extraction from wireless signal
play

Extraction from Wireless Signal Strength in Real Environments Suman - PowerPoint PPT Presentation

Feb 28, 2023 •560 likes •919 views

On the Effectiveness of Secret Key Extraction from Wireless Signal Strength in Real Environments Suman Jana, Sriram Nandha Premnath Mike Clark, Sneha K. Kasera, Neal Patwari University of Utah Srikanth V. Krishnamurthy University of

  1. On the Effectiveness of Secret Key Extraction from Wireless Signal Strength in Real Environments Suman Jana, Sriram Nandha Premnath Mike Clark, Sneha K. Kasera, Neal Patwari University of Utah Srikanth V. Krishnamurthy University of California, Riverside

  2. Problem Definition  wireless nodes, Alice & Bob, need to share secret key  concerns with public key cryptography  quantum cryptography – too expensive  less expensive solution - use inherent randomness in wireless channel to extract secret key bits 2

  3. Wireless Channel Characteristics  measured reciprocally at Alice, Bob  when away by more than few multiples of wavelength, Eve cannot measure same channel  channel varies with time 3

  4. Use of Received Signal Strength (RSS) RSS Variations Alice Bob Bob Alice Probe Exchange & Eve RSS Measurement  Alice, Bob expected to see “ identical” RSS variations RSS Variations [Stutzman „82]  realistically, they must deal with lack of perfect reciprocity Eve 4

  5. Related Work Mathur ‟08, Li ‟06, Aono ‟05  extract single bit per measurement  experimental results from limited indoor settings  Alice, Bob do not communicate to handle mismatches will result in key disagreement in large number of cases Azimi- Sadjadi ‟07  suggested using 2 stages from quantum cryptography - information reconciliation, privacy amplification  did not implement! 5

  6. Our Contributions • adaptive key extraction increases secret bit rate 4-fold • implement information reconciliation to handle bit mismatch • implement privacy amplification to reduce correlation between successive bits • through extensive real world measurements, identify settings (un)suitable for key extraction • expose new predictable channel attack in static settings 6

  7. Overview  adversary model  secret key extraction  real world measurements, results  summary 7

  8. Adversary Model  adversary Eve  listens to all communication between Alice, Bob  can measure channel between herself and Alice, Bob  separated from both parties by distance >> wavelength  Eve not interested in disrupting communication between Alice, Bob  Alice, Bob are not authenticated 8

  9. Secret Bit Extraction Quantization RSS Measurements Information Reconciliation Privacy Secret Key Amplification Bits 9

  10. Adaptive Quantization how to generate bits from RSS measurements? Extract “1” adapt threshold Upper Threshold Drop for small blocks of measurements Drop Extract Lower “0” Threshold Extracted Bits – 1 1 1 0 1 … 10

  11. Adaptive Quantization Extract “10” Interval 4 adapt # intervals depending on range “11” Interval 3 “01” Interval 2 “00” Interval 1 Extracted Bits - 11 10 11 10 10 11 01 00 01 …

  12. Adaptive Quantization Extract “111” Interval 8 “110” adapt #intervals Interval 7 “101” depending on range Interval 6 “100” Interval 5 “011” Interval 4 limit: N ≤ log [Range] “010” Interval 3 “001” Interval 2 “000” Interval 1 Extracted Bits - 101 110 101 110 110 100 010 … Adaptive Secret Bit Generation (ASBG)

  13. Information Reconciliation [Brassard ’06] differences in between bit streams of Alice, Bob arise due to  noise/interference, wireless hardware limitations  half-duplex nature of channel solution:  exchange parity information of small blocks of bits  locate, correct mismatches using binary search  permute, iterate until probability [success] > threshold 13

  14. Privacy Amplification [Impagliazzo ’89]  short-term correlation between subsequent bits when probing rate > (coherence time) -1  need to remove bits leaked during information reconciliation  solution:  apply 2- universal hash function h: {1…M}  {1…m}  for inputs x, y, probability [h(x) = h(y)] upper bounded by 1/m  decreases output length, but increases entropy 14

  15. Implementation laptops - Alice, Bob  equipped with Intel PRO/Wireless 3945 ABG cards  monitor mode for collecting RSS measurements  use ipwraw driver for raw packet injection probes – IEEE 802.11g beacon frames  management frames prioritized over data frames  allows better control over probing rate  probing rate ~20 packets per second 15

  16. Implementation privacy amplification  2-universal hash functions  use BigNumber OpenSSL routines 16

  17. Implementation 17

  18. RSS Measurement Protocol Responder Initiator  packet losses (Bob) (Alice) handled by initiator Record  20 ms timeout for RSS detecting packet loss Record RSS Record  responder discards RSS last RSS if duplicate Record RSS beacon sequence # time 18

  19. Measurement Goals • in what kind of settings, key extraction “works” ? • how does device heterogeneity affect key extraction? 19

  20. Experiments A. Underground concrete 1. Stationary Endpoints, tunnel Intermediate objects B. Ed Catmull Gallery C. Lawn D. Walk Indoors 2. Mobile Endpoints E. Walk Outdoors F. Bike Ride G. Crowded Cafeteria 3. Stationary Endpoints, Mobile Intermediate H. Across busy road objects 20

  21. Stationary Endpoints & Intermediate Objects  variations very small Underground Concrete Tunnel (range: ~2 dB), exhibit Experiment poor reciprocity -54  expect Alice‟s & Bob‟s -55 bit streams to have -56 RSS very high mismatch -57 -58  small scale variations -59 represent noise Probes Alice Bob snapshot of data collected for few seconds distance between Alice, Bob = 10 feet 21

  22. Stationary Endpoints & Intermediate Objects Gallery Experiment Lawn Experiment -45 -54 -56 -55 -58 RSS -65 RSS -60 -75 -62 -64 -85 Probes Alice Bob -66 Alice Bob Probes distance = 30 ft distance = 10 ft • even typical stationary settings are no different from underground concrete tunnel! 22

  23. Mobile Endpoints Walk Indoors Experiment  large variations -45  range ~25 dB -50  highly reciprocal -55 RSS  hints that Alice‟s & -60 Bob‟s bit streams will -65 have very low -70 mismatch -75 Probes Alice Bob normal walk speed distance = 10-15 ft 23

  24. Mobile Endpoints Walk Outdoors Experiment Bike Ride Experiment -30 -45 -40 -55 RSS -50 RSS -65 -60 -70 -75 -80 Probes Alice Bob -85 Alice Bob Probes slow bike ride normal walk speed 10 ft or more distance 20-25 ft distance more evidence - mobile devices likely to have very low • mismatch effects of noise diminished by l arge scale variations • 24

  25. Mobile Intermediate Objects & Stationary Endpoints Crowded Cafeteria Experiment Experiment Across Busy Road -46 -69 -71 -50 -73 RSS -54 RSS -75 -58 -77 -62 -79 -66 Probes Alice Bob Probes Alice Bob high speed mobility; distance = 25 ft low speed mobility; distance = 10 ft intermediate variation range (~8-16 dB), reciprocity  hints - Alice‟s, Bob‟s bit streams will have moderate  mismatch 25

  26. Predictable Channel Attack  novel attack  in „all stationary‟ settings Eve can cause predictable channel variations  by controlling movements of intermediate objects  break key extraction schemes without spending compute power 26

  27. Predictable Channel Attack  no precision machinery -43 required -48  Eve can produce zig- RSS -53 zag patterns, or any other pattern by -58 controlling movements -63 Probes  no post processing will ensure security of bits extracted: extracted key! 0000 1111 0000 1111 … 27

  28. Effect of Device Heterogeneity Walk Indoors Experiment  greater mismatch than -40 with homogeneous -45 -50 devices -55 RSS -60 -65  mismatch low enough -70 -75 to help establish -80 secret key -85 Probes Alice (Intel 3945 ABG) Bob (Atheros) 28

  29. Comparison of Key Extraction Approaches in Various Settings  performance metrics  entropy rate  mismatch rate  secret bit rate  single bit, multiple bit extraction 29

  30. Comparison of Key Extraction Approaches in various Settings 1.00 Entropy 0.75 0.50 0.25 0.00 stationary mobile intermediate Experiments Aono Mathur Tope Azimi-Sadjadi ASBG secret bit stream from • ASBG entropy close to 1  passes randomness tests  of NIST test suite we conduct 30

  31. Comparison of Key Extraction Approaches in various Settings 1.00 Entropy 0.75 0.50 0.25 0.00 stationary mobile intermediate Experiments Aono Mathur Tope Azimi-Sadjadi ASBG 1.00 Mismatch Rate mobile settings yield bits • 0.75 with low mismatch rates 0.50 0.25 0.00 stationary mobile intermediate Experiments Aono Mathur Tope Azimi-Sadjadi ASBG 31

  32. Comparison of Key Extraction Approaches in various Settings 1.00 1.00 Secret bit rate Entropy 0.75 0.75 0.50 0.50 0.25 0.25 0.00 0.00 stationary mobile mobile intermediate stationary intermediate Experiments Experiments Aono Mathur Tope Azimi-Sadjadi ASBG Aono Mathur Tope Azimi-Sadjadi ASBG 1.00 Mismatch Rate ASBG exhibits highest • 0.75 secret bit rate among those with entropy > 0.7 0.50 0.25 0.00 stationary mobile intermediate Experiments Aono Mathur Tope Azimi-Sadjadi ASBG 32

Recommend

A RISC-V ISA EXTENSION FOR ULTRA-LOW POWER IOT WIRELESS SIGNAL PROCESSING Carolynn Bernier, Hela

A RISC-V ISA EXTENSION FOR ULTRA-LOW POWER IOT WIRELESS SIGNAL PROCESSING Carolynn Bernier, Hela

A RISC-V ISA EXTENSION FOR ULTRA-LOW POWER IOT WIRELESS SIGNAL PROCESSING Carolynn Bernier, Hela Belhadj Amor, Zdenk Pikryl Oct 1, 2019 ULP WIRELESS DESIGN @ LETI 2003 2005 2010 today RFID Atmel-Starchip VHBR 65nm

380 views • 19 slides
E9 205 Machine Learning for Signal Processing Feature Extraction 08-08-2016 Recap Real-world

E9 205 Machine Learning for Signal Processing Feature Extraction 08-08-2016 Recap Real-world

E9 205 Machine Learning for Signal Processing Feature Extraction 08-08-2016 Recap Real-world signals Patterns in signal Learning - uncovering the underlying patterns Roadmap of the course Types of Learning Supervised Learning

482 views • 24 slides
An Introduction to Wireless Technologies Part 1 F. Ricci Content Wireless communication

An Introduction to Wireless Technologies Part 1 F. Ricci Content Wireless communication

An Introduction to Wireless Technologies Part 1 F. Ricci Content Wireless communication standards Computer Networks Simple reference model Frequencies and regulations Wireless communication technologies Signal propagation

645 views • 45 slides
Digital Signal Processing for the APFEL Oliver Noll PANDA-Collaboration Meeting 18/3

Digital Signal Processing for the APFEL Oliver Noll PANDA-Collaboration Meeting 18/3

Digital Signal Processing for the APFEL Oliver Noll PANDA-Collaboration Meeting 18/3 November 2018 1 APFEL ASIC Feature Extraction 2 Integration of Feature Extraction into SADC 3 MAMI Beamtest with SADC Digital Signal Processing Example

473 views • 33 slides
Finite Sample Revision Variances for ARIMA Model-Based Signal Extraction Tucker McElroy and

Finite Sample Revision Variances for ARIMA Model-Based Signal Extraction Tucker McElroy and

Conference on Seasonality, Seasonal Adjustment and their implications for Short-Term Analysis and Forecasting 10-12 May 2006 Finite Sample Revision Variances for ARIMA Model-Based Signal Extraction Tucker McElroy and Richard Gagnon Finite

373 views • 18 slides
Efficient VLSI architectures for baseband signal processing in wireless base-station receivers

Efficient VLSI architectures for baseband signal processing in wireless base-station receivers

Efficient VLSI architectures for baseband signal processing in wireless base-station receivers Sridhar Rajagopal Srikrishna Bhashyam, Joseph R. Cavallaro, and Behnaam Aazhang This work is supported by Nokia, TI, TATP and NSF Motivation

282 views • 25 slides
Robot Navigation Using Radio Signal in Wireless Sensor Networks Ju Wang, Mohammad M Tabanjeh,

Robot Navigation Using Radio Signal in Wireless Sensor Networks Ju Wang, Mohammad M Tabanjeh,

Robot Navigation Using Radio Signal in Wireless Sensor Networks Ju Wang, Mohammad M Tabanjeh, Tariq Qazi, Brian Bennett, Cesar Flores-Montoya, Eric Glover, Meesha Rashidi Virginia State University, 2014 Outline Background Robot RF

179 views • 16 slides
Signal Encoding Techniques Guevara Noubir noubir@ccs.neu.edu Wireless Networks 1 Reasons for

Signal Encoding Techniques Guevara Noubir noubir@ccs.neu.edu Wireless Networks 1 Reasons for

Signal Encoding Techniques Guevara Noubir noubir@ccs.neu.edu Wireless Networks 1 Reasons for Choosing Encoding Techniques Digital data, digital signal Equipment less complex and expensive than digital-to-analog modulation equipment

885 views • 61 slides
Mobile Communications Networks Wireless Transmission Manuel P. Ricardo Faculdade de Engenharia

Mobile Communications Networks Wireless Transmission Manuel P. Ricardo Faculdade de Engenharia

Wireless Transmission 1 Mobile Communications Networks Wireless Transmission Manuel P. Ricardo Faculdade de Engenharia da Universidade do Porto Wireless Transmission 2 How is a signal affected when it propagates in a wireless link? How

570 views • 41 slides
Wireless Signal & Power Transmission (WSAPT) Master seminar Particle tracking and

Wireless Signal & Power Transmission (WSAPT) Master seminar Particle tracking and

Wireless Signal & Power Transmission (WSAPT) Master seminar Particle tracking and identification at high rates David M. Immig Physikalisches Institut Uni Heidelberg immig@physi.uni-heidelberg.de 13.01.2017 Overview Introduction 1

969 views • 75 slides
Principles of Wireless Communications I-Hsiang Wang ihwang@ntu.edu.tw 2/20, 2014

Principles of Wireless Communications I-Hsiang Wang ihwang@ntu.edu.tw 2/20, 2014

Principles of Wireless Communications I-Hsiang Wang ihwang@ntu.edu.tw 2/20, 2014 Wireless Communications: Long History Early development based on visible light Smoke Torches Signal Lamps Still used today! 2

401 views • 14 slides
Network Signal Guru Optimal Wireless Testing Tool 8/14/2017 1 About Qtrun Technologies

Network Signal Guru Optimal Wireless Testing Tool 8/14/2017 1 About Qtrun Technologies

Network Signal Guru Optimal Wireless Testing Tool 8/14/2017 1 About Qtrun Technologies QTRUN Technologies, Founded in 2014 and headquartered in Beijing, China, offers a solution for end-to-end quality of service (QoS) and quality of

293 views • 25 slides
Pattern Recognition Part 4: Feature Extraction Gerhard Schmidt Christian-Albrechts-Universitt

Pattern Recognition Part 4: Feature Extraction Gerhard Schmidt Christian-Albrechts-Universitt

Pattern Recognition Part 4: Feature Extraction Gerhard Schmidt Christian-Albrechts-Universitt zu Kiel Faculty of Engineering Institute of Electrical and Information Engineering Digital Signal Processing and System Theory Feature Extraction

589 views • 46 slides
Collaborative Signal Processing for Energy-Efficient Self-Organizing Wireless Sensor Network

Collaborative Signal Processing for Energy-Efficient Self-Organizing Wireless Sensor Network

Collaborative Signal Processing for Energy-Efficient Self-Organizing Wireless Sensor Network Andrea Conti, Davide Dardari, Roberto Verdone IEIIT-BO/CNR, DEIS University of Bologna, Bologna, Italy a.conti@ieee.org IEIIT-BO/CNR, University of

864 views • 18 slides
Wireless Communication Systems @CS.NCTU Lecture 1: Basics Instructor: Kate Ching-Ju Lin (

Wireless Communication Systems @CS.NCTU Lecture 1: Basics Instructor: Kate Ching-Ju Lin (

Wireless Communication Systems @CS.NCTU Lecture 1: Basics Instructor: Kate Ching-Ju Lin ( ) 1 Wireless Signal e ix = cos x + j sin x Sine wave noise phase change due to channel propagation delay y = hx + n h = e 2 j f

427 views • 11 slides
Technological Considerations for Future Wireless Video Capsule Endoscopy Dr. Ilangko Balasingham

Technological Considerations for Future Wireless Video Capsule Endoscopy Dr. Ilangko Balasingham

Technological Considerations for Future Wireless Video Capsule Endoscopy Dr. Ilangko Balasingham Head of Wireless Biomedical Sensor Network Research Group Professor of Medical Signal Processing Intervention Center, Oslo University Hospital, Oslo

437 views • 41 slides
uf: Minimizing the Coq Extraction TCB Eric Mullen , Stuart Pernsteiner, James Wilcox, Zachary

uf: Minimizing the Coq Extraction TCB Eric Mullen , Stuart Pernsteiner, James Wilcox, Zachary

uf: Minimizing the Coq Extraction TCB Eric Mullen , Stuart Pernsteiner, James Wilcox, Zachary Tatlock, Dan Grossman 1 Extraction 2 Extraction K coq 2 Extraction K coq 2 Extraction K coq Extraction 2 Extraction K coq Extraction K

1.3k views • 106 slides
Reducing Observation Time f for Reliable Cyclostationarity R li bl C l i i Feature

Reducing Observation Time f for Reliable Cyclostationarity R li bl C l i i Feature

1 Reducing Observation Time f for Reliable Cyclostationarity R li bl C l i i Feature Extraction Feature Extraction Amy C. Malady and A.A. (Louis) Beex DSPRL Wireless@VT ECE Department Blacksburg, VA 24061-0111 SDR11-WInnComm

661 views • 20 slides
Waveform Generation Fundamental part of signal processing is the signal. Within the

Waveform Generation Fundamental part of signal processing is the signal. Within the

Waveform Generation Fundamental part of signal processing is the signal. Within the context of hardware implementations of signal processing this signal may arise from: A local waverform/signal generator. Continuous stream from a

492 views • 26 slides
Securing Wireless Localization: Living with Bad Guys Zang Li, Yanyong Zhang, Wade Trappe Badri

Securing Wireless Localization: Living with Bad Guys Zang Li, Yanyong Zhang, Wade Trappe Badri

Securing Wireless Localization: Living with Bad Guys Zang Li, Yanyong Zhang, Wade Trappe Badri Nath Talk Overview Talk Overview Wireless Localization Background Attacks on Wireless Localization Time of Flight Signal Strength Angle

700 views • 31 slides
Wireless and Mobile Networks Wireless and 802.11 LANs wireless links: shared, fading,

Wireless and Mobile Networks Wireless and 802.11 LANs wireless links: shared, fading,

Wireless and Mobile Networks Wireless and 802.11 LANs wireless links: shared, fading, interference, hidden terminal problem IEEE 802.11 ( wi-fi ) CSMA/CA reflects wireless channel characteristics DIFS, SIFS,

1.43k views • 83 slides
1 Wireless standards Path Loss Phenomena Wireless standards Path Loss Phenomena Open

1 Wireless standards Path Loss Phenomena Wireless standards Path Loss Phenomena Open

Outline Outline What is wireless? Overview Wireless parameters Cellular architecture Wireless Networks Wireless Networks Media multiple access Wireless LAN 802.11 MANET Mobile Ad-hoc NETworks Amnon Jonas

525 views • 13 slides
Review of DSP 1 Signal and Systems: Signal are represented mathematically as functions of

Review of DSP 1 Signal and Systems: Signal are represented mathematically as functions of

Review of DSP 1 Signal and Systems: Signal are represented mathematically as functions of one or more independent variables. Digital signal processing deals with the transformation of signal that are discrete in both amplitude and

456 views • 34 slides
Mobile Communications Chapter 2: Wireless Transmission Frequencies Multiplexing

Mobile Communications Chapter 2: Wireless Transmission Frequencies Multiplexing

Mobile Communications Chapter 2: Wireless Transmission Frequencies Multiplexing Signals Spread spectrum Antennas Modulation Signal propagation Cellular systems Prof. Dr.-Ing. Jochen Schiller,

595 views • 42 slides

More recommend