Journal of Communications, Vol 6, No 9 (2011), 671-681, Dec 2011
doi:10.4304/jcm.6.9.671-681

4G Security Using Physical Layer RF-DNA with DE-Optimized LFS Classification

Paul Harmer, Michael Temple, Mark Buckner, Ethan Farquhar

Abstract


Wireless communication networks remain underattack with ill-intentioned “hackers” routinely gaining unauthorized access through Wireless Access Points(WAPs)–one of the most vulnerable points in an informationtechnology system. The goal here is to demonstrate thefeasibility of using Radio Frequency (RF) air monitoring to augment conventional bit-level security at WAPs. The specific networks of interest are those based on Orthogonal Frequency Division Multiplexing (OFDM), to include 802.11a/g WiFi and 4G 802.16 WiMAX. Proof-of-concept results are presented to demonstrate the effectiveness of a “Learningfrom Signals” (LFS) classifier with Gaussian kernel bandwidth parameters optimally determined through DifferentialEvolution (DE). The resultant DE-optimized LFS classifier is implemented within an RF “Distinct Native Attribute” (RFDNA) fingerprinting process using both Time Domain (TD) and Spectral Domain (SD) input features. The RF-DNA isused for intra-manufacturer (like-model devices from a given manufacturer) discrimination of IEEE compliant 802.11a WiFi devices and 802.16e WiMAX devices. A comparative performance assessment is provided using results from the proposed DE-optimized LFS classifier and a Bayesian-based Multiple Discriminant Analysis/Maximum Likelihood (MDA/ML) classifier as used in previous demonstrations. The assessment is performed using identical TD and SD fingerprint features for both classifiers. Finally, the impact of Gaussian, triangular, and uniform kernel functions on classifier performance is demonstrated. Preliminary resultsof the DE-optimized classifier are very promising, with correct classification improvement of 15% to 40% realized over the range of signal to noise ratios considered.


Keywords


Wireless; Security; Fingerprinting; Differential Evolution; Genetic; Algorithm; 4G; 802.16; WiMAX; 802.11; WiFi; Learning from Signals

References


H. Collins, “Top 10 Network Security Threats,” Sep 2010.

T. D. Tarman and E. L. Witzke, “Intrusion Detection Considerations for Switched Networks,” vol. 4232, no. 1, pp. 85–92, 2001. [Online]. Available: http://link.aip.org/link/?PSI/4232/85/1

R. W. Klein, M. A. Temple, and M. J. Mendenhall, “Application of Wavelet-Based RF Fingerprinting to Enhance Wireless Network Security,” vol. 11, no. 6, pp. 544–555, Dec 2009.

D. Reising, M. Temple, and M. Mendenhall, “Improving Intra-Cellular Security Using Air Monitoring with RF Fingerprints.” IEEE Wireless Communications and Networking Conf (WCNC10), Apr 2010.

M. D. Williams, M. A. Temple, and D. R. Reising, “Augmenting Bit-Level Network Security Using Physical Layer RF-DNA Fingerprinting,” in IEEE Global Communications Conf, Dec 2010.

M. D. Williams, S. A. Munns, M. A. Temple, and M. J. Mendenhall, “RF-DNA Fingerprinting for Airport WiMAX Communications Security,” in Proc of 4th Int’l Conf on Network and Systems Security (NSS10), Sep 2010.

P. K. Harmer, M. A. Temple, M. A. Buckner, and E. Farquahar, “Using Differential Evolution to Optimize ‘Learning from Signals’ and Enhance Network Security,” in Genetic and Evolutionary Computation Conf (GECCO11), Jul 2011.

P. K. Harmer, M. D. Williams, and M. A. Temple, “Using DE-Optimized LFS Processing to Enhance 4G Communication Security,” in Proc of Int’l Conf on Computer Communication Networks (ICCCN11), 2011.

J. Hall, M. Barbeau, and E. Kranakis, “Detecting rogue devices in bluetooth networks using radio frequency fingerprinting,” in Communications and Computer Networks, 2006, pp. 108–113.

——, “Detection of Transient in Radio Frequency Fingerprinting Using Signal Phase.” 2003 IASTED Int’l Conf on Wireless and Optical Communications (WOCC03), May 2003.

——, “Using Transceiverprints for Anomaly Based Intrusion Detection.” 2004 IASTED Int’l Conf on Communications, Internet and Information Technology (CIIT), Nov 2004.

B. Danev and S. Capkun, “Transient-based identification of wireless sensor nodes,” in Proc of the 2009 Int’l Conf on Information Processing in Sensor Networks, ser. IPSN ’09. Washington, DC, USA: IEEE Computer Society, 2009, pp. 25–36. [Online]. Available: http://portal.acm.org/citation.cfm?id=1602165.1602170

B. Danev, T. S. Heydt-Benjamin, and S. ˇ Capkun, “Physical-layer identification of RFID devices,” in Proc of the 18th Conf on USENIX security symposium, ser. SSYM’09. Berkeley, CA, USA: USENIX Association, 2009, pp. 199–214. [Online]. Available: http://portal.acm.org/citation.cfm?id=1855768.1855781

B. Danev, H. Luecken, S. ˇ Capkun, and K. El Defrawy, “Attacks on Physical-Layer Identification,” in Proc of the 3rd ACM Conf on Wireless Network Security, ser. WiSec’10. ACM, 2010.

D. Reising, M. Temple, and M. Mendenhall, “Improved wireless security for GMSK-based devices using RF fingerprinting,” vol. 3, no. 1, pp. 41–59, Mar 2010.

V. Brik, S. Banerjee, M. Gruteser, and S. Oh, “Wireless device identification with radiometric signatures,” in Proc of the 14th ACM Int’l Conf on Mobile computing and networking, ser. MobiCom ’08. New York, NY, USA: ACM, 2008, pp. 116–127. [Online]. Available: http://doi.acm.org/10.1145/1409944.1409959

J. Pang, B. Greenstein, R. Gummadi, S. Seshan, and D. Wetherall, “802.11 user fingerprinting,” in Proc of the 13th annual ACM Int’l Conf on Mobile computing and networking, ser. MobiCom ’07. New York, NY, USA: ACM, 2007, pp. 99–110. [Online]. Available: http://doi.acm.org/10.1145/1287853.1287866

D. Takahashi, Y. Xiao, Y. Zhang, P. Chatzimisios, and H.-H. Chen, “IEEE 802.11 user fingerprinting and its applications for intrusion detection,” vol. 60, no. 2, pp. 307 – 318, 2010, advances in Cryptography, Security and Applications for Future Computer Science. [Online]. Available: http://www.sciencedirect.com/science/article/B6TYJ-4YBVN48-1/2/02fc08e080dbf58edcc440f8db4ed9f3

W.C. Suski II, M.A. Temple, M. J. Mendenhall, and R.F. Mills, “Radio frequency fingerprinting commercial communication devices to enhance electronic security,” vol. 1, pp. 301–322, Oct 2008. [Online]. Available: http://portal.acm.org/citation.cfm?id=1454744.1454749

D. Zanetti, B. Danev, and S. Capkun, “Physical-layer identification of UHF RFID tags,” in Proc of the sixteenth annual Int’l Conf on Mobile computing and networking, ser. MobiCom ’10. New York, NY, USA: ACM, 2010, pp. 353–364. [Online]. Available: http://doi.acm.org/10.1145/1859995.1860035

Agilent, Agilent E3238 Signal Intercept and Collection Solutions: Family Overview, Publication 5989-1274EN, Agilent Technologies Inc., USA, 2004.

J. Toonstra and W. Kinsner, “A Radio Transmitter Fingerprinting System ODO-1,” in Electrical and Computer Engineering, 1996. Canadian Conf on, vol. 1, May 1996, pp. 60 –63 vol.1.

R. O. Duda, P. E. Hart, and D. G. Stork, Pattern classification, 2nd ed. Wiley, Nov 2001.

M. A. Buckner, A. M. Urmanov, A. V. Gribok, and J. W. Hines, “Application of Localized Regularization Methods for Nuclear Power Plant Sensor Calibration Monitoring,” Technical Correspondence, 2002.

V. S. Cherkassky and F. Mulier, Learning From Data: Concepts, Theory, and Methods, 2nd ed. Hoboken, HJ: Wiley & Sons, 2007.

M. A. Buckner, “Learning From Data with Localized Regression and Differential Evolution,” Ph.D. dissertation, University of Tennessee, Knoxville, May 2003.

C. Goutte and J. Larsen, “Adaptive Metric Kernel Regression,” vol. 26, no. 1/2, pp. 155–167, 2000.

K. Price, R. M. Storn, and J. A. Lampinen, Differential Evolution: A Practical Approach to Global Optimization (Natural Computing Series). Secaucus, NJ, USA: Springer-Verlag New York, Inc., 2005.

E. Mezura-Montes, J. Velazquez-Reyes, and C. A. C. Coello, “A comparative study of differential evolution variants for global optimization,” in Proc of Genetic and Evolutionary Computation Conference (GECCO), July 2006.
http://dx.doi.org/10.1145/1143997.1144086

T. Hastie, R. Tibshirani, and J. Friedman, The Elements of Statistical Learning; Data Mining, Inference, and Prediction. Springer- Verlag, New York, New York, USA, 2001. Alvarion Ltd, Alvarion BreezeMAX Extreme 5000: WiMAX 16e Pioneer for the License-Exempt Market, Pub #215373, Rev. A, 2009.

IEEE Std 802.16-2009, Local and Metropolitan Area Networks, Part 16: Air Interface for Broadband Wireless Access Systems, Inst of Electrical and Electronics Engineers, New York, New York, USA, May 2009.


Full Text: PDF


Journal of Communications (JCM, ISSN 1796-2021)

Copyright @ 2006-2012 by ACADEMY PUBLISHER – All rights reserved.