Message Integrity Protection over Wireless Channel by Countering Signal Cancellation

Hou, Y. Thomas; Li, Ming; Chauhan, Ruchir; Gerdes, Ryan; Zeng, Kai

doi:10.1145/2714576.2714617

Cited by 10 publications

(8 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The vulnerability of preliminary orthogonal blinding results from the unchanged main channel, which allows the eavesdropper to estimate it via known symbols and filter the AN out. Actually, this flaw can be amended with the channel randomization approach, which is to actively randomize the wireless channel by introducing special antennas [21], [24], antenna motions [22] or artificial channel disturbance [23]. Intuitively, when the wireless channel is rapidly randomized, Eve can be blocked from gathering enough symbols for filter training.…”

Section: Robin: Channel-randomized Orthogonal Blindingmentioning

confidence: 99%

“…Different from this work, their scheme is only applicable to single-antenna transmitters and does not use pre-coding. To defend against active man-in-the-middle attacks, Hou et al [23] and Pan et al [24] randomized the wireless channel with a fan and a reconfigurable antenna respectively to prevent online signal cancellation. All these works show that channel randomization approach can be a powerful tool to enhance physical-layer security.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

ROBin: Known-Plaintext Attack Resistant Orthogonal Blinding via Channel Randomization

Pan

Zheng

2020

Preprint

Self Cite

View full text Add to dashboard Cite

Orthogonal blinding based schemes for wireless physical layer security aim to achieve secure communication by injecting noise into channels orthogonal to the main channel and corrupting the eavesdropper's signal reception. These methods, albeit practical, have been proven vulnerable against multiantenna eavesdroppers who can filter the message from the noise. The vulnerability is rooted in the fact that the main channel state remains static in spite of the noise injection, which allows an eavesdropper to estimate it promptly via known symbols and filter out the noise. Our proposed scheme leverages a reconfigurable antenna for Alice to rapidly change the channel state during transmission and a compressive sensing based algorithm for her to predict and cancel the changing effects for Bob. As a result, the communication between Alice and Bob remains clear, whereas randomized channel state prevents Eve from launching the knownplaintext attack. We formally analyze the security of the scheme against both single and multi-antenna eavesdroppers and identify its unique anti-eavesdropping properties due to the artificially created fast-changing channel. We conduct extensive simulations and real-world experiments to evaluate its performance. Empirical results show that our scheme can suppress Eve's attack success rate to the level of random guessing, even if she knows all the symbols transmitted through other antenna modes.

show abstract

Section: Robin: Channel-randomized Orthogonal Blindingmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

ROBin: Known-Plaintext Attack Resistant Orthogonal Blinding via Channel Randomization

Pan

Zheng

2020

Preprint

Self Cite

View full text Add to dashboard Cite

show abstract

“…However, OOB channels usually require non-trivial human support and advanced user interfaces. To reduce the human interaction there have been few past attempts to design in-band message integrity protection mechanisms, which assume that signal cancellation over the wireless channel is not possible [5], or occurs with bounded success [7], [23]. For example, the Tamper-Evident Pairing (TEP) protocol proposed by Gollakota et al [8], and the integrity codes (I-codes) proposed byČapkun et al [5] both assumed the infeasibility of signal cancellation.…”

Section: Related Workmentioning

confidence: 99%

“…However, the infeasibility of signal cancellation assumption does not always hold. Pöpper et al first showed the feasibility of signal cancellation attacks using carefully placed relay nodes and directional antennas [22], Recently, Hou et al [23] showed that success probability of signal cancellation attack in the oneto-one setting depends on the randomness of the legitimate channel. A typical indoor environment may not be sufficient because the devices are static and the channel is usually stable.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Secure Device Bootstrapping Without Secrets Resistant to Signal Manipulation Attacks

Ghose

Lazos

2018

2018 IEEE Symposium on Security and Privacy (SP)

Self Cite

View full text Add to dashboard Cite

In this paper, we address the fundamental problem of securely bootstrapping a group of wireless devices to a hub, when none of the devices share prior associations (secrets) with the hub or between them. This scenario aligns with the secure deployment of body area networks, IoT, medical devices, industrial automation sensors, autonomous vehicles, and others. We develop VERSE, a physical-layer group message integrity verification primitive that effectively detects advanced wireless signal manipulations that can be used to launch man-in-the-middle (MitM) attacks over wireless. Without using shared secrets to establish authenticated channels, such attacks are notoriously difficult to thwart and can undermine the authentication and key establishment processes. VERSE exploits the existence of multiple devices to verify the integrity of the messages exchanged within the group. We then use VERSE to build a bootstrapping protocol, which securely introduces new devices to the network.Compared to the state-of-the-art, VERSE achieves in-band message integrity verification during secure pairing using only the RF modality without relying on out-of-band channels or extensive human involvement. It guarantees security even when the adversary is capable of fully controlling the wireless channel by annihilating and injecting wireless signals. We study the limits of such advanced wireless attacks and prove that the introduction of multiple legitimate devices can be leveraged to increase the security of the pairing process. We validate our claims via theoretical analysis and extensive experimentations on the USRP platform. We further discuss various implementation aspects such as the effect of time synchronization between devices and the effects of multipath and interference. Note that the elimination of shared secrets, default passwords, and public key infrastructures effectively addresses the related key management challenges when these are considered at scale.

show abstract

ROBin: Known-Plaintext Attack Resistant Orthogonal Blinding via Channel Randomization

Pan

Zheng

2020

IEEE INFOCOM 2020 - IEEE Conference on Computer Communications

View full text Add to dashboard Cite

Message Integrity Protection over Wireless Channel by Countering Signal Cancellation

Cited by 10 publications

References 23 publications

ROBin: Known-Plaintext Attack Resistant Orthogonal Blinding via Channel Randomization

ROBin: Known-Plaintext Attack Resistant Orthogonal Blinding via Channel Randomization

Secure Device Bootstrapping Without Secrets Resistant to Signal Manipulation Attacks

ROBin: Known-Plaintext Attack Resistant Orthogonal Blinding via Channel Randomization

Contact Info

Product

Resources

About