Ibrahim Ethem Bagci
Utz Roedig
ABSTRACT
The Internet of Things (IoT) is increasingly used for critical applications and securing the IoT has become a major concern. Among other issues it is important to ensure that tampering with IoT devices is detected. Many IoT devices use WiFi for communication and Channel State Information (CSI) based tamper detection is a valid option. Each 802.11n WiFi frame contains a preamble which allows a receiver to estimate the impact of the wireless channel, the transmitter and the receiver on the signal. The estimation result - the CSI - is used by a receiver to extract the transmitted information. However, as the CSI depends on the communication environment and the transmitter hardware, it can be used as well for security purposes. If an attacker tampers with a transmitter it will have an effect on the CSI measured at a receiver. Unfortunately not only tamper events lead to CSI fluctuations; movement of people in the communication environment has an impact too. We propose to analyse CSI values of a transmission simultaneously at multiple receivers to improve distinction of tamper and movement events. A moving person is expected to have an impact on some but not all communication links between transmitter and the receivers. A tamper event impacts on all links between transmitter and the receivers. The paper describes the necessary algorithms for the proposed tamper detection method. In particular we analyse the tamper detection capability in practical deployments with varying intensity of people movement. In our experiments the proposed system deployed in a busy office environment was capable to detect 53% of tamper events (TPR = 53%) while creating zero false alarms (FPR = 0%).
- I. E. Bagci, U. Roedig, M. Schulz, and M. Hollick. Short Paper: Gathering Tamper Evidence in Wi-fi Networks Based on Channel State Information. In Proc. Wisec'14, 2014. Google Scholar
Digital Library
- M. Bor, A. King, and U. Roedig. Lifetime bounds of Wi-Fi Enabled Sensor Nodes. In Proc. IUPT'15, 2015.Google ScholarCross Ref
- V. Brik, S. Banerjee, M. Gruteser, and S. Oh. Wireless Device Identification with Radiometric Signatures. In Proc. MobiCom'08, 2008. Google ScholarDigital Library
- B. Danev and S. Capkun. Transient-based Identification of Wireless Sensor Nodes. In Proc. IPSN'09, 2009. Google ScholarDigital Library
- B. Danev, T. S. Heydt-Benjamin, and S. Capkun. Physical-layer Identification of RFID Devices. In Proc. USENIX'09, 2009. Google ScholarDigital Library
- B. Danev, D. Zanetti, and S. Capkun. On Physical-layer Identification of Wireless Devices. ACM Comput. Surv., 45(1):6, 2012. Google ScholarDigital Library
- D. B. Faria and D. R. Cheriton. Detecting identity-based attacks in wireless networks using signalprints. In Proc. WiSe'06, 2006. Google ScholarDigital Library
- D. Halperin, W. Hu, A. Sheth, and D. Wetherall. Tool Release: Gathering 802.11n Traces with Channel State Information. ACM SIGCOMM CCR, 41(1):53, 2011. Google ScholarDigital Library
- IEEE 802.11 Working Group. IEEE 802.11n-2009. IEEE Std, 802:1--51, 2010.Google Scholar
- Z. Jiang, J. Zhao, X.-Y. Li, J. Han, and W. Xi. Rejecting the Attack: Source Authentication for Wi-Fi Management Frames using CSI Information. In Proc. INFOCOM'13, 2013.Google ScholarCross Ref
- Z. Li, W. Xu, R. Miller, and W. Trappe. Securing wireless systems via lower layer enforcements. In Proc. WiSe'06, 2006. Google ScholarDigital Library
- P. C. Mahalanobis. On the generalized distance in statistics. Proceedings of the National Institute of Sciences (Calcutta), 2:49--55, 1936.Google Scholar
- N. Patwari and S. K. Kasera. Robust location distinction using temporal link signatures. In Proc. MobiCom'07, 2007. Google ScholarDigital Library
- Y. Rubner, C. Tomasi, and L. J. Guibas. The earth mover's distance as a metric for image retrieval. International journal of computer vision, 40(2):99--121, 2000. Google ScholarDigital Library
- O. Ureten and N. Serinken. Wireless security through RF fingerprinting. Electrical and Computer Engineering, Canadian Journal of, 32(1):27--33, 2007.Google Scholar
- J. Xiong and K. Jamieson. SecureArray: Improving Wifi Security with Fine-grained Physical-layer Information. In Proc. MobiCom'13, 2013. Google ScholarDigital Library
- J. Zhang, M. H. Firooz, N. Patwari, and S. K. Kasera. Advancing Wireless Link Signatures for Location Distinction. In Proc. MobiCom'08, 2008. Google ScholarDigital Library
Index Terms
- Using Channel State Information for Tamper Detection in the Internet of Things
Recommendations
Exact Error Rate Analysis of MIMO-MRC System under Cochannel Interference and Imperfect Channel State Information
In this paper, we derive closed-form solution for the bit error rate of multi-input multi-output (MIMO) system with maximum ratio combining. We consider binary PSK modulation suffers from cochannel interference (CCI) and imperfect channel state ...
Predictable 802.11 packet delivery from wireless channel measurements
SIGCOMM '10: Proceedings of the ACM SIGCOMM 2010 conferenceRSSI is known to be a fickle indicator of whether a wireless link will work, for many reasons. This greatly complicates operation because it requires testing and adaptation to find the best rate, transmit power or other parameter that is tuned to boost ...
An adaptive detection and suppression of co-channel interference in DVB-T/H system
Channel state information (CSI) is defined as the signal-to-noise ratio (SNR) for a sub-carrier position. In white noise channels it is proportional to magnitude of the channel frequency response (CFR). However, if the channel introduces frequency ...
Comments