Runmin Ou,Yanjiao Chen,Yangtao Deng

DOI: https://doi.org/10.1109/jiot.2022.3222204

IF: 10.6

2023-01-01

IEEE Internet of Things Journal

Abstract:The rapid development of the Internet of Things (IoT) boosts the spread of intelligent spaces. Biometrics-based user identification has gained great popularity recently, among which gait analysis offers a stable, user-friendly, and economical solution. Thanks to the advancement in wireless sensing technologies, capturing gait characteristics using WiFi signals has become a promising new paradigm. The identification process is contactless, insensitive to lighting conditions, and can reuse the incumbent WiFi infrastructure. In this article, we present a gait-based dual-user identification framework named WiWalk to tackle the difficulty where users walk closely together with mixed effects on WiFi signals. The core of WiWalk is to train a deep neural network that can separate and recover individual signals from the mixed ones. Since the separation process inevitably causes information loss, we carefully design a series of algorithms for interference elimination, segmentation, and feature extraction, to enhance the identification accuracy. We conduct extensive experiments to evaluate WiWalk at different locations and times with users of different ages, genders, clothing, and walking behaviors. WiWalk can reach an accuracy of 94.44%, which is suitable for smart homes or offices with a small user base.

Liang Kou,Yiqi Shi,Liguo Zhang,Duo Liu,Qing Yang

DOI: https://doi.org/10.32604/cmc.2019.03760

2019-01-01

Abstract:With the development of computer hardware technology and network technology, the Internet of Things as the extension and expansion of traditional computing network has played an increasingly important role in all professions and trades and has had a tremendous impact on people lifestyle. The information perception of the Internet of Things plays a key role as a link between the computer world and the real world. However, there are potential security threats in the Perceptual Layer Network applied for information perception because Perceptual Layer Network consists of a large number of sensor nodes with weak computing power, limited power supply, and open communication links. We proposed a novel lightweight authentication protocol based on password, smart card and biometric identification that achieves mutual authentication among User, GWN and sensor node. Biometric identification can increase the non-repudiation feature that increases security. After security analysis and logical proof, the proposed protocol is proven to have a higher reliability and practicality.

Hao Kong,Li Lu,Jiadi Yu,Yanmin Zhu,Feilong Tang,Yi-Chao Chen,Linghe Kong,Feng Lyu

DOI: https://doi.org/10.1109/infocom48880.2022.9796740

2022-01-01

Abstract:With the development of smart indoor environments, user authentication becomes an essential mechanism to support various secure accesses. Although recent studies have shown initial success on authenticating users with human activities or gestures using WiFi, they rely on predefined body gestures and perform poorly when meeting undefined body gestures. This work aims to enable WiFi-based user authentication with undefined body gestures rather than only predefined body gestures, i.e., realizing a gesture-independent user authentication. In this paper, we first explore physiological characteristics underlying body gestures, and find that statistical distributions under WiFi signals induced by body gestures can exhibit invariant individual uniqueness unrelated to specific body gestures. Inspired by this observation, we propose a user authentication system, which utilizes WiFi signals to identify individuals in a gesture-independent manner. Specifically, we design an adversarial learning-based model, which suppresses specific gesture characteristics, and extracts invariant individual uniqueness unrelated to specific body gestures, to authenticate users in a gesture-independent manner. Extensive experiments in indoor environments show that the proposed system is feasible and effective in gesture-independent user authentication.

Hao Kong,Li Lu,Jiadi Yu,Yingying Chen,Xiangyu Xu,Feilong Tang,Yi-Chao Chen

DOI: https://doi.org/10.1145/3466772.3467032

2021-01-01

Abstract:ABSTRACTWith the increasing integration of humans and the cyber world, user authentication becomes critical to support various emerging application scenarios requiring security guarantees. Existing works utilize Channel State Information (CSI) of WiFi signals to capture single human activities for non-intrusive and device-free user authentication, but multi-user authentication remains a challenging task. In this paper, we present a multi-user authentication system, MultiAuth, which can authenticate multiple users with a single commodity WiFi device. The key idea is to profile multipath components of WiFi signals induced by multiple users, and construct individual CSI from the multipath components to solely characterize each user for user authentication. Specifically, we propose a MUltipath Time-of-Arrival measurement algorithm (MUTA) to profile multipath components of WiFi signals in high resolution. Then, after aggregating and separating the multipath components related to users, MultiAuth constructs individual CSI based on the multipath components to solely characterize each user. To identify users, MultiAuth further extracts user behavior profiles based on the individual CSI of each user through time-frequency analysis, and leverages a dual-task neural network for robust user authentication. Extensive experiments involving 3 simultaneously present users demonstrate that MultiAuth is accurate and reliable for multi-user authentication with 87.6% average accuracy and 8.8% average false accept rate.

Hao Kong,Li Lu,Jiadi Yu,Yingying Chen,Xiangyu Xu,Feng Lyu

DOI: https://doi.org/10.1109/tnet.2023.3237686

2023-01-01

Abstract:User authentication nowadays has become an important support for not only security guarantees but also emerging novel applications. Although WiFi signal-based user authentication has achieved initial success, it works in single-user scenarios while multi-user authentication remains a challenging task. In this paper, we present MultiAuth, a multi-user authentication system that can authenticate multiple users with a single pair of commodity WiFi devices. The basic idea is to profile multipath components of WiFi signals, and leverage the multipath components to characterize each user individually for multi-user authentication. MultiAuth first profiles multipath components of WiFi signals through a proposed MUltipath Time-of-Arrival estimation algorithm (MUTA). Then, after matching corresponding multipath components to each user in complex multi-user scenarios, MultiAuth constructs individual CSI based on the multipath components to characterize each user individually. An AoA-based approach is exploited to further separate individual CSI constructed by the users with same ToA. To identify users through their activities, MultiAuth extracts user behavior profiles based on the individual CSI, and leverages a dual-task neural network for robust user authentication. Extensive experiments involving 3 simultaneously present users demonstrate that MultiAuth is effective in multi-user authentication with 86.2% average accuracy and 9.5% average false accept rate.

Cong Shi,Jian Liu,Hongbo Liu,Yingying Chen

DOI: https://doi.org/10.1145/3448738

2021-01-01

ACM Transactions on Internet of Things

Abstract:AbstractUser authentication is a critical process in both corporate and home environments due to the ever-growing security and privacy concerns. With the advancement of smart cities and home environments, the concept of user authentication is evolved with a broader implication by not only preventing unauthorized users from accessing confidential information but also providing the opportunities for customized services corresponding to a specific user. Traditional approaches of user authentication either require specialized device installation or inconvenient wearable sensor attachment. This article supports the extended concept of user authentication with a device-free approach by leveraging the prevalent WiFi signals made available by IoT devices, such as smart refrigerator, smart TV, and smart thermostat, and so on. The proposed system utilizes the WiFi signals to capture unique human physiological and behavioral characteristics inherited from their daily activities, including both walking and stationary ones. Particularly, we extract representative features from channel state information (CSI) measurements of WiFi signals, and develop a deep-learning-based user authentication scheme to accurately identify each individual user. To mitigate the signal distortion caused by surrounding people’s movements, our deep learning model exploits a CNN-based architecture that constructively combines features from multiple receiving antennas and derives more reliable feature abstractions. Furthermore, a transfer-learning-based mechanism is developed to reduce the training cost for new users and environments. Extensive experiments in various indoor environments are conducted to demonstrate the effectiveness of the proposed authentication system. In particular, our system can achieve over 94% authentication accuracy with 11 subjects through different activities.

Yu Gu,Yantong Wang,Meng Wang,Zulie Pan,Zhihao Hu,Zhi Liu,Fan Shi,Mianxiong Dong

DOI: https://doi.org/10.1109/tii.2021.3108850

IF: 12.3

2022-04-01

IEEE Transactions on Industrial Informatics

Abstract:User authentication plays a critical role in access control of a man-machine system, where the knowledge factor, such as a personal identification number, constitutes the most widely used authentication element. However, knowledge factors are usually vulnerable to the spoofing attack. Recently, the inheritance factor, such as fingerprints, emerges as an efficient alternative resilient to malicious users, but it normally requires special equipment. To this end, in this article, we propose WiPass, a device-free authentication system only leveraging the pervasive Wi-Fi infrastructure to explore keystroke dynamics (manner and rhythm of keystrokes) captured by the channel state information to recognize legitimate users while rejecting spoofers. However, it remains an open challenge to characterize the behavioral features hidden in the human subtle motions, such as keystrokes. Therefore, we build a signal enhancement model using Ricean distribution to amplify user keystroke dynamics and a hybrid learning model for user authentication, which consists of two parts, i.e., convolutional neural network based feature extraction and support vector machine based classification. The former relies on visualizing the channel responses into time-series images to learn the behavioral features of keystrokes in energy and spectrum domains, whereas the latter exploits such behavioral features for user authentication. We prototype WiPass on the low-cost off-the-shelf Wi-Fi devices and verify its performance. Empirical results show that WiPass achieves on average 92.1% authentication accuracy, 5.9% false accept rate, and 6.3% false reject rate in three real environments.

automation & control systems,computer science, interdisciplinary applications,engineering, industrial

Shulin Yang,Yantong Wang,Xiaoxiao Yu,Yu Gu,Fuji Ren

DOI: https://doi.org/10.1109/ICCC49849.2020.9238889

2020-01-01

Abstract:User authentication is a major area of interest within the field of Human Computer Interaction (HCI). Meanwhile, it prevents unauthorized accesses to certain the security of data. Personal Identification Number (PIN) and biometrics are the main approaches for identifying the user on the basis of his/her identity. However, PIN can be easily leaked to others, and biometrics usually require specialized devices. In this paper, we prototype our system, a new method for user authentication by leveraging commodity WiFi. The basic methodology is to explore the typing habit of users from Channel State Information (CSI). The design and implementation of our system face two challenges, i.e. extracting keystroke features from wireless channel data and authenticating the user via typing habit from the corresponding keystroke features. For the former, we capture signal fluctuations caused by the micro movements like typing and extract the keystroke features on channel response obtained from commodity WiFi devices. For the latter, we design a computational intelligence driven mechanism to authenticate users from the corresponding keystroke feature. We prototype our system on the low-cost off-the-shelf WiFi devices and evaluate its performance in real-world experiments. We have explored four classifiers including K Nearest Neighbor(KNN), Support Vector Machine (SVM), Random Forest, and Decision Tree for recognizing users. Empirical results show that KNN provides the best performance, i.e., 85.2% authentication accuracy, 12.8% false accept rate, and 11.2% false reject rate on average over 9 participants.

Hongbo Liu,Yan Wang,Jian Liu,Yingying Chen

DOI: https://doi.org/10.1007/978-3-030-10597-6_9

2019-01-01

Abstract:User authentication is the critical first step of network security to detect identity-based attacks and prevent subsequent malicious attacks. However, the increasingly dynamic mobile environments make it harder to always apply the cryptographic-based methods for user authentication due to their infrastructural and key management overhead. Exploiting non-cryptographic-based techniques grounded on physical layer properties to perform user authentication appears promising. To ensure the security of mobile devices in dynamic networks, we explore to use fine-grained channel state information (CSI), which is available from off-the-shelf WiFi devices, to perform proactive user authentication. We propose a user-authentication framework that has the capability to proactively request CSI and build the user profile resilient to the presence of the spoofer. Our machine learning based user-authentication techniques can distinguish two users even when they possess similar signal fingerprints and detect the existence of the spoofer in dynamic network environments. Extensive experiments in both office and apartment environments show that our framework can remove the effect of signal outliers and achieve higher authentication accuracy compared to existing approaches that use received signal strength (RSS).

Monika Roopak,Yachao Ran,Xiaotian Chen,Gui Yun Tian,Simon Parkinson

DOI: https://doi.org/10.1049/wss2.12093

2024-09-11

IET Wireless Sensor Systems

Abstract:Internet of Things (IoT) security concerns, particularly regarding user authentication, are addressed by our proposed Wi‐Fi sensing‐based physical layer authentication. The solution, integrating convolutional neural networks and long short‐term memory networks with raw channel state information data, achieves an impressive 99.97% accuracy, offering effective and portable protection for wireless networks in the IoT landscape. Security problems loom big in the fast‐growing world of Internet of Things (IoT) networks, which is characterised by unprecedented interconnectedness and data‐driven innovation, due to the inherent susceptibility of wireless infrastructure. One of the most pressing concerns is user authentication, which was originally intended to prevent unwanted access to critical information but has since expanded to provide tailored service customisation. We suggest a Wi‐Fi sensing‐based physical layer authentication method for IoT networks to solve this problem. Our proposed method makes use of raw channel state information (CSI) data from Wi‐Fi signals to create a hybrid deep‐learning model that combines convolutional neural networks and long short‐term memory networks. Rigorous testing yields an astonishing 99.97% accuracy rate, demonstrating the effectiveness of our CSI‐based verification. This technology not only strengthens wireless network security but also prioritises efficiency and portability. The findings highlight the practicality of our proposed CSI‐based physical layer authentication, which provides lightweight and precise protection for wireless networks in the IoT.

Yu Gu,Xiaoxiao Yu

DOI: https://doi.org/10.1109/ctisc52352.2021.00030

2021-01-01

Abstract:As an essential way of human-computer interaction, user authentication has attracted widespread attention in recent years. Traditional user authentication methods include Personal Identification Numbers (PINs) and biometric technology. However, the PINs are easily leaked to others, and biometric technology requires specialized equipment. Different from traditional user authentication methods, in this paper, we use widely deployed WiFi infrastructure to achieve user authentication, and propose WiPass, which is a PIN-free and device-free user authentication leveraging behavioral features via WiFi Channel State Information (CSI). The key idea is to explore personalized behavioral information captured by WiFi CSI to identify different users. Concretely, we first proposed a data visualization method to visualize CSI data as a set of time-series images to preserve the behavior information of keystrokes. Secondly, all these images jointly input into a Convolutional Neural Network (CNN) for feature learning, and the obtained 256-dimensional deep behavior features are used to learn a linear support vector machine classifier. To demonstrate the effectiveness of WiPass, we built a prototype of WiPass on low-cost commodity WiFi devices and verified its performance in three different real environments. The empirical results show that WiPass achieved an average of 90.5% authentication accuracy, 7.5% false acceptance rate, and 6% false rejection rate for 11 participants in three real environments.

Cong Shi,Jian Liu,Hongbo Liu,Yingying Chen

DOI: https://doi.org/10.1145/3084041.3084061

2017-01-01

Abstract:User authentication is a critical process in both corporate and home environments due to the ever-growing security and privacy concerns. With the advancement of smart cities and home environments, the concept of user authentication is evolved with a broader implication by not only preventing unauthorized users from accessing confidential information but also providing the opportunities for customized services corresponding to a specific user. Traditional approaches of user authentication either require specialized device installation or inconvenient wearable sensor attachment. This paper supports the extended concept of user authentication with a device-free approach by leveraging the prevalent WiFi signals made available by IoT devices, such as smart refrigerator, smart TV and thermostat, etc. The proposed system utilizes the WiFi signals to capture unique human physiological and behavioral characteristics inherited from their daily activities, including both walking and stationary ones. Particularly, we extract representative features from channel state information (CSI) measurements of WiFi signals, and develop a deep learning based user authentication scheme to accurately identify each individual user. Extensive experiments in two typical indoor environments, a university office and an apartment, are conducted to demonstrate the effectiveness of the proposed authentication system. In particular, our system can achieve over 94% and 91% authentication accuracy with 11 subjects through walking and stationary activities, respectively.

Jianwei Liu,Yinghui He,Chaowei Xiao,Jinsong Han,Kui Ren

DOI: https://doi.org/10.1109/tdsc.2023.3261328

2024-01-01

IEEE Transactions on Dependable and Secure Computing

Abstract:Behavior recognition plays an essential role in numerous behavior-driven applications (e.g., virtual reality and smart home) and even in the security-critical applications (e.g., security surveillance and elder healthcare). Recently, WiFi-based behavior recognition (WBR) technique stands out among many behavior recognition techniques due to its advantages of being non-intrusive, device-free, and ubiquitous. However, existing WBR research mainly focuses on improving the recognition precision, while rarely studying the security aspects. In this article, we reveal that WBR systems are vulnerable to manipulating physical signals. For instance, our observation shows that WiFi signals can be changed by jamming signals. By exploiting the vulnerability, we propose two approaches to generate physically online adversarial samples to perform untargeted attack and targeted attack, respectively. The effectiveness of these attacks are extensively evaluated over four real-world WBR systems. The experiment results show that our attack approaches can achieve 80% and 60% success rates for untargeted attack and targeted attack in physical world, respectively. We also show that our attack approaches can be generalized to other WiFi-based sensing applications, such as user authentication.

Chi Lin,Jiaye Hu,Yu Sun,Fenglong Ma,Lei Wang,Guowei Wu

DOI: https://doi.org/10.1109/SAHCN.2018.8397108

2018-01-01

Abstract:The ubiquitous and fine-grained features of WiFi signals make it promising for achieving device-free authentication. However, traditional methods suffer from drawbacks such as sensitivity to environmental dynamics, low accuracy, long delay, etc. In this paper, we introduce how to validate human identity using the ubiquitous WiFi signals. We develop WiAU, a device-free authentication system which only utilizes a Commodity Off-The-Shelf (COTS) router and a laptop. We describe the constitutions of WiAU and how it works in detail. Through collecting channel state information (CSI) profiles, WiAU automatically segments coherent activities and walking gait using an automatic segment algorithm (ASA). Then, a ResNet algorithm with two dedicated loss functions is designed to validate legal users and recognize illegal ones. Finally, experiments are conducted from different scenes to highlight the superiorities of WiAU in terms of high accuracy, short delay and robustness, revealing that WiAU has an accuracy of over 98% in recognizing human identity and human activities respectively.

Yong Huang,Wei Wang,Hao Wang,Tao Jiang,Qian Zhang

DOI: https://doi.org/10.1109/twc.2020.2991111

IF: 10.4

2020-08-01

IEEE Transactions on Wireless Communications

Abstract:By adding users as a new dimension to connectivity, on-body Internet-of-Things (IoT) devices have gained considerable momentum in recent years, while raising serious privacy and safety issues. Existing approaches to authenticate these devices limit themselves to dedicated sensors or specified user motions, undermining their widespread acceptance. This paper overcomes these limitations with a general authentication solution by integrating wireless physical layer (PHY) signatures with upper-layer protocols. The key enabling techniques are constructing representative radio propagation profiles from received signals, and developing an adversarial multi-player neural network to accurately recognize underlying radio propagation patterns and facilitate on-body device authentication. Once hearing a suspicious transmission, our system triggers a PHY-based challenge-response protocol to defend in depth against active attacks. We prove that at equilibrium, our adversarial model can extract all information about propagation patterns and eliminate any irrelevant information caused by motion variances and environment changes. We build a prototype of our system using Universal Software Radio Peripheral (USRP) devices and conduct extensive experiments with various static and dynamic body motions in typical indoor and outdoor environments. The experimental results show that our system achieves an average authentication accuracy of 91.6%, with a high area under the receiver operating characteristic curve (AUROC) of 0.96 and a better generalization performance compared with the conventional non-adversarial approach.

telecommunications,engineering, electrical & electronic

Vinoj Jayasundara,Hirunima Jayasekara,Tharaka Samarasinghe,Kasun T. Hemachandra

DOI: https://doi.org/10.48550/arXiv.1911.11743

2019-11-27

Abstract:Privacy issues related to video camera feeds have led to a growing need for suitable alternatives that provide functionalities such as user authentication, activity classification and tracking in a noninvasive manner. Existing infrastructure makes Wi-Fi a possible candidate, yet, utilizing traditional signal processing methods to extract information necessary to fully characterize an event by sensing weak ambient Wi-Fi signals is deemed to be challenging. This paper introduces a novel end to-end deep learning framework that simultaneously predicts the identity, activity and the location of a user to create user profiles similar to the information provided through a video camera. The system is fully autonomous and requires zero user intervention unlike systems that require user-initiated initialization, or a user held transmitting device to facilitate the prediction. The system can also predict the trajectory of the user by predicting the location of a user over consecutive time steps. The performance of the system is evaluated through experiments.

Machine Learning,Human-Computer Interaction,Signal Processing

Chi Lin,Pengfei Wang,Chuanying Ji,Mohammad S. Obaidat,Lei Wang,Guowei Wu,Qiang Zhang

DOI: https://doi.org/10.1145/3532095

2023-01-01

ACM Transactions on Sensor Networks

Abstract:The ubiquitous and fine-grained features of WiFi signals make it promising for realizing contactless authentication. Existing methods, though yielding reasonably good performance in certain cases, are suffering from two major drawbacks: sensitivity to environmental dynamics and over-dependence on certain activities. Thus, the challenge of solving such issues is how to validate human identities under different environments, even with different activities. Toward this goal, in this article, we develop WiTL, a transfer learning–based contactless authentication system, which works by simultaneously detecting unique human features and removing the environment dynamics contained in the signal data under different environments. To correctly detect human features (i.e., human heights used in this article), we design a Height EStimation (HES) algorithm based on Angle of Arrival (AoA). Furthermore, a transfer learning technology combined with the Residual Network (ResNet) and the adversarial network is devised to extract activity features and learn environmental independent representations. Finally, experiments through multi-activities and under multi-scenes are conducted to validate the performance of WiTL. Compared with the state-of-the-art contactless authentication systems, WiTL achieves a great accuracy over 93% and 97% in multi-scenes and multi-activities identity recognition, respectively.

Hongbo Liu,Yan Wang,Jian Liu,Jie Yang,Yingying Chen

DOI: https://doi.org/10.1145/2590296.2590321

2014-06-04

Abstract:User authentication is the critical first step to detect identity-based attacks and prevent subsequent malicious attacks. However, the increasingly dynamic mobile environments make it harder to always apply the cryptographic-based methods for user authentication due to their infrastructural and key management overhead. Exploiting non-cryptographic based techniques grounded on physical layer properties to perform user authentication appears promising. In this work, we explore to use channel state information (CSI), which is available from off-the-shelf WiFi devices, to conduct fine-grained user authentication. We propose an user-authentication framework that has the capability to build the user profile resilient to the presence of the spoofer. Our machine learning based user-authentication techniques can distinguish two users even when they possess similar signal fingerprints and detect the existence of the spoofer. Our experiments in both office building and apartment environments show that our framework can filter out the signal outliers and achieve higher authentication accuracy compared with existing approaches using received signal strength (RSS).

Hongbo Liu,Yan Wang,Jian Liu,Jie Yang,Yingying Chen,H. Vincent Poor

DOI: https://doi.org/10.1109/tmc.2017.2718540

IF: 6.075

2018-01-01

IEEE Transactions on Mobile Computing

Abstract:User authentication is the critical first step in detecting identity-based attacks and preventing subsequent malicious attacks. However, the increasingly dynamic mobile environments make it harder to always apply cryptographic-based methods for user authentication due to their infrastructural and key management overhead. Exploiting non-cryptographic based techniques grounded on physical layer properties to performuser authentication appears promising. In this work, the use of channel state information (CSI), which is available from off-the-shelf WiFi devices, to performfine-grained user authentication is explored. Particularly, a user-authentication framework that can work with both stationary and mobile users is proposed. When the user is stationary, the proposed framework builds a user profile for user authentication that is resilient to the presence of a spoofer. The proposed machine learning based user-authentication techniques can distinguish between two users even when they possess similar signal fingerprints and detect the existence of a spoofer. When the user is mobile, it is proposed to detect the presence of a spoofer by examining the temporal correlation of CSI measurements. Both office building and apartment environments show that the proposed framework can filter out signal outliers and achieve higher authentication accuracy compared with existing approaches using received signal strength (RSS).

Yanjiao Chen,Runmin Ou,Zhiyang Li,Kaishun Wu

DOI: https://doi.org/10.1109/tmc.2020.3001989

IF: 6.075

2020-01-01

IEEE Transactions on Mobile Computing

Abstract:Facial expressions are an essential form of human nonverbal communication. Recognition of this nonverbal sign may enable developers to understand the feedbacks on smart device functionality and advertising. Existing approaches for facial expression recognition are mainly based on cameras or on-body sensors, which are either sensitive to lighting conditions or cumbersome for users to wear devices on their faces. In this paper, we propose a new facial expression recognition system based on Wi-Fi signals, named WiFace. Our fundamental intuition is that facial muscle movements in different expressions will induce distinctive waveform patterns in the time-series of channel state information (CSI) in Wi-Fi signals. We develop a series of algorithms to process the CSI signals and extract the most representative waveform patterns for facial expression classification. We build a fully-functional prototype of WiFace using commercial off-the-shelf devices, which can recognize six typical facial expressions. We conduct extensive experiments to evaluate the performance of WiFace, and the experimental results show that the average recognition accuracy is 94.80 percent.