Optimal strategies for defending location inference attack in database-driven CRNs

Yavuz

IEEE Trans. Cogn. Commun. Netw.

2019

Spectrum database-based cognitive radio networks (CRN s) have become the de facto approach for enabling unlicensed secondary users (SU s) to identify spectrum vacancies in channels owned by licensed primary users (PU s). Despite its merits, the use of spectrum databases incurs privacy concerns for both SU s and PU s. Single-server private information retrieval (PIR) has been used as the main tool to address this problem. However, such techniques incur extremely large communication and computation overheads while offering only computational privacy. Besides, some of these PIR protocols have been broken.In this paper, we show that it is possible to achieve high efficiency and (information-theoretic) privacy for both PU s and SU s in database-driven CRN with multi-server PIR. Our key observation is that, by design, database-driven CRN s comprise multiple databases that are required, by the Federal Communications Commission, to synchronize their records. To the best of our knowledge, we are the first to exploit this observation to harness multi-server PIR technology to guarantee an optimal privacy for both SU s and PU s, thanks to the unique properties of database-driven CRN . We showed, analytically and empirically with deployments on actual cloud systems, that multi-server PIR is an ideal tool to provide efficient location privacy in database-driven CRN .Index Terms-Database-driven cognitive radio networks, location privacy, dynamic spectrum access, private information retrieval.

Section: Related Workmentioning

confidence: 99%

Location Privacy in Cognitive Radios With Multi-Server Private Information Retrieval

Yavuz

IEEE Trans. Cogn. Commun. Netw.

2019

“…transmit power) for each channel to avoid interfering with the incumbents. Afterwards, depending on the situation, SU may optionally inform DB of its choice and registers the channel it is planning to operate on during what is referred to as notification or commitment phase [54], [55]. DB keeps track of this information to have more visibility over the CRN and make its decision adaptively which allows it to reduce interference among SU s. SU s may be able to communicate directly with DB as in Figure 5(a) or via a fixed base station that relays their queries to DB as in Figure 5…”

Section: B) Cooperationmentioning

confidence: 99%

“…Countermeasure solutions for these attacks have also been proposed, ranging from introducing randomness to multihop path selection [178], [179] to making the source nodes move randomly [8] to confuse the attackers. Unlike other wireless systems, location privacy preservation that addresses vulnerabilities in CRN s has not, however, received much attention, though several works related to spectrum sensing [11], [54], [55], [72], [180]- [182], spectrum auction bids [155], [183], subscriber identification [184], and database-driven DSA [54], [55], [180]- [182], [185] have been proposed.…”

Section: Limitations Of Generic Privacy Enhancingmentioning

confidence: 99%

Location Privacy in Cognitive Radio Networks: A Survey

IEEE Commun. Surv. Tutorials

Yavuza

2017

Cognitive radio networks (CRN s) have emerged as an essential technology to enable dynamic and opportunistic spectrum access which aims to exploit underutilized licensed channels to solve the spectrum scarcity problem. Despite the great benefits that CRN s offer in terms of their ability to improve spectrum utilization efficiency, they suffer from user location privacy issues. Knowing that their whereabouts may be exposed can discourage users from joining and participating in the CRN s, thereby potentially hindering the adoption and deployment of this technology in future generation networks. The location information leakage issue in the CRN context has recently started to gain attention from the research community due to its importance, and several research efforts have been made to tackle it. However, to the best of our knowledge, none of these works have tried to identify the vulnerabilities that are behind this issue or discuss the approaches that could be deployed to prevent it. In this paper, we try to fill this gap by providing a comprehensive survey that investigates the various location privacy risks and threats that may arise from the different components of this CRN technology, and explores the different privacy attacks and countermeasure solutions that have been proposed in the literature to cope with this location privacy issue. We also discuss some open research problems, related to this issue, that need to be overcome by the research community to take advantage of the benefits of this key CRN technology without having to sacrifice the users' privacy.

“…For instance, k-anonymity guarantees that SU 's location is indistinguishable among a set of k points, which could be achieved through the use of dummy locations by generating k − 1 properly selected dummy points, and performing k queries to DB using both the real and dummy locations. For example, Zhang et al [22] rely on this concept to make each SU query DB by sending a square cloak region that includes its actual location. Their approach makes a tradeoff between providing high location privacy and maximizing some utility, which makes it suffer from the fact that achieving a high location privacy level results in a decrease in spectrum utility.…”

Section: Related Workmentioning

confidence: 99%

“…Next, we also compare our schemes with respect to existing approaches in terms of (i) communication and computational overhead, and (ii) location privacy. Since the schemes in [22], [27] try to achieve a different goal, which is the mutual location privacy between SU s and PU s, we do not include them in our overhead analysis. Note that, since the PIR protocol used in [25] has not been specified, we use the protocol proposed by Trostle et al [24] used in PriSpectrum [23] in our performance comparison.…”

Section: Evaluation and Analysismentioning

confidence: 99%

Location Privacy Preservation in Database-Driven Wireless Cognitive Networks Through Encrypted Probabilistic Data Structures

Yavuz

IEEE Trans. Cogn. Commun. Netw.

2017

In this paper, we propose new location privacy preserving schemes for database-driven cognitive radio networks (CRN s) that protect secondary users' (SU s) location privacy while allowing them to learn spectrum availability in their vicinity. Our schemes harness probabilistic set membership data structures to exploit the structured nature of spectrum databases (DB s) and SU s' queries. This enables us to create a compact representation of DB that could be queried by SU s without having to share their location with DB , thus guaranteeing their location privacy. Our proposed schemes offer different costperformance characteristics. Our first scheme relies on a simple yet powerful two-party protocol that achieves unconditional security with a plausible communication overhead by making DB send a compacted version of its content to SU which needs only to query this data structure to learn spectrum availability. Our second scheme achieves significantly lower communication and computation overhead for SU s, but requires an additional architectural entity which receives the compacted version of the database and fetches the spectrum availability information in lieu of SU s to alleviate the overhead on the latter. We show that our schemes are secure, and also demonstrate that they offer significant advantages over existing alternatives for various performance and/or security metrics.Index Terms-Database-driven spectrum availability, location privacy preservation, cognitive radio networks, set membership data structures.