Xiaocong Jin,Jingchao Sun,Rui Zhang,Yanchao Zhang,Chi Zhang

DOI: https://doi.org/10.1109/TMC.2018.2823314

IF: 6.075

2018-01-01

IEEE Transactions on Mobile Computing

Abstract:Dynamic spectrum access (DSA) is the key to solving worldwide spectrum shortage. The open wireless medium subjects DSA systems to unauthorized spectrum use by illegitimate users. Secondary-user authentication is thus critical to ensure the proper operations of DSA systems. This paper presents SpecGuard, the first crowdsourced spectrum misuse detection framework for DSA systems. In SpecGuard, a tra...

Huifang Chen,Ming Zhou,Lei Xie,Kuang Wang,Jie Li

DOI: https://doi.org/10.1109/tvt.2016.2520983

IF: 6.8

2016-01-01

IEEE Transactions on Vehicular Technology

Abstract:Spectrum sensing and spectrum sharing are two fundamental issues in a cognitive radio network ( CRN). The spectrum sensing data falsification ( SSDF) attack imposes bad effects on both spectrum sensing and spectrum sharing. To deal with SSDF attacks and to incentivize secondary users ( SUs) to behave well, a joint spectrum sensing and resource allocation ( JSSRA) scheme in a CRN is proposed in this paper. The JSSRA problem is formulated as a weighted-proportional-fairness-based resource-allocation optimization problem under the constraint that the primary user ( PU) network is sufficiently protected. The problem is decomposed into two subproblems, namely, the resource allocation subproblem and cooperative SU number decision subproblem, which are solved by the Lagrangian dual algorithm and the brute-force algorithm, respectively. Moreover, a user-selection method based on reinforcement learning is presented to select reliable SUs for cooperative spectrum sensing ( CSS). In addition, the SU's trust degree is updated according to its behavior in CSS and is used in the sensed resource-allocation process. The key point of our proposed scheme is to make SUs improve the sensing reliability and prevent SUs from behaving maliciously by an incentive mechanism. Comprehensive performance evaluation is conducted by computer simulation. It is shown that the proposed JSSRA scheme deals with the SSDF attack well in cooperative sensing process to improve system robustness and achieves a significant system utility gain in resource allocation.

Rong Fan,Dao-jing He,Xue-zeng Pan,Ling-di Ping

DOI: https://doi.org/10.1631/jzus.c1000377

2011-01-01

Abstract:Wireless sensor networks (WSNs) are vulnerable to security attacks due to their deployment and resource constraints. Considering that most large-scale WSNs follow a two-tiered architecture, we propose an efficient and denial-of-service (DoS)-resistant user authentication scheme for two-tiered WSNs. The proposed approach reduces the computational load, since it performs only simple operations, such as exclusive-OR and a one-way hash function. This feature is more suitable for the resource-limited sensor nodes and mobile devices. And it is unnecessary for master nodes to forward login request messages to the base station, or maintain a long user list. In addition, pseudonym identity is introduced to preserve user anonymity. Through clever design, our proposed scheme can prevent smart card breaches. Finally, security and performance analysis demonstrates the effectiveness and robustness of the proposed scheme.

Yanzhi Dou,Kexiong Curtis Zeng,He Li,Yaling Yang,Bo Gao,Chaowen Guan,Kui Ren,Shaoqian Li

DOI: https://doi.org/10.1145/2942358.2942384

2016-01-01

Abstract:Centralized spectrum management is one of the key dynamic spectrum access (DSA) mechanisms proposed to govern the spectrum sharing between government incumbent users (IUs) and commercial secondary users (SUs). In the current centralized DSA designs, the operation data of both government IUs and commercial SUs needs to be shared with a central server. However, the operation data of government IUs is often classified information and the SU operation data may also be commercial secret. The current system design dissatisfies the privacy requirement of both IUs and SUs since the central server is not necessarily trust-worthy for holding such sensitive operation data. To address the privacy issue, this paper presents a privacy-preserving centralized DSA system (P2-SAS), which realizes the complex spectrum allocation process of DSA through efficient secure multi-party computation. In P2-SAS, none of the IU or SU operation data would be exposed to any snooping party, including the central server itself. We formally prove the correctness and privacy-preserving property of P2-SAS and evaluate its scalability and practicality using experiments based on real-world data. Experiment results show that P2-SAS can respond an SU's spectrum request in 6.96 seconds with communication overhead of less than 4 MB.

Vireshwar Kumar,Jung-Min (Jerry) Park,Kaigui Bian

DOI: https://doi.org/10.1109/tifs.2016.2516904

IF: 7.231

2016-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Spectrum security and enforcement is one of the major challenges that need to be addressed before spectrum sharing technologies can be adopted widely. The problem of rogue transmitters is a major threat to the viability of spectrum sharing. One approach for deterring rogue transmissions is to enable receivers to authenticate or uniquely identify transmitters. Although cryptographic mechanisms at the higher layers have been widely used to authenticate transmitters, the ability to authenticate transmitters at the physical (PHY) layer has a number of key advantages over higher layer approaches. In existing schemes, the authentication signal is added to the message signal in such a way that the authentication signal appears as noise to the message signal and vice versa. Hence, existing schemes are constrained by a fundamental tradeoff between the message signal's signal-to-noise ratio (SNR) and the authentication signal's SNR. In this paper, we extend the precoded duobinary signaling (P-DS) technique to devise a new PHY-layer authentication scheme called P-DS for authentication (P-DSA). P-DSA exploits the redundancy introduced by P-DS to embed the authentication signal into the message signal. P-DSA is not constrained by the aforementioned tradeoff between the message and authentication signals. Our results show that P-DSA improves the detection performance compared with the prior art without sacrificing message throughput or increasing transmission power.

Chunxing Jiang,Chunxiao Jiang,Norman C. Beaulieu

DOI: https://doi.org/10.1109/GLOCOM.2013.6831216

2013-01-01

Abstract:In order to mitigate the problem of crowded radio spectrum, dynamic spectrum access (DSA) has become the solution and a research focal point. The number of works in wideband spectrum sensing is dramatically increasing recently due to its importance in cognitive radio (CR) networks. Most works assume that secondary users (SUs) are synchronous with the primary users' (PUs) network. However, in many practical systems the SUs will have no information about the PUs' communication protocols. Furthermore, it is also possible that communications among PUs are not based on synchronous operation. In order to address such problems, a contention-based wideband DSA algorithm with asynchronous cooperative spectrum sensing (CSS), called the DySac, is proposed. In this scheme, the SUs need not maintain synchronism with the PUs, and the SUs who intend to access the primary network compete among each other for available channels. Performance analysis and simulations are conducted to evaluate the proposed DySac.

Vireshwar Kumar,Jung-Min Jerry Park,T. Charles Clancy,Kaigui Bian

DOI: https://doi.org/10.1109/cns.2013.6682687

2013-01-01

Abstract:Spectrum security and enforcement is one of the major challenges that need to be addressed before spectrum-agile and opportunistic spectrum access technologies can be deployed. Rogue transmitters are a major threat to opportunistic spectrum access. One approach for deterring rogue transmissions is to enable receivers to authenticate or uniquely identify secondary transmitters. Although cryptographic mechanisms at the higher layers have been widely used to authenticate transmitters, the ability to authenticate transmitters at the physical (PHY) layer has a number of key advantages over higher-layer approaches. In existing schemes, the authentication signal is added to the message signal in such a way that the authentication signal appears as noise to the message signal and vice versa. Hence, existing schemes are constrained by a fundamental tradeoff between the message signal's signal-to-noise ratio (SNR) and the authentication signal's SNR. In this paper, we propose a novel PHY-layer authentication scheme called Precoded Duobinary Signaling for Authentication (P-DSA). P-DSA introduces some controlled amount of inter-symbol interference (ISI) into the data stream. The addition of the controlled ISI introduces redundancy in the message signal which can be utilized to embed the authentication signal. In this way, P-DSA relaxes the constraint on the aforementioned tradeoff. Our results show that P-DSA achieves superior detection performance compared to the prior art without sacrificing message throughput or increasing power.

Yanzhi Dou,He Li,Kexiong Curtis Zeng,Jinshan Liu,Yaling Yang,Bo Gao,Kui Ren

DOI: https://doi.org/10.1109/ICDCS.2016.40

2016-01-01

Abstract:Dynamic spectrum access (DSA) technique has emerged as a fundamental approach in improving spectrum utilization to mitigate the spectrum scarcity problem. As a key form of DSA, government is proposing to release more federal spectrum for sharing with commercial wireless users. However, the flourish of federal-commercial sharing hinges upon how federal privacy issues are managed. In current DSA proposals, the sensitive operation information of federal incumbent users (IUs) needs to be shared with a dynamic spectrum access system (SAS) to realize spectrum allocation. However, SAS is not necessarily trust-worthy for holding such sensitive IU data, especially considering that FCC allows some industry third parties (e.g., Google) to operate SAS for better efficiency and scalability. Therefore, the current proposals dissatisfy the IUs' privacy requirement. To address the privacy issues, this paper presents an IU-privacy-preserving SAS (IP-SAS) design, which realizes the spectrum allocation process through secure computation over ciphertext based on homomorphic encryption so that none of the IU operation information is exposed to SAS.

Yanzhi Dou,Kexiong Zeng,Li He,Yaling Yang,Bo Gao,Kui Ren,Shaoqian Li

DOI: https://doi.org/10.1109/jsac.2016.2633059

IF: 16.4

2016-01-01

IEEE Journal on Selected Areas in Communications

Abstract:Centralized spectrum management is one of the key dynamic spectrum access (DSA) mechanisms proposed to govern the spectrum sharing between government incumbent users (IUs) and commercial secondary users (SUs). In the current centralized DSA designs, the operation data of both government IUs and commercial SUs need to be shared with a central server. However, the operation data of government IUs are often classified information and the SU operation data may also be commercial secrets. The current system design dissatisfies the privacy requirement of both IUs and SUs, since the central server is not necessarily trustworthy for holding such sensitive operation data. To address the privacy issue, this paper presents a privacy-preserving centralized DSA system (P 2 -SAS), which realizes the complex spectrum allocation process of DSA through efficient secure multi-party computation. In P 2 -SAS, none of the IU or SU operation data would be exposed to any snooping party, including the central server itself. We formally prove the correctness and privacy-preserving property of P 2 -SAS and evaluate its scalability and practicality using experiments based on real-world data. Experiment results show that P 2 -SAS can respond an SU's spectrum request in 6.96 s with communication overhead of less than 4 MB.

Chunxiao Jiang,Xin Ma,Xin Zhang,Yong Ren

DOI: https://doi.org/10.1109/WCNC.2010.5506256

2010-01-01

Abstract:Dynamic spectrum access has become a focal issue recently. Lots of works have been done concerning secondary users (SU) synchronously accessing primary users' (PU) network. However, on one hand, SU have to periodically synchronize with PU's time tables, which will bring lots of unnecessary overhead. On the other hand, it is possible that SU have no idea about PU's communication scheme at all or even communications among PU are not based on synchronous scheme. In order to address such problems, this paper advances an asynchronous algorithm, called A-DSA, for SU to asynchronously access CR-based Ad-Hoc network. We focus on three questions in this paper: 1) how to choose channels to sense; 2) how to sense the chosen channels; 3) how to determine the final access channel after sense. Three strategies are proposed towards each question. Our simulations show that choosing sense channels by A-DSA can attain 20% more success rate than randomly choosing. Moreover, sensing by A-DSA can not only achieve nearly 50% less interference probability than equal allocation of the overall sense time, but also well adapt to time-varying channels.

Chunxiao Jiang,Chunxing Jiang,Norman C. Beaulieu,Yong Li,Yulong Zou,Yong Ren

DOI: https://doi.org/10.1109/jsyst.2014.2368692

IF: 4.802

2017-01-01

IEEE Systems Journal

Abstract:Dynamic spectrum access (DSA) is a promising solution for enhancing the utilization efficiency of spectrum resources. In DSA, spectrum sensing is crucial and cooperative spectrum sensing has been confirmed as a promising technology that can combat the wireless channel fading problem. Most current works have assumed that the secondary users (SUs) are synchronous with the primary users' (PUs) network. However, on one hand, the SUs may have no information about the PUs' communication protocols. On the other hand, communications among the PUs are not based on synchronous operation in some systems. In order to address such problems, the DYWAMIT, an asynchronous wideband DSA system, is proposed. In this scheme, the SUs need not maintain synchronism with the PUs, enabling the SUs to cognitively and asynchronously access primary channels even without knowing the communication protocols of the PUs. Performance analysis and simulations are conducted to evaluate the proposed DYWAMIT algorithm; in particular, the average throughput of the SUs, accounting for the asynchronism between the SUs and PUs, is derived for four cases of interest. Some important future research challenges are highlighted.

Yanzhi Dou,Kexiong Zeng,He Li,Yaling Yang,Bo Gao,Kui Ren,Shaoqian Li

DOI: https://doi.org/10.1109/jsac.2016.2633059

IF: 16.4

2017-01-01

IEEE Journal on Selected Areas in Communications

Abstract:Centralized spectrum management is one of the key dynamic spectrum access (DSA) mechanisms proposed to govern the spectrum sharing between government incumbent users (IUs) and commercial secondary users (SUs). In the current centralized DSA designs, the operation data of both government IUs and commercial SUs need to be shared with a central server. However, the operation data of government IUs ar...

Vireshwar Kumar,Jung-Min Jerry Park,T. Charles Clancy,Kaigui Bian

DOI: https://doi.org/10.1109/iccnc.2014.6785436

2014-01-01

Abstract:In a cognitive radio network, the non-conforming behavior of rogue transmitters is a major threat to opportunistic spectrum access. One approach for facilitating spectrum enforcement and security is to require every transmitter to embed a uniquely-identifiable authentication signal in its waveform at the PHY-layer. In existing PHY-layer authentication schemes, known as blind signal superposition, the authentication/identification signal is added to the message signal as noise, which leads to a tradeoff between the message signal's signal-to-noise (SNR) and the authentication signal's SNR under the assumption of constant average transmitted power. This implies that one cannot improve the former without scarifying the latter, and vice versa. In this paper, we propose a novel PHY-layer authentication scheme called hierarchically modulated duobinary signaling for authentication (HM-DSA). HM-DSA introduces some controlled amount of inter-symbol interference (ISI) into the message signal. The redundancy induced by the addition of the controlled ISI is utilized to embed the authentication signal. Our scheme, HM-DSA, relaxes the constraint on the aforementioned tradeoff and improves the error performance of the message signal as compared to the prior art.

Xuewen Dong,Qiao Kang,Qingsong Yao,Di Lu,Yang Xu,Jia Liu

DOI: https://doi.org/10.1109/infocom41043.2020.9155419

2020-01-01

Abstract:Dynamic spectrum access (DSA) is a promising platform to solve the spectrum shortage problem, in which auction based mechanisms have been extensively studied due to good spectrum allocation efficiency and fairness. Recently, Sybil attacks were introduced in DSA, and Sybil-proof spectrum auction mechanisms have been proposed, which guarantee that each single secondary user (SU) cannot obtain a higher utility under more than one fictitious identities. However, existing Sybil-poof spectrum auction mechanisms achieve only Sybil-proofness for SUs, but not for primary users (PUs), and simulations show that a cheating PU in those mechanisms can obtain a higher utility by Sybil attacks. In this paper, we propose TSUNAMI, the first Truthful and primary user Sybil-proof aUctioN mechAnisM for onlIne spectrum allocation. Specifically, we compute the opportunity cost of each SU and screen out cost-efficient SUs to participate in spectrum allocation. In addition, we present a bid-independent sorting method and a sequential matching approach to achieve primary user Sybil-proofness and 2-D truthfulness, which means that each SU or PU can gain her maximal utility by bidding with her true valuation of spectrum. We evaluate the performance and validate the desired properties of our proposed mechanism through extensive simulations.

He Li,Yaling Yang,Yanzhi Dou,Jung-Min (Jerry) Park,Kui Ren

DOI: https://doi.org/10.1109/infocom.2019.8737630

2019-01-01

Abstract:Database driven dynamic spectrum sharing is one of the most promising dynamic spectrum access (DSA) solution to address the spectrum scarcity issue. In such a database-driven DSA system, the centralized spectrum management infrastructure, called spectrum access system (SAS), collects sensitive operational data of both incumbent users (IUs) and secondary users (SUs), which makes privacy protection critical in this paradigm. However, the few existing solutions rely on online trusted third party, which requires extra infrastructure and brings the risk of single point failure. To address the shortcomings of existing solutions, we propose a privacy enhanced and database-driven dynamic spectrum sharing (PeDSS) framework in this paper, which preserves the privacy for both IUs and SUs in database-driven DSA systems without the need for online trusted third party. Privacy for both IUs and SUs are formally defined and analyzed, and experiment results show that SAS under PeDSS is able to handle a single spectrum request in 0.51 ms on average, which is three orders of magnitude faster than prior arts.

Shuai Ye,Tianyu Wang,Shaowei Wang

DOI: https://doi.org/10.1109/tccn.2023.3237578

2022-01-01

Abstract:In dynamic spectrum access (DSA), unlicensed secondary users can estimate the idle probability of each primary channel by using historical sensing results and access the channel with the highest idle probability for opportunistic transmission. Most of the existing works assume that each primary channel is associated with a constant idle probability, which can be accurately estimated by sensing the channel multiple times. However, due to the rapid traffic change and irregular user mobility, primary channels can be highly dynamic and the associated idle probability is generally time-varying. In this paper, we consider DSA in non-stationary environments where the idle probabilities of primary channels vary with time. Specifically, we propose a DSA scheme based on the Thompson sampling method with a change-detection technique, which is capable of detecting the variation of channel statistics and adjusting the channel access strategy accordingly. Numerical results show that the proposed algorithm outperforms the existing algorithms in terms of successful transmission ratio in various settings.

Yanzhi Dou,He Li,Kexiong Curtis Zeng,Jinshan Liu,Yaling Yang,Bo Gao,Kui Ren

DOI: https://doi.org/10.1145/2973750.2985283

2017-01-01

Abstract:Dynamic spectrum access (DSA) technique has emerged as a fundamental approach to mitigate the spectrum scarcity problem. As a key form of DSA, the government is proposing to release more federal spectrum for sharing with commercial wireless users. However, the flourish of federal commercial sharing hinges upon how the federal privacy is managed. In current DSA proposals, the sensitive exclusion zone (E-Zone) information of federal incumbent users (IUs) needs to be shared with a spectrum access system (SAS) to realize spectrum allocation. However, SAS is not necessarily trust-worthy for holding the sensitive IU E-Zone data, especially considering that FCC allows some industry third parties (e.g., Google) to operate SAS for better efficiency and scalability. Therefore, the current proposals dissatisfy the Ills' privacy requirement. To address the privacy issue, this paper presents an IU-privacy-preserving SAS (IP-SAS) design, which realizes the spectrum allocation process through secure computation over ciphertext based on homomorphic encryption so that none of the IU E-Zone information is exposed to SAS. This paper also proposes mechanisms to prevent malicious parties from compromising IP-SAS. We prove the privacy-preserving properties of IP-SAS and demonstrate the scalability and practicality of IP-SAS using experiments based on real-world data. Evaluation results show that IP-SAS can respond an SU's spectrum request in 1.25 seconds with communication overhead of 17.8 KB.

Yu Gan,Chunxiao Jiang,Norman C. Beaulieu,Jian Wang,Yong Ren

DOI: https://doi.org/10.1109/TCOMM.2016.2600563

IF: 6.166

2016-01-01

IEEE Transactions on Communications

Abstract:Collaborative spectrum sensing is an effective method to improve detection rates in cognitive radio networks. However, it is vulnerable to spectrum sensing data falsification (SSDF) attacks when malicious secondary users (SUs) report fraudulent sensing data. In order to improve the robustness, numerous attack prevention schemes have been proposed to identify malicious SUs. Nevertheless, most of th...

Shuai Li,Haojin Zhu,Bo Yang,Cailian Chen,Xinping Guan

DOI: https://doi.org/10.1109/icc.2011.5962946

2011-01-01

Abstract:Collaborative spectrum sensing has been proposed recently to facilitate precise detection of Primary Users in Cognitive Radio networks. However, it simultaneously introduces new security issue that the selfish or even misbehaving users could cheat a secondary user by depriving its access opportunity. To address this problem, we propose a novel User-centric Misbehavior Detection Scheme (UMDS) in this paper to detect malicious behaviors in collaborative spectrum sensing. The basic idea of UMDS is motivated by the fact that a mobile user tends to trust the sensing report generated by itself rather than the reports from other nodes. Therefore, a secondary user could independently determine if a sensing partner is malicious or not by calculating the correlation between the secondary user's own reports and those of other sensing nodes. We also discuss how to further improve the performance of the UMDS by choosing an optimized threshold. The effectiveness and efficiency of the proposed scheme is demonstrated by extensive analysis and numerical results.

Jianhua He,Jie Xiang,Yan Zhang,Zuoyin Tang

DOI: https://doi.org/10.1007/978-0-387-89828-5_18

2009-01-01

Abstract:Most of existing wireless systems are regulated by a fixed spectrum assignment strategy. This policy leads to an undesirable situation that some systems may only use the allocated spectrum to a limited extent while others have very serious spectrum insufficiency situation. Dynamic spectrum access (DSA) is emerging as a promising technology to address the above issue such that the unused licensed spectrum can be opportunistically accessed by the unlicensed users. To enable DSA, the unlicensed user shall have the capability of detecting the unoccupied spectrum, controlling its spectrum access in an adaptive manner, and coexisting with other unlicensed users automatically. In this chapter, we will give an overview on the DSA for sharing open spectrum. And we investigate a radio system transmission opportunity (TXOP)-based spectrum access control protocol, with the aim of improving spectrum access fairness and ensure safe coexistence of multiple unlicensed radio systems. Simulation is carried out to evaluate the TXOP-based scheme with respect to spectrum utilization, fairness, and scalability.