In wireless OFDM communications systems, pilot tones, due to their publicly-known and deterministic characteristic, suffer significant jamming/nulling/spoofing risks. Thus, the convectional channel training protocol using pilot tones could be attacked and paralysed, which raises the issue of anti-attack channel training authentication (CTA), that is, verifying the claims of identities of pilot tones and channel estimation samples. In this paper, we consider one-ring scattering scenarios with largescale uniform linear arrays (ULA) and develop an independencechecking coding (ICC) theory to build a secure and stable CTA protocol, namely ICC based CTA (ICC-CTA) protocol. In this protocol, pilot tones are not merely randomized and inserted into subcarriers, but also encoded as diversified subcarrier activation patterns (SAPs) simultaneously. Those encoded SAPs, though camouflaged by malicious signals, can be identified and decoded into original pilots, and hence for high-accuracy channel impulse response (CIR) estimation. The CTA security is first characterised by the error probability of identifying legitimate CIR estimation samples. We prove that the identification error probability (IEP) is equal to zero under the continuously-distributed mean angle of arrival (AoA) and also derive a closed-form expression of IEP under the discretely-distributed case. The CTA instability is formulated as the function of probability of stably estimating CIR against all available diversified SAPs. A realistic tradeoff between the CTA security and instability under the discretelydistributed AoA is identified and an optimally-stable tradeoff problem is formulated, with the objective of optimizing the code rate to maximize security while maintaining maximum stability for ever. Solving this, we derive the closed-form expression of optimal code rate. Numerical results finally validate the resilience of proposed ICC-CTA protocol.