Sequential fusion‐based defense strategy against sophisticated Byzantine attacks in cognitive IoT networks

IF 1.5 Q3 COMPUTER SCIENCE, INFORMATION SYSTEMS

Security and Privacy Pub Date : 2024-05-05 DOI:10.1002/spy2.415

Flavien Donkeng Zemo, Sara Bakkali

{"title":"Sequential fusion‐based defense strategy against sophisticated Byzantine attacks in cognitive IoT networks","authors":"Flavien Donkeng Zemo, Sara Bakkali","doi":"10.1002/spy2.415","DOIUrl":null,"url":null,"abstract":"5G and 6G promise to be catalysts for the Internet of Things (IoT), enabling ultra‐massive and mission‐critical IoT. The demands of new IoT applications and the large number of connected objects being announced will exacerbate the thorny issue of spectrum scarcity in wireless communications. Cognitive radio (CR) is a revolutionary technology that promises to mitigate the problem of spectrum scarcity through more efficient use of spectrum. Integrating CR into the IoT allows objects to opportunistically access spectrum resources already allocated to a Primary User (PU) without causing interference. Spectrum sensing (SS) allows objects to be aware of the PU's spectrum occupancy status. In radio environments where the PU signal is subject to multipath and shadowing effects that degrade the channel between the PU and objects, SS performed by a single object could be inaccurate and lead to incorrect decisions about the PU's status. Cooperative spectrum sensing (CSS) has been proposed to improve detection performance. However, this cooperation between objects has opened the way to a new form of attack known as the Spectrum Sensing Data Falsification (SSDF) or Byzantine attack. In a SSDF attack, attackers falsify their local sensing results before sharing them in the CSS. This attack is very harmful to the CSS and can lead to a loss of spectrum opportunities or interference with the PU. In this paper, from the attack point of view, a sophisticated Byzantine attack model that generalizes well the simple attack strategies has been proposed and allows an attacker to implement other attack strategies. From a defense point of view, a new and innovative Weighted Sequential Hypothesis Testing (WSPRT) scheme has been suggested. This ensures the security of the CSS while significantly reducing the average number of samples required for overall decision‐making in a very hostile IoT network. The results obtained from simulations carried out in various attacks scenarios show that the proposed secure CSS scheme requires at most six samples to detect the state of the PU without error when the proportion of attackers reaches 80%. This performance far exceeds that of other defense mechanisms such as classic WSPRT, SPRT, and majority rule, with which we have compared it under the same conditions. In general, for the classic WSPRT, SPRT, and majority rule mechanisms, the error rate starts to deteriorate at ratio 40% of attackers and the number of samples is greater than six and reaches 50.","PeriodicalId":29939,"journal":{"name":"Security and Privacy","volume":null,"pages":null},"PeriodicalIF":1.5000,"publicationDate":"2024-05-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Security and Privacy","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1002/spy2.415","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q3","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

5G and 6G promise to be catalysts for the Internet of Things (IoT), enabling ultra‐massive and mission‐critical IoT. The demands of new IoT applications and the large number of connected objects being announced will exacerbate the thorny issue of spectrum scarcity in wireless communications. Cognitive radio (CR) is a revolutionary technology that promises to mitigate the problem of spectrum scarcity through more efficient use of spectrum. Integrating CR into the IoT allows objects to opportunistically access spectrum resources already allocated to a Primary User (PU) without causing interference. Spectrum sensing (SS) allows objects to be aware of the PU's spectrum occupancy status. In radio environments where the PU signal is subject to multipath and shadowing effects that degrade the channel between the PU and objects, SS performed by a single object could be inaccurate and lead to incorrect decisions about the PU's status. Cooperative spectrum sensing (CSS) has been proposed to improve detection performance. However, this cooperation between objects has opened the way to a new form of attack known as the Spectrum Sensing Data Falsification (SSDF) or Byzantine attack. In a SSDF attack, attackers falsify their local sensing results before sharing them in the CSS. This attack is very harmful to the CSS and can lead to a loss of spectrum opportunities or interference with the PU. In this paper, from the attack point of view, a sophisticated Byzantine attack model that generalizes well the simple attack strategies has been proposed and allows an attacker to implement other attack strategies. From a defense point of view, a new and innovative Weighted Sequential Hypothesis Testing (WSPRT) scheme has been suggested. This ensures the security of the CSS while significantly reducing the average number of samples required for overall decision‐making in a very hostile IoT network. The results obtained from simulations carried out in various attacks scenarios show that the proposed secure CSS scheme requires at most six samples to detect the state of the PU without error when the proportion of attackers reaches 80%. This performance far exceeds that of other defense mechanisms such as classic WSPRT, SPRT, and majority rule, with which we have compared it under the same conditions. In general, for the classic WSPRT, SPRT, and majority rule mechanisms, the error rate starts to deteriorate at ratio 40% of attackers and the number of samples is greater than six and reaches 50.

查看原文本刊更多论文

基于序列融合的防御策略，抵御认知物联网网络中复杂的拜占庭攻击

5G 和 6G 有望成为物联网 (IoT) 的催化剂，实现超大规模和关键任务物联网。新的物联网应用需求和即将发布的大量联网对象将加剧无线通信中频谱稀缺的棘手问题。认知无线电（CR）是一项革命性技术，有望通过更有效地利用频谱来缓解频谱稀缺问题。将认知无线电技术整合到物联网中，可使物体在不造成干扰的情况下伺机访问已分配给主用户（PU）的频谱资源。通过频谱感知（SS），物体可以了解主用户的频谱占用状态。在无线电环境中，主用户（PU）信号会受到多径和阴影效应的影响，从而降低主用户（PU）和物体之间的信道质量，因此由单个物体执行的频谱感知可能不准确，并导致对主用户（PU）状态的错误判断。为了提高检测性能，有人提出了合作频谱传感（CSS）。然而，物体之间的这种合作为一种新的攻击形式开辟了道路，这种攻击被称为频谱传感数据伪造（SSDF）或拜占庭攻击。在 SSDF 攻击中，攻击者会在 CSS 中共享本地感测结果之前伪造这些结果。这种攻击对 CSS 非常有害，可能导致频谱机会损失或干扰 PU。本文从攻击的角度出发，提出了一种复杂的拜占庭攻击模型，它能很好地概括简单的攻击策略，并允许攻击者实施其他攻击策略。从防御角度来看，本文提出了一种创新的加权序列假设检验（WSPRT）方案。这既确保了 CSS 的安全性，又大大减少了在非常恶劣的物联网网络中进行整体决策所需的平均样本数量。在各种攻击场景下进行的模拟结果表明，当攻击者比例达到 80% 时，所提出的安全 CSS 方案最多需要 6 个样本就能无差错地检测出 PU 的状态。这一性能远远超过了我们在相同条件下与之进行比较的其他防御机制，如经典 WSPRT、SPRT 和多数规则。一般来说，对于经典的 WSPRT、SPRT 和多数规则机制，当攻击者比例达到 40%、样本数量大于 6 个并达到 50 个时，错误率就会开始下降。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Security and Privacy Multiple-

自引率

5.30%

发文量