possible solutions to these challenges, and some open issues involved in CSI-based behavior recognition.

Zhu Wang,Bin Guo,Zhiwen Yu,Xingshe Zhou

DOI: https://doi.org/10.48550/arXiv.1712.00146

IF: 6.4588

2017-12-01

Human-Computer Interaction

Abstract:Human behavior recognition has been considered as a core technology that can facilitate variety of applications. However, accurate detection and recognition of human behavior is still a big challenge that attracts a lot of research efforts. Recent advances in the wireless technology (e.g., Wi-Fi Channel State Information, i.e., CSI) enable a new behavior recognition paradigm, which is able to recognize behaviors in a device-free and non-intrusive manner. In this article, we first provide an overview of the basics of Wi-Fi CSI based behavior recognition. Afterwards, we classify related applications into three-granularity: signals, actions and activities, and then provide some insights for designing new schemes. Finally, we conclude by discussing the challenges, possible solutions to these challenges and some open issues involved in CSI based behavior recognition.

Fang Qi,Yingkai Zhao,Md Zakirul Alam Bhuiyan,Hai Tao,Weifeng Yan,Zhe Tang

DOI: https://doi.org/10.1002/dac.5338

2022-01-01

International Journal of Communication Systems

Abstract:In the past several years, a series of breakthrough research advancements have been achieved by leveraging wireless signals such as Wi-Fi in various emerging applications, including healthcare, behavior recognition, positioning, and target detection. Compared to traditional human behavior sensing methods, Wi-Fi signals human behavior sensing technology has many advantages, including non-line-of-sight, sensor device-free sensing, passive sensing, ease of deployment, and no need for lights. Data mining undoubtedly plays a critical role in making Wi-Fi-based human behavior detection intelligent enough to facilitate convenient services and environments. We study Wi-Fi signals mining using the data mining process and review the developmental process of Wi-Fi data mining. This covers the methods of Wi-Fi data mining, including signal acquisition, preprocessing, feature extraction to training, and classification. We then propose WHSecurity, a whole home intrusion detection and tracking system that is based on all of the methods covered above. Finally, WHSecurity includes a deep learning-based data mining process called multiview learning for the decision-making on intrusion detection and tracking. Experimental outcomes show that the WHSecurity approach performs superior in terms of intrusion detection and tracking performance.

Li Lu,Meng Chen,Jiadi Yu,Zhongjie Ba,Feng Lin,Jinsong Han,Yanmin Zhu,Kui Ren

DOI: https://doi.org/10.1109/tnet.2024.3403839

2024-01-01

Abstract:Recent years have witnessed enormous research efforts on WiFi sensing to enable intelligent services of Internet of Things. However, due to the omni-directional broadcasting manner of WiFi signals, the activity semantic underlying the signals can be leaked to adversaries for surveillance, as demonstrated by our previous work. In this paper, we further extend the attack capability of ActListener to impersonation attack, which could eavesdrop on users’ behavioral uniqueness imperceptibly using a WiFi infrastructure in any location of user sensing area. In particular, ActListener detects each human activity and converts the eavesdropped signals to that by legitimate devices based on our proposed signal propagation models. To extract noise-resilient individual behavioral uniqueness from converted CSI of WiFi signals, we further add user identification models into the substitute model set for training the signal pattern calibration generative model. Experimental results demonstrate that ActListener could achieve over 80% accuracy in activity semantics retrieval and impersonation by using the converted signals.

Yanchao Zhao,Ran Gao,Shangqing Liu,Lei Xie,Jie Wu,Huawei Tu,Bing Chen

DOI: https://doi.org/10.1109/jiot.2020.3032623

IF: 10.6

2021-01-01

IEEE Internet of Things Journal

Abstract:Recent research advancement of wireless sensing technology has made device-free interaction in the WiFi-enabled IoT environment possible. Although gesture-based interaction with such a smart environment greatly improves usability, it also introduces many security problems, such as shoulder surfing attacks. By spoofing the gestures of legitimate users, the attacker could easily access private information or services and cause even worse consequences. A secure interaction mechanism for this environment is required to prevent attackers without compromising the usability, while the limited recognition ability and low robustness of WiFi sensing make this target extremely challenging. To this end, we propose a secure interaction mechanism called secure interaction via WiFi Signal (SiWi), which provides the ability to resist shoulder surfing attacks without compromising the usability by using just WiFi signals. SiWi innovates in a concurrent interaction/authentication framework with only three elemental gestures (push, swing, and wave) and four types of identity-related imperceptible/hidden features (time distribution, direction, angle, and distance). HMM and Fresnel model-based algorithms are used to recognize the gestures and extract hidden features robustly and efficiently. Extensive experiments in a real implemented system were conducted to investigate the effectiveness of the proposed secure interaction system. The results show that our system can achieve an average accuracy of 93% to identify legitimate users and 97% to resist the spoofer.

Siamak Yousefi,Hirokazu Narui,Sankalp Dayal,Stefano Ermon,Shahrokh Valaee

DOI: https://doi.org/10.1109/mcom.2017.1700082

IF: 9.03

2017-10-01

IEEE Communications Magazine

Abstract:In this article, we present a survey of recent advances in passive human behavior recognition in indoor areas using the channel state information (CSI) of commercial WiFi systems. The movement of the human body parts cause changes in the wireless signal reflections, which result in variations in the CSI. By analyzing the data streams of CSIs for different activities and comparing them against stored models, human behavior can be recognized. This is done by extracting features from CSI data streams and using machine learning techniques to build models and classifiers. The techniques from the literature that are presented herein have great performance; however, instead of the machine learning techniques employed in these works, we propose to use deep learning techniques such as long-short term memory (LSTM) recurrent neural networking (RNN) and show the improved performance. We also discuss different challenges such as environment change, frame rate selection, and the multi-user scenario; and finally suggest possible directions for future work.

telecommunications,engineering, electrical & electronic

Bin Guo,Yingying Chen,Nic Lane,Yunxin Liu,Zhiwen Yu

DOI: https://doi.org/10.1109/mcom.2017.8067691

IF: 9.03

2017-01-01

IEEE Communications Magazine

Abstract:The articles in this special feature provides address behavior recognition based on Wi-Fi channel state estimation (CSI). Human behavior recognition is the core technology that enables a wide variety of human-machine systems and applications (e.g., healthcare, smart homes, and fitness tracking). Traditional approaches mainly use cameras, radars, or wearable sensors. However, all these approaches have certain disadvantages. Examines both the benefits and drawbacks of these technologies and reports on new areas of development for the future.

Jianwei Liu,Chaowei Xiao,Kaiyan Cui,Jinsong Han,Xian Xu,Kui Ren

DOI: https://doi.org/10.1109/tdsc.2022.3143880

2023-01-01

IEEE Transactions on Dependable and Secure Computing

Abstract:Recent years have witnessed the booming development of RF sensing, which supports both identity authentication and behavior recognition by analysing the signal distortion caused by human body. In particular, RF-based identity authentication is more attractive to researchers, because it can capture the unique biological characteristics of users. However, the openness of wireless transmission raises privacy concerns since human behaviors could expose massive private information of users, which impedes the real-world implementation of RF-based user authentication applications. It is difficult to filter out the behavior information from the collected RF signals. In this article, we propose a privacy-preserving deep neural network named BPCloak to erase the behavior information in RF signals while retaining the ability of user authentication. We conduct extensive experiments over mainstream RF signals collected from three real wireless systems, including the WiFi, radio frequency identification (RFID), and millimeter-wave (mmWave) systems. The experimental results show that BPCloak significantly reduces the behavior recognition accuracy, i.e., 85%+, 75%+, and 65%+ reduction for WiFi, RFID, and mmWave systems respectively, merely with a slight penalty of accuracy decrease when using these three systems for user authentication, i.e., 1%-, 3%-, and 5%-, respectively.

Jianwei Liu,Chaowei Xiao,Kaiyan Cui,Jinsong Han,Xian Xu,Kui Ren,Xufei Mao

DOI: https://doi.org/10.1109/iwqos52092.2021.9521278

2021-01-01

Abstract:Recent years have witnessed the booming development of RF sensing, which supports both identity authentication and behavior recognition by analysing the signal distortion caused by human body. In particular, RF-based identity authentication is more attractive to researchers, because it can capture the unique biological characteristics of users. However, the openness of wireless transmission raises privacy concerns since human behaviors can expose the massive private information of users, which impedes the real-world implementation of RF-based user authentication applications. Unfortunately, it is difficult to filter out the behavior information from the collected RF signals.In this paper, we propose a privacy-preserving deep neural network named BPCloak to erase the behavior information in RF signals while retaining the ability of user authentication. We conduct extensive experiments over mainstream RF signals collected from three real wireless systems, including the WiFi, Radio Frequency IDentification (RFID), and millimeter-wave (mmWave) systems. The experimental results show that BPCloak significantly reduces the behavior recognition accuracy, i.e., 85%+, 75%+, and 65%+ reduction for WiFi, RFID, and mmWave systems respectively, merely with a slight penalty of accuracy decrease when using these three systems for user authentication, i.e., 1%-, 3%-, and 5%-, respectively.

Pengfei Liu,Panlong Yang,Wen-Zhan Song,Yubo Yan,Xiang-Yang Li

DOI: https://doi.org/10.1109/infocom.2019.8737455

2019-01-01

Abstract:WiFi has become a pervasive communication medium in connecting various devices of WLAN and IoT. However, WiFi connections are vulnerable to the impersonation attack from rogue access points (AP) or devices, whose SSID and/or MAC/IP address are identical to the legitimate devices. This kind of attack is difficult to countermeasure with traditional network security mechanisms. In this paper, we present a novel security mechanism to detect and identify rogue WiFi devices or AP using environment-independent characteristics extracted from channel state information (CSI), and refuse their connections. We find that nonlinear phase errors of different subcarriers change with WiFi network interface cards (NIC), due to the I/Q imbalance and imperfect oscillator of each WiFi NIC. Validated by our experiments, this phase feature across subcarriers is consistent and invariant to location and external environment, and can be extracted to build an essential signature of the NIC itself. Such signature of the transmitter can be calculated in real-time by the receiver and cannot be forged by rogue devices. Extensive experiments with dozens of WiFi devices demonstrate that the proposed mechanism can reliably detect the rogue WiFi connections and prevent impersonation in various scenarios. The speed of identification is 8$\times$ faster than that of the state-of-the-art solution. Moreover, the accuracy of rogue connection detection is up to 96% and false alarm rate is shown below 2%.

Bin Guo,Yingying Chen,Nic Lane,Yunxin Liu,Zhiwen Yu

DOI: https://doi.org/10.1109/mcom.2018.8360859

IF: 9.03

2018-01-01

IEEE Communications Magazine

Abstract:The four articles in this special section focus on behavior recognition-based Wi-Fi channel state estimation(CSI). Wi-Fi CSI-based human behavior recognition has become a promising research area in recent years. The rationale is that different human behaviors introduce different multi-path distortions in Wi-Fi CSI, which presents several unique advantages: unaffected by external light, with better coverage (even supporting through-wall sensing), and user privacy preservation. There are also numerous research challenges of CSI-based human behavior recognition, including behavior recognition model/theory using Wi-Fi CSI, Wi-Fi CSI data mining, quality-enhanced and adaptive sensing models with Wi-Fi CSI, behavior recognition with individual differences, the flexibility of such CSI-based behavior recognition systems, and so on.