CN104168562B - A kind of physical layer authentication method based on multi-carrier transmission - Google Patents
A kind of physical layer authentication method based on multi-carrier transmission Download PDFInfo
- Publication number
- CN104168562B CN104168562B CN201410405080.9A CN201410405080A CN104168562B CN 104168562 B CN104168562 B CN 104168562B CN 201410405080 A CN201410405080 A CN 201410405080A CN 104168562 B CN104168562 B CN 104168562B
- Authority
- CN
- China
- Prior art keywords
- bob
- alice
- signal
- physical layer
- carrier transmission
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses a kind of physical layer authentication methods based on multi-carrier transmission, this method is based on multi-carrier transmission, channel is regarded as one group of M parallel faded sub-channels, authentication is carried out to communicating pair using the reciprocity and randomness of the phase response of subchannel.The implementation steps of this method include:Alice sends pumping signal to Bob, after Bob receives pumping signal, the phase difference of multiple carrier channel is measured, then Bob sends a signal for being packaged with shared key will verify whether the signal comes from Bob to Alice, Alice according to received signal and shared key.The characteristic of channel phase response is utilized in the verification process of this method, and has been reasonably resistant to the various spoofing attacks such as interference attack, replay attack, spoof attack.
Description
Technical field
The present invention relates to a kind of safety of physical layer authentication methods based on multi-carrier transmission, belong to wireless communication technique neck
Domain.
Background technology
Rapid development with wireless communication and the growth based on mobile terminal service, the safety problem of wireless network receive
Concern.Since the opening of wireless communication link provides some new approach for disabled user's attack, there is communication system
Very big security risk, it is easy to which useful information is stolen by disabled user.Traditional information secure communications are mainly with password
Associated encryption technology based on, since the length of key is limited, and with the fast development of computer technology, meter
The operational capability of calculation machine is rapidly promoted, and is that can be solved by guessing, testing a large amount of operations of progress for this encryption method
Close.And from the point of view of open system interconnection (OSI) model, the information security technology in legacy wireless communication system is main
Concentrate on network layer and its more than each layer, do not make full use of the characteristic of wireless channel physical layer, therefore only lean on traditional password
Security mechanism and security protocol ensure that the safety of communication system is unsatisfactory.
Certification is the information security basis of wireless communication system, it ensures that communicating pair is the identity that it is claimed, prevents
The access and access of disabled user.It is generally realized based on the certification on physical layer using cryptosecurity mechanism and security protocol,
And cryptosecurity mechanism, there are the risk of Key Exposure, security protocol is usually there are safety defect, so not having physical layer certification
This layer of catch net, there is certain hidden danger for the safety of wireless communication system.And the present invention can well solve above
Problem.
Invention content
Present invention aims at a kind of physical layer authentication method based on multi-carrier transmission is provided, this method is to utilize overloading
The reciprocity and randomness of wave channel phase response, realize the certification of communicating pair identity, and are double to communicating in physical layer
The identity of side is mutually authenticated, which can strengthen the safety of communication.
The technical scheme adopted by the invention to solve the technical problem is that:A kind of physical layer certification based on multi-carrier transmission
Method, this method, using the uniqueness of multiple carrier channel phase response, pass through subcarrier based on the multi-carrier transmission in physical layer
Phase difference is modulated, and is carried out unidirectional or two-way authentication to communicating pair, is achieved the purpose that ensure communication safety.
Method flow
The Alice of the present invention sends a pumping signal, after Bob receives pumping signal, sub-carrier channel to Bob
Phase is detected, and measures the phase difference between subcarrier, and then Bob feeds back to mono- sound for being packaged with shared key of Alice
Induction signal, last Alice carry out safety certification according to the signal and shared key received.Specifically comprise the following steps:
Step 3:Certification;During certification, whether the identity that Alice will authenticate other side is legal, and the present invention is at two kinds
The threshold tau for judgement is found under the conditions of hypothesis verification, it is assumed that condition is as follows:
H1:kt=k
H0:kt≠k
Enable η=kTY, ζ=| η |, shared keys of the k for Alice and Bob, ktFor the key obtained from Bob, by comparing ζ
Whether the size judgement other side with threshold tau is validated user.
Step 4:The selection of threshold tau and criteria of certification;Under the conditions of the hypothesis verification of step 3, first according to envelope ζ=| η |
Distribution function and false alarm probability α threshold value τ, the size of envelope ζ and threshold tau is compared further according to its probability density function
Relationship is validated user if ζ >=τ.
The present invention has good authentication performance in signal-to-noise ratio 5dB.
The present invention is based on multi-carrier transmission, regards channel as one group of M parallel faded sub-channels, utilizes subchannel
The reciprocity and randomness of phase response carry out two-way authentication to communicating pair.
The channel phase characteristics of the present invention are very sensitive to the distance between receiving terminal and transmitting terminal, have randomness, illegally
User cannot effectively estimate channel phase.
The present invention is from two kinds of hypothesis verification conditions, carries out the authentication of communication counterpart, the physical layer certification etc.
It imitates in the Trapped problems of PN codes;Two kinds of situations are:
H1:kt=k
H0:kt≠k
Wherein, when Alice carries out authentication to Bob, ktRefer to the key obtained from Bob side;
The method is applied to single, double to certification between Alice and Bob;
Alice is to the unilateral authentication process of Bob:Alice sends a pumping signal to Bob, and excitation letter is received in Bob
After number, sub-carrier channel phase is detected, and measures the phase difference between subcarrier, and then Bob feeds back to mono- envelope of Alice
Response signal equipped with shared key, last Alice carry out safety certification according to shared key.
All explanation of symbols of the present invention include:
fi:I-th of sub-carrier frequencies;
θi:The phase response of i-th of subchannel;
The phase of i-th of bit map of key;
Δθi1:Subcarrier fiAnd f1Between phase difference;
sA(t):The pumping signal that Alice is sent;
sB(t):The response signal that Bob is sent;
rA(t):The signal that Alice is received;
rB(t):The signal that Bob is received;
H0:Disabled user under the verification condition of hypothesis;
H1:Validated user under the verification condition of hypothesis;
ζ:The envelope of signal;
ζ|H0:In H0Under the conditions of signal envelope;
ζ|H1:In H1Under the conditions of signal envelope;
Advantageous effect:
1st, the present invention can make full use of channel physical characteristic and resource (i.e.:Phase), and strengthen communication system
Safety.
2nd, the present invention can be effective against the interference attack easily occurred in wireless communication system, replay attack and camouflage etc. and attack
It hits.
Description of the drawings
Fig. 1 is the schematic diagram of the physical layer authentication method of the present invention.
Fig. 2 is flow chart of the method for the present invention.
Fig. 3 is ζ | H1And ζ | H0Probability density function curve in SNR=5dB.
Fig. 4 is ζ | H1And ζ | H0Probability density function curve in SNR=20dB.
Specific embodiment
The invention is described in further detail below in conjunction with Figure of description.
As shown in Fig. 2, the present invention is based on multi-carrier transmission, channel is regarded as one group of M parallel faded sub-channels, profit
The reciprocity and randomness that are responded with sub-channel phase carry out the certification in physical layer.The implementation steps of the present invention include:Alice
Pumping signal is sent to Bob, after Bob receives pumping signal, sends a signal for being packaged with shared key to Alice,
Alice will verify whether the signal comes from Bob according to received signal and shared key.It is as follows:
Step 1:Alice sends pumping signal to Bob
Step 2:Bob is to Alice feedback response signals
Step 3:Certification
Alice is authenticated according to the signal y in step 2 and shared key k, and verification process is related to threshold tau, the present invention
The threshold tau for judgement is found under the conditions of two kinds of hypothesis verifications, it is assumed that condition is as follows:
H1:kt=k
H0:kt≠k
Enable η=kTY, ζ=| η |, shared keys of the k for Alice and Bob, ktFor the key obtained from Bob, by comparing ζ
It is authenticated with the size of threshold tau.
Step 4:The selection of threshold tau and criteria of certification
Fig. 3 and Fig. 4 is respectively ζ | H1And ζ | H0Probability density function curve in SNR=5dB, SNR=20dB.It is independent
Number of sub carrier wave M=128, the channel model fading channels parallel for M, the signal-to-noise ratio per sub-channels is identical.According to public affairs
Formula:
Claims (5)
1. a kind of physical layer authentication method based on multi-carrier transmission, it is characterised in that:Described method includes following steps:
Step 1:Alice sends pumping signal to Bob;Alice is in frequency f1,f2,...,fMPlace sends equiphase modulation to Bob
Sine wave as pumping signal, since channel has phase delay, the signal that Bob is received includes the phase of every sub-channels
Position information θi, Bob measures subcarrier fiAnd f1Between phase difference θi1;
Step 2:Bob is to Alice feedback response signals;Bob is according to the phase difference between the pumping signal and subcarrier received
θi1, feed back to Alice mono- and be packaged with key kB=[k1,...,kM] response signal;
Step 3:Certification;The threshold tau for authentication decision is found under the conditions of two kinds of hypothesis verifications, it is assumed that condition is as follows:
H1:kt=k
H0:kt≠k
Bob is according to the signal r receivedB(t) the phase difference θ between subcarrieri1, feed back to Alice mono- and be packaged with key kB
=[k1,...,kM] response signal, enable η=kTY, ζ=| η |, k is the shared key of Alice and Bob, and y is that Alice is received
The dispersion vector for having noise cancellation signal, ktFor the key obtained from Bob, by comparing the size of ζ and threshold tau judgement other side whether be
Validated user;
Step 4:The selection of threshold tau and criteria of certification;Under the conditions of the hypothesis verification of step 3, first according to envelope ζ=| η | point
Cloth functionWith false alarm probability α threshold value τ, the selection of threshold tau
Meet conditionThen according to its probability density functionCompare the size of envelope ζ and threshold tau
Relationship is validated user if ζ >=τ, whereinRespectively η | HiThe mean value and variance of (i=0,1), I0() is to change
Into zeroth order Bessel function of the first kind, Q1It is Marcum ' s Q functions.
2. a kind of physical layer authentication method based on multi-carrier transmission according to claim 1, it is characterised in that:The side
Method is based on the multi-carrier transmission in physical layer, regards channel as one group of M parallel faded sub-channels, utilizes subchannel phase
The reciprocity and randomness of position response carry out two-way authentication to communicating pair.
3. a kind of physical layer authentication method based on multi-carrier transmission according to claim 1, it is characterised in that:The side
The channel phase characteristics of method are very sensitive to the distance between receiving terminal and transmitting terminal, have randomness, and disabled user cannot be to letter
Road phase is effectively estimated.
4. a kind of physical layer authentication method based on multi-carrier transmission according to claim 1, it is characterised in that:The side
Method is from two kinds of hypothesis verification conditions, carries out the authentication of communication counterpart, which is equivalent to catching for PN codes
Obtain problem;Two kinds of situations are:
H1:kt=k
H0:kt≠k
Wherein, when Alice carries out authentication to Bob, ktRefer to the key obtained from Bob side.
A kind of 5. physical layer authentication method based on multi-carrier transmission according to claim 4, which is characterized in that the side
Method is applied to single, double to certification between Alice and Bob;
Alice is to the unilateral authentication process of Bob:Alice sends a pumping signal to Bob, and pumping signal is received in Bob
Afterwards, sub-carrier channel phase is detected, and measures the phase difference between subcarrier, and then Bob feeds back to mono- encapsulation of Alice
There is the response signal of shared key, last Alice carries out safety certification according to shared key.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410405080.9A CN104168562B (en) | 2014-08-15 | 2014-08-15 | A kind of physical layer authentication method based on multi-carrier transmission |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410405080.9A CN104168562B (en) | 2014-08-15 | 2014-08-15 | A kind of physical layer authentication method based on multi-carrier transmission |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104168562A CN104168562A (en) | 2014-11-26 |
| CN104168562B true CN104168562B (en) | 2018-06-22 |
Family
ID=51912154
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410405080.9A Active CN104168562B (en) | 2014-08-15 | 2014-08-15 | A kind of physical layer authentication method based on multi-carrier transmission |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104168562B (en) |
Families Citing this family (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104717652A (en) * | 2015-03-27 | 2015-06-17 | 江苏物联网研究发展中心 | Identity authentication method based on wireless link signature |
| CN105978692A (en) * | 2016-04-18 | 2016-09-28 | 南京邮电大学 | Implementation method of 3GPP authentication and key agreement protocol |
| CN107367723B (en) * | 2016-05-13 | 2020-04-28 | 华为技术有限公司 | Method and equipment for measuring distance |
| CN107367724B (en) * | 2016-05-13 | 2020-06-26 | 华为技术有限公司 | Distance measurement method and receiving equipment |
| CN107690143B (en) * | 2016-08-05 | 2021-04-13 | 李明 | Data communication method and system |
| WO2019061516A1 (en) * | 2017-09-30 | 2019-04-04 | 深圳大学 | Concealed wireless communication physical-layer slope authentication method and apparatus |
| CN109600767B (en) * | 2017-09-30 | 2020-08-07 | 深圳大学 | Robust wireless communication physical layer slope authentication method and device |
| CN109168166B (en) * | 2018-11-22 | 2020-08-18 | 深圳大学 | Safety detection method of physical layer authentication system |
| WO2020182849A1 (en) | 2019-03-14 | 2020-09-17 | Abb Schweiz Ag | Method of authentication of wireless communication based on physical layer security |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102256249A (en) * | 2011-04-02 | 2011-11-23 | 电子科技大学 | Identity authentication method and equipment applied to wireless network |
| CN102833736A (en) * | 2012-08-30 | 2012-12-19 | 重庆大学 | Communication key generation method and secure channel selection method for cognitive radio system |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20100246825A1 (en) * | 2007-09-07 | 2010-09-30 | University Of Maryland | Wireless communication method and system for transmission authentication at the physical layer |
-
2014
- 2014-08-15 CN CN201410405080.9A patent/CN104168562B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102256249A (en) * | 2011-04-02 | 2011-11-23 | 电子科技大学 | Identity authentication method and equipment applied to wireless network |
| CN102833736A (en) * | 2012-08-30 | 2012-12-19 | 重庆大学 | Communication key generation method and secure channel selection method for cognitive radio system |
Non-Patent Citations (2)
| Title |
|---|
| 《Secure Information Transmission for Mobile Radio》;Havish Koorapaty等;《IEEE COMMUNICATIONS LETTERS》;IEEE;20000229;第4卷(第2期);第52-55页 * |
| 《Wireless User Authentication via Comparison of Power Spectral Densities》;Jitendra K. Tugnait;《IEEE JOURNAL ON SELECTED AREAS IN COMMUNICATIONS》;IEEE;20130930;第31卷(第9期);第1791-1801页 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104168562A (en) | 2014-11-26 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104168562B (en) | A kind of physical layer authentication method based on multi-carrier transmission | |
| Zhang et al. | Physical-layer authentication for Internet of Things via WFRFT-based Gaussian tag embedding | |
| US9538040B2 (en) | Active sensing for dynamic spectrum access | |
| Ma et al. | Error probability analysis of OFDM-IM with carrier frequency offset | |
| US20140040985A1 (en) | Method and apparatus for wireless security enhancement using multiple attributes monitoring, continuous and interleaved authentication, and system adaptation | |
| CN104717074B (en) | A kind of shared key safety communicating method merging private information | |
| Al-Moliki et al. | Secret key generation protocol for optical OFDM systems in indoor VLC networks | |
| CN102223637A (en) | Identity authentication method and system based on wireless channel characteristic | |
| Xu | Proactive eavesdropping of suspicious non-orthogonal multiple access networks | |
| Taha et al. | Secret key exchange and authentication via randomized spatial modulation and phase shifting | |
| Shawky et al. | An efficient cross-layer authentication scheme for secure communication in vehicular ad-hoc networks | |
| CN106102049B (en) | A kind of safe transmission message approach using the characteristic of channel | |
| CN105099640B (en) | The shared channel characteristics preparation method of joint time-frequency duplex | |
| CN111212430A (en) | Wireless local area network protection system based on zero knowledge proof | |
| CN105978692A (en) | Implementation method of 3GPP authentication and key agreement protocol | |
| Sun et al. | Artificial frequency selective channel for covert cyclic delay diversity orthogonal frequency division multiplexing transmission | |
| CN109600746A (en) | Performance analysis method of opportunity relay selection scheme in cooperative wireless communication system | |
| Hamdi | Unified error-rate analysis of OFDM over time-varying channels | |
| Jin et al. | A reassessment on friendly jamming efficiency | |
| Mao et al. | Physical-layer security enhancement for SIMO-MBM systems | |
| Wang et al. | CovertMIMO: A covert uplink transmission scheme for MIMO systems | |
| Tan et al. | Generalized tag-based physical-layer authentication under frequency selective fading channels | |
| Chen et al. | Securepilot: Improving wireless security of single-antenna iot devices | |
| Kırık et al. | A novel interference signal superposition algorithm for providing secrecy to subcarrier number modulation‐based orthogonal frequency division multiplexing systems | |
| Kumar et al. | Transmitter authentication using hierarchical modulation in dynamic spectrum sharing |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20181017 Address after: 215000 No. 58 Nantian Cheng Road, Suzhou high speed railway, Jiangsu Patentee after: Suzhou step Electronics Technology Co., Ltd. Address before: 210023 9 Wen Yuan Road, Ya Dong new town, Nanjing, Nanjing, Jiangsu. Patentee before: Nanjing Post & Telecommunication Univ. |
|
| CP03 | Change of name, title or address | ||
| CP03 | Change of name, title or address |
Address after: 266300 Room 907, Convenient Service Center, Jiaodong Street Office, Qingdao City, Shandong Province Patentee after: Qingdao Lianzhong Zhixin Technology Co., Ltd. Address before: 215000 No. 58 Nantian Cheng Road, Suzhou high speed railway, Jiangsu Patentee before: Suzhou step Electronics Technology Co., Ltd. |
|
| CP03 | Change of name, title or address | ||
| CP03 | Change of name, title or address |
Address after: 266000 airport service building, No.1 Zhanqian Avenue, Qingdao Airport Economic Demonstration Zone, Jiaodong sub district office, Jiaozhou, Qingdao, Shandong Province Patentee after: Qingdao lianzhongxin cloud Technology Co., Ltd Address before: 266300 Room 907, Convenient Service Center, Jiaodong Street Office, Qingdao City, Shandong Province Patentee before: Qingdao Lianzhong Zhixin Technology Co.,Ltd. |