密钥生成
计算机科学
重放攻击
钥匙(锁)
无线
计算机网络
试验台
计算机安全
无线网络
频道(广播)
随机性
密码学
密码
电信
数学
统计
作者
Xintao Huan,Kaitao Miao,Wen Chen,Pengyi Jia,Han Hu
标识
DOI:10.1109/jiot.2024.3406702
摘要
Wireless key generation is a promising security solution for Internet-of-Things (IoT) networks to share identical secret keys between communication pairs, whose foundation is wireless channel randomness and reciprocity. Its security, however, affects not only the generated keys but more importantly, the security of the IoT networks. So far, a number of major attacks threatening the wireless key generation have been studied in the literature, but not the replay attack. In this paper, we reveal the replay attack can penetrate conventional defense measures and invade the wireless key generation through both analysis and experiments, which can deteriorate the channel measurement correlation and result in a high key disagreement rate. We propose a wireless key generation approach named Kerra where we integrate a synchronized time measurement to defend against the replay attack on it. On a real IoT testbed composed of Long Range (LoRa) nodes, we implement the proposed Kerra and evaluate it in terms of both key generation performance and replay attack defense. Experimental results demonstrate first the impact of the replay attack on both channel measurement correlation and key disagreement rate, then the effects of quantization and pre-processing on key disagreement rate under replay attacks, and finally, the effectiveness of the proposed Kerra whose key disagreement rates under replay attacks are maintained to a similar level as without attacks.
科研通智能强力驱动
Strongly Powered by AbleSci AI