Kui Ren,Hai Su,Qian Wang

DOI: https://doi.org/10.1109/mwc.2011.5999759

IF: 12.777

2011-01-01

IEEE Wireless Communications

Abstract:Due to the broadcast nature of wireless channels, wireless communication is vulnerable to eavesdropping, message modification, and node impersonation. Securing the wireless communication requires the shared secret keys between the communicating entities. Traditional security schemes rely on public key infrastructures and cryptographic algorithms to manage secret keys. Recently, many physical-layer-based methods have been proposed as alternative solutions for key generation in wireless networks. These methods exploit the inherent randomness of the wireless fading channel to generate secret keys while providing information-theoretical security without intensive cryptographic computations. This article provides an overview of the existing PHY-based key generation schemes exploiting the randomness of the wireless channels. Specifically, we first introduce the fundamental and general framework of the PHY-based key generation schemes and then categorize them into two classes: received-signal-strength-based and channel- phase-based protocols. Finally, we present a performance comparison of them in terms of key disagreement probability, key generation rate, key bit randomness, scalability, and implementation issues.

Chia-Yu Liu,Y. -W. Peter Hong,Pim-Hsun Lin,Eduard A. Jorswieck

DOI: https://doi.org/10.1109/itw.2016.7606793

2016-01-01

Abstract:This work proposes a jamming-resistant frequency hopping (FH) system that utilizes local channel observations for secret key generation (SKG). FH is a spread spectrum technique used in both military and consumer wireless applications to avoid jamming attacks, but requires pre-shared secret keys among communicating terminals, say Alice and Bob, to ensure that the same FH sequence is used at both sides. In our scheme, Alice and Bob utilize local observations of the channel between them as the source of common randomness to generate the shared secret key. By gathering multiple time slots into a frame, the sequence of channels observed in each frame can be used to determine the FH sequence in the next frame. In this case, the key generation rate must be high enough to identify the FH sequence in the next frame and, thus, to sustain the operation over time. However, by further considering the data transmission, an interesting tradeoff exists between the power allocated for SKG and channel estimation in the training phase and that for communication in the data transmission phase. Given the number of FH channels and the number of channels that the adversary can jam at once, we derive the minimum pilot signal power required for sustainability and also determine the optimal power allocation between pilot and data signals that maximizes the ergodic rate between the two users. Simulations are provided to demonstrate the effectiveness of the proposed scheme.

Amitha Mayya,Arsenia Chorti,Rafael F. Schaefer,Gerhard P. Fettweis

2024-04-25

Abstract:In this paper, the feasibility of implementing a lightweight key distribution scheme using physical layer security for secret key generation (SKG) is explored. Specifically, we focus on examining SKG with the received signal strength (RSS) serving as the primary source of shared randomness. Our investigation centers on a frequency-selective line-of-sight (LoS) multipath channel, with a particular emphasis on assessing SKG rates derived from the distributions of RSS. We derive the received signal distributions based on how the multipath components resolve at the receiver. The mutual information (MI) is evaluated based on LoS 3GPP channel models using a numerical estimator. We study how the bandwidth, delay spread, and Rician K-factor impact the estimated MI. This MI then serves as a benchmark setting bounds for the SKG rates in our exploration.

Signal Processing

Zhuangkun Wei,Weisi Guo

DOI: https://doi.org/10.48550/arXiv.2110.12785

2021-10-25

Abstract:Physical layer secret key generation exploits the reciprocal channel randomness for key generation and has proven to be an effective addition security layer in wireless communications. However, static or scarcely random channels require artificially induced dynamics to improve the secrecy performance, e.g., using intelligent reflecting surface (IRS). One key challenge is that the induced random phase from IRS is also reflected in the direction to eavesdroppers (Eve). This leakage enables Eve nodes to estimate the legitimate channels and secret key via a globally known pilot sequence. To mitigate the secret key leakage issue, we propose to exploit random matrix theory to inform the design of a new physical layer secret key generation (PL-SKG) algorithm. We prove that, when sending appropriate random Gaussian matrices, the singular values of Alice's and Bob's received signals follow a similar probability distribution. Leveraging these common singular values, we propose a random Gaussian matrix based PL-SKG (RGM PL-SKG), which avoids the usages of the globally known pilot and thereby prevents the aforementioned leakage issue. Our results show the following: (i) high noise resistance which leads to superior secret key rate (SKR) improvement (up to 300%) in low SNR regime, and (ii) general improved SKR performance against multiple colluded Eves. We believe our combination of random matrix theory and PL-SKG shows a new paradigm to secure the wireless communication channels.

Information Theory,Signal Processing

Yuan Shen,Moe Z. Win

DOI: https://doi.org/10.1109/icc.2015.7248974

2015-01-01

Abstract:Wireless networks are subject to security vulnerability due to the broadcasting nature of radio transmission. Information-theoretic approaches for secure communication propose to generate secret keys from a common source, such as reciprocal channels, available to the transmitter and receiver. However, such approaches assume the probability distribution of the sources, which may not be available in many realistic scenarios. In this paper, we establish an information-theoretic framework for secret-key generation (SKG) using noisy observations of unknown deterministic parameters (UDPs). Based on an axiomatic definition of UDPs, we derive a new metric called intrinsic information between the UDP and its observation, characterizing the rate of the secret key that can be generated from the observation. This metric is then applied to quantify the use of wideband channels in mobile networks for SKG. Our results provide a non-Bayesian perspective for SKG as well as its practical implications.

Qian Wang,Hai Su,Kui Ren,Kwangjo Kim

DOI: https://doi.org/10.1109/infcom.2011.5934929

2011-01-01

Abstract:Recently, there has been great interest in physical layer security techniques that exploit the randomness of wireless channels for securely extracting cryptographic keys. Several interesting approaches have been developed and demonstrated for their feasibility. The state-of-the-art, however, still has much room for improving their practicality. This is because i) the key bit generation rate supported by most existing approaches is very low which significantly limits their practical usage given the intermittent connectivity in mobile environments; ii) existing approaches suffer from the scalability and flexibility issues, i.e., they cannot be directly extended to support efficient group key generation and do not suit for static environments. With these observations in mind, we present a new secret key generation approach that utilizes the uniformly distributed phase information of channel responses to extract shared cryptographic keys under narrowband multipath fading models. The proposed approach enjoys a high key bit generation rate due to its efficient introduction of multiple randomized phase information within a single coherence time interval as the keying sources. The proposed approach also provides scalability and flexibility because it relies only on the transmission of periodical extensions of unmodulated sinusoidal beacons, which allows effective accumulation of channel phases across multiple nodes. The proposed scheme is thoroughly evaluated through both analytical and simulation studies. Compared to existing work that focus on pairwise key generation, our approach is highly scalable and can improve the analytical key bit generation rate by a couple of orders of magnitude.

Gerhard Wunder,Axel Flinth,Daniel Becker,Benedikt Groß

2024-04-23

Abstract:Secret key generation (SKG) between authenticated devices is a pivotal task for secure communications. Diffie-Hellman (DH) is de-facto standard but not post-quantum secure. In this paper, we shall invent and analyze a new security primitive that is specifically designed for WPAN. For WPAN, wireless channel-based SKG has been proposed but was not widely deployed due to its critical dependence on the channel's entropy which is uncontrollable. We formulate a different approach: We still exploit channel properties but mainly hinge on the reciprocity of the wireless channel and not on the channel's entropy. The radio advantage comes from the use of full duplex communication. We show that in this situation both legitimate parties can agree on a common secret key even without ever probing the channel at all. At the core is a new bisparse blind deconvolution scheme for which we prove correctness and information-theoretic, i.e. perfect, security. We show that, ultimately, a secret key can be extracted and give a lower bound for the number of secret key bits which is then verified by experiments.

Information Theory

Shiming Fu,Tong Ling,Jun Yang,Yong Li

DOI: https://doi.org/10.3390/e26090758

IF: 2.738

2024-09-05

Entropy

Abstract:This paper explores physical layer group key generation in wireless relay networks with a star topology. In this setup, the relay node plays the role of either a trusted or untrusted central node, while one legitimate node (Alice) acts as the reference node. The channel between the relay and Alice serves as the reference channel. To enhance security during the channel measurement stage, a cooperative jamming-based scheme is proposed in this paper. This scheme allows the relay to obtain superimposed channel observations from both the reference channel and other relay channels. Then, a public discussion is utilized to enable all nodes to obtain estimates of the reference channel. Subsequently, the legitimate nodes can agree on a secret key (SK) that remains secret from the eavesdropper (Eve), or a private key (PK) that needs to be secret from both the relay and Eve. This paper also derives the lower and upper bounds of the SK/PK capacity. Notably, it demonstrates that there exists only a small constant difference between the SK/PK upper and lower bounds in the high signal-to-noise ratio (SNR) regime. Simulation results confirm the effectiveness of the proposed scheme for ensuring security and efficiency of group key generation.

physics, multidisciplinary

Kexin Liu,Mingliang Li,Kaizhi Huang,Zheng Wan,Qinlong Li,Xiaoli Sun,Xiaoming Xu,Liang Jin

DOI: https://doi.org/10.1049/cmu2.12853

IF: 1.345

2024-11-27

IET Communications

Abstract:This paper proposes a reconfigurable intelligent surface (RIS)‐assisted key generation scheme for multiple‐input single‐output multi‐user system. It presents a spatial correlation channel model of base station, RIS, and UTs and designs a secret key generation framework to obtain the optimal base station precoding and RIS reflection coefficient, generating a more secure secret key. Reconfigurable intelligent surface (RIS)‐assisted physical layer key generation plays an important role in the eavesdropping problem on a typical multi‐user scenario of wireless networks. Existing RIS‐assisted physical key generation technology mainly solved the security issues in the single‐antenna and multi‐user scenario, which is based on the idealistic assumption of a spatially independent channel model at the RIS. It limits the degrees of freedom and neglects the existence of channel spatial correlation, which would possibly degrade the sum key generation rate (SKGR). To solve the above problem, this paper proposes a secret key generation scheme for RIS‐assisted multiple‐input single‐output multi‐user system. This scheme establishes a spatial correlation channel model, which comprehensively considers the influence of spatial correlation among antennas of the base station (BS), multi‐user, and RIS elements on SKGR. Based on this, a key generation framework is designed to generate a more secure secret key with the maximum SKGR. Specifically, a closed‐form SKGR expression and an optimization problem formulation are obtained to obtain the joint optimal coefficient of the BS and RIS. Then, the difference convex‐successive convex approximation based alternating optimization algorithm is proposed to solve this optimization problem. The simulation results show that the proposed scheme has improved 10‐bit/channel use compared with the randomization scheme of BS precoding and RIS reflection coefficient. It also has an improvement of 12‐bit/channel use compared with the spatially independent scheme.

engineering, electrical & electronic

Zhuangkun Wei,Weisi Guo

DOI: https://doi.org/10.1109/tmc.2024.3369754

IF: 6.075

2024-01-01

IEEE Transactions on Mobile Computing

Abstract:The rapid growth of autonomous systems (ASs) with data sharing means new cybersecurity methods have to be developed for them. Existing computational complexity-based cryptography does not have information-theoretical bounds and poses threats to superior computational attackers. This post-quantum cryptography issue indeed motivated the rapid advances in using common physical layer properties to generate symmetrical cipher keys (known as PLS). However, PLS remains sensitive to attackers (e.g., jamming) that destroy its prerequisite wireless channel reciprocity. When ASs are in cooperative tasks (e.g., rescuing searching, and formation flight), they will behave cooperatively in the control layer. Inspired by this, we propose a new security mechanism called control layer security (CLS), which exploits the correlated but unobservable states of cooperative ASs to generate symmetrical cipher keys. This idea is then realized in the linearized UAV cooperative control scenario. The theoretical correlation coefficients between Alice's and Bob's states are computed, based on which common feature selection and key quantization steps are designed. The results from simulation and real UAV experiments show i) an approximately 90% key agreement rate is achieved, and ii) even an Eve with the known observable states and systems fails to estimate the unobservable states and the secret keys relied upon, due to the multiple-to-one mapping from unobservable states (pitch, roll and yaw angles) to the observable states (3D trajectory). This demonstrates CLS as a promising candidate to secure the communications of ASs, especially in the adversarial radio environment with attackers that destroys the prerequisite for current PLS.

computer science, information systems,telecommunications

Chen Chen,Junqing Zhang,Tianyu Lu,Magnus Sandell,Liquan Chen

DOI: https://doi.org/10.1109/tifs.2023.3331588

IF: 7.231

2023-12-02

IEEE Transactions on Information Forensics and Security

Abstract:Physical-layer key generation (PKG) based on wireless channels is a lightweight technique to establish secure keys between legitimate communication nodes. Recently, intelligent reflecting surfaces (IRSs) have been leveraged to enhance the performance of PKG in terms of secret key rate (SKR), as it can reconfigure the wireless propagation environment and introduce more channel randomness. In this paper, we investigate an IRS-assisted PKG system, taking into account the channel spatial correlation at both the base station (BS) and the IRS. Based on the considered system model, the closed-form expression of SKR is derived analytically considering correlated eavesdropping channels. Aiming to maximize the SKR, a joint design problem of the BS's precoding matrix and the IRS's phase shift vector is formulated. To address this high-dimensional non-convex optimization problem, we propose a novel unsupervised deep neural network (DNN)-based algorithm with a simple structure. Different from most previous works that adopt iterative optimization to solve the problem, the proposed DNN-based algorithm directly obtains the BS precoding and IRS phase shifts as the output of the DNN. Simulation results reveal that the proposed DNN-based algorithm outperforms the benchmark methods with regard to SKR.

computer science, theory & methods,engineering, electrical & electronic

Dengke Guo,Dongtang Ma,Jun Xiong,Xiaoran Liu,Jibo Wei

DOI: https://doi.org/10.1109/tifs.2024.3402392

IF: 7.231

2024-06-14

IEEE Transactions on Information Forensics and Security

Abstract:Secret-key generation (SKG) at physical layer is considered as a promising solution for lightweight key distribution. On the analysis of the secret-key capacity over multipath fading channels, existing studies generally neglect the channel observation method, which has a direct impact on the secret-key capacity. Moreover, there is a lack of concise and interpretable expressions for the secret-key capacity based on the channel state information. Motivated by the above, we analyze the performance of SKG based on MMSE estimation of channel impulse response over multipath fading channels. The general expression of secret-key capacity is derived. We find that the secret-key capacity depends on the estimation signal-to-noise ratios (SNRs) of channel-tap gains. Then, the condensed-parameter expressions of exact secret-key capacity and the expressions of asymptotic secret-key capacity at high SNR are derived in two specific PDP cases. We show that the bandwidth and the transmission SNR determine the upper bound of secret-key capacity over channels with different degrees of freedom for the flat PDP case. In addition, we find that the asymptotic secret-key capacities under these two PDPs follow a uniform form, which is a linear function of the channel estimation SNR (in dB). Finally, we simulate the channel probing process under different transmission and channel parameters and exploit the simulated channel estimates to estimate the secret-key capacity through numerical methods. The simulation results demonstrate the theoretical analysis and conclusions.

computer science, theory & methods,engineering, electrical & electronic

Yuchen Miao,Chaojie Gu,Zhenyu Yan,Sze Yiu Chau,Rui Tan,Qi Lin,Wen Hu,Shibo He,Jiming Chen

DOI: https://doi.org/10.1145/3596264

2023-01-01

Abstract:Secure device pairing is important to wearables. Existing solutions either degrade usability due to the need of specific actions like shaking, or they lack universality due to the need of dedicated hardware like electrocardiogram sensors. This paper proposes TouchKey, a symmetric key generation scheme that exploits the skin electric potential (SEP) induced by powerline electromagnetic radiation. The SEP is ubiquitously accessible indoors with analog-to-digital converters widely available on Internet of Things devices. Our measurements show that the SEP has high randomness and the SEPs measured at two close locations on the same human body are similar. Extensive experiments show that TouchKey achieves a high key generation rate of 345 bit/s and an average success rate of 99.29%. Under a range of adversary models including active and passive attacks, TouchKey shows a low false acceptance rate of 0.86%, which outperforms existing solutions. Besides, the overall execution time and energy usage are 0.44 s and 2.716 mJ, which make it suitable for resource-constrained devices.

Zhi Wang,Jinsong Han,Wei Xi,Jizhong Zhao

DOI: https://doi.org/10.1007/s11227-014-1247-1

2014-01-01

Abstract:Generating keys and keeping them secret are critical in secure communications. Due to the “open air” nature, key distribution is more susceptible to attacks in wireless communications. An ingenious solution is to generate secret keys for two communicating parties separately without the need of key exchange or distribution, and regenerate them on needs. Recently, it is promising to extract keys by measuring the random variation in wireless channels, e.g., RSS. In this paper, we propose an efficient secret key extraction protocol with decorrelating compressive (SKEDC). It establishes common cryptographic keys for two communicating parties in wireless networks via real-time measurement on channel state information (CSI). It outperforms RSS-based key generation approaches in terms of multiple subcarriers measurement, perfect symmetry in channel for key coincidence, rapid decorrelation with distance, and high sensitivity towards environments changes. In the SKEDC design, we also propose effective mechanisms, such as the adaptive key stream generation, to fully exploit the excellent properties of CSI and eliminate the correlation among the subcarriers. We implement SKEDC on off-the-shelf 802.11n devices and evaluate its performance via extensive experiments. The results demonstrate that SKEDC achieves more than \(3\times \) throughput gain in the key generation from the state-of-the-art RSS-based approaches.

Nasser Aldaghri,Hessam Mahdavifar

DOI: https://doi.org/10.1109/TIFS.2020.2974621

2020-02-14

Abstract:Two legitimate parties, referred to as Alice and Bob, wish to generate secret keys from the wireless channel in the presence of an eavesdropper, referred to as Eve, in order to use such keys for encryption and decryption. In general, the secret key rate highly depends on the coherence time of the channel. In particular, a straightforward method of generating secret keys in static environments results in ultra-low rates. In order to resolve this problem, we introduce a low-complexity method called induced randomness. In this method, Alice and Bob independently generate local randomness to be used together with the uniqueness of the wireless channel coefficients in order to enable high-rate secret key generation. In this work, two scenarios are considered: first, when Alice and Bob share a direct communication channel, and second, when Alice and Bob do not have a direct link and communicate through an untrusted relay. After exchanging the induced randomness, post-processing is done by Alice and Bob to generate highly-correlated samples that are used for the key generation. Such samples are then converted into bits, disparities between the sequences generated by Alice and Bob are mitigated, and the resulting sequences are then hashed to compensate for the information leakage to the eavesdropper and to allow consistency checking of the generated key bit sequences. We utilize semantic security measures and information-theoretic inequalities to upper bound the probability of successful eavesdropping attack in terms of the mutual information measures that can be numerically computed. Given certain reasonable system parameters this bound is numerically evaluated to be $2^{-31}$ and $2^{-10.57}$ in the first and the second scenario, respectively.

Information Theory

Lu Yang,Yansong Gao,Junqing Zhang,Seyit Camtepe,Dhammika Jayalath

DOI: https://doi.org/10.1016/j.comcom.2022.04.027

IF: 5.047

2022-04-01

Computer Communications

Abstract:Physical layer key generation is a lightweight technique to generate secret keys from wireless channels for resource-constrained Internet of things (IoT) applications. The security of the key generation relies on spatial decorrelation, which assumes that eavesdroppers observe uncorrelated channel measurements when they are located over a half-wavelength away from legitimate users. Unfortunately, no experimental validation exists for communications environments with both large-scale and small-scale fading effects. Furthermore, while the current key generation work mainly focuses on short-range communications techniques such as WiFi and ZigBee, the exploration with long-range communications, e.g., LoRa, is somewhat limited. This paper presents a long-range key generation testbed and reveals a new attack scenario that perceives and utilizes large-scale fading effects in key generation channels, by using multiple eavesdroppers circularly around a legitimate user. We formalized such an attack and validated it through extensive experiments conducted in indoor and outdoor environments. It is corroborated that the attack reduces secret key capacity when large-scale fading is predominant. We further investigated potential defenses by proposing a conditional entropy and high-pass filter-based countermeasure to estimate and eliminate large-scale fading components. The experimental results demonstrated that the countermeasure significantly improved the key generation’s security when both large-scale and small-scale fading existed. The keys generated by legitimate users have a desirable low key disagreement rate (KDR) and are validated by the NIST randomness tests. In contrast, eavesdroppers’ average KDR is increased from 0.25 to 0.49.

computer science, information systems,telecommunications,engineering, electrical & electronic

Jizhong Zhao,Wei Xi,Jinsong Han,Shaojie Tang,Xiangyang Li,Yunhao Liu,Yihong Gong,Zehua Zhou

DOI: https://doi.org/10.48550/arxiv.1208.0688

2012-01-01

Abstract:Generating keys and keeping them secret is critical in secure communications. Due to the "open-air" nature, key distribution is more susceptible to attacks in wireless communications. An ingenious solution is to generate common secret keys by two communicating parties separately without the need of key exchange or distribution, and regenerate them on needs. Recently, it is promising to extract keys by measuring the random variation in wireless channels, e.g., RSS. In this paper, we propose an efficient Secret Key Extraction protocol without Chasing down Errors, SKECE. It establishes common cryptographic keys for two communicating parties in wireless networks via the realtime measurement of Channel State Information (CSI). It outperforms RSS-based approaches for key generation in terms of multiple subcarriers measurement, perfect symmetry in channel, rapid decorrelation with distance, and high sensitivity towards environments. In the SKECE design, we also propose effective mechanisms such as the adaptive key stream generation, leakage resilient consistence validation, and weighted key recombination, to fully exploit the excellent properties of CSI. We implement SKECE on off-the-shelf 802.11n devices and evaluate its performance via extensive experiments. The results demonstrate that SKECE achieves a more than 3x throughput gain in the key generation from one subcarrier in static scenarios, and due to its high efficiency, a 50 on the communication overhead compared to the state-of-the-art RSS based approaches.

Ningya Xu,Guoshun Nan,Xiaofeng Tao

2023-10-14

Abstract:Reconfigurable Intelligent Surface (RIS) assisted physical layer key generation has shown great potential to secure wireless communications by smartly controlling signals such as phase and amplitude. However, previous studies mainly focus on RIS adjustment under ideal conditions, while the correlation between the eavesdropping channel and the legitimate channel, a more practical setting in the real world, is still largely under-explored for the key generation. To fill this gap, this paper aims to maximize the RIS-assisted physical-layer secret key generation by optimizing the RIS units switching under the eavesdropping channel. Firstly, we theoretically show that passive eavesdropping significantly reduces RIS-assisted secret key generation. Keeping this in mind, we then introduce a mathematical formulation to maximize the key generation rate and provide a step-by-step analysis. Extensive experiments show the effectiveness of our method in benefiting the secret key capacity under the eavesdropping channel. We also observe that the key randomness, and unmatched key rate, two metrics that measure the secret key quality, are also significantly improved, potentially paving the way to RIS-assisted key generation in real-world scenarios.

Signal Processing

Lin Wang,Haonan An,Haojin Zhu,Wenyuan Liu

DOI: https://doi.org/10.1109/jiot.2020.2986399

IF: 10.6

2020-08-01

IEEE Internet of Things Journal

Abstract:Consumer Internet-of-Things platforms, especially in smart home, have received widespread attention. A large number of end-to-end and edge-to-end wireless communication links are subject to significant security and privacy risks. Key generation using radio link side-channel information is a burgeoning technology to solve this problem. This article designs a symmetric key generation method without environmental constraints, namely, MobiKey. The basic idea is taking the human mobility in home or the swing of the antenna to generate symmetric keys based on channel reciprocity. We leverage the practical phase information as the channel feature to generate symmetric keys between two communicating parties. To overcome the effects of noise on both communication sides and get a better performance, MobiKey harnesses the adaptive quantization method to make the bit generation rate and bit matching rate higher. MobiKey also uses the adaptive inconsecutive samples to increase the confusion of the adversary. Moreover, we propose the D-Gray code to enhance the randomness of quantization. MobiKey is implemented on different commercial devices, and the results show that it has comparative advantages in key generation consistency, randomness, and security. In addition, the performance in preventing predictable channel attacks and eavesdropping attack is discussed.

computer science, information systems,telecommunications,engineering, electrical & electronic