Lightweight Security Solutions for IoT using Physical-Layer Key Generation

Abstract

Modern networking technologies involve the interconnection of smart and intelligent physical objects to provide advanced services. These physical objects may be part of various network technologies like WLAN, wireless sensor network (WSN), Internet of Things (IoT), etc., and share data in wireless mode, which should be secured from threats. These physical devices possess many constraints like power, computational complexity and storage, and are required to have lightweight security algorithms. Traditionally, security is achieved by the higher layers of the communication model, which has high computational complexity and consumes more power. In this chapter, a secure-key-generation scheme from physical layer characteristics is introduced as a possible lightweight security alternative to traditional upper-layer security approaches. The proposed scheme is based on the wiretap-channel model and security is achieved by generating keys at both communicating ends independently, based on inherent common-channel characteristics like randomness. It is mainly based on the principle of spatial decorrelation and channel reciprocity for identical carrier frequency. There is no provision for sharing keys as in public-key cryptography, so physical-layer key generation is not vulnerable to threats like key leakage. The generated key at the transmitter encrypts plain text; the generated cipher is transmitted on the common channel and is decrypted at the receiver end using the key generated by the receiver. Key generation consists of fundamental blocks like channel probing and quantization followed by information reconciliation and privacy amplification. The physical-layer key generation is already a power-efficient security solution; this chapter aims to enhance this capacity further. This is done by introducing low-end signal conditioning in the channel-probing step using moving-window averaging. This solution not only improves system performance but also makes it suitable for limited- power applications. The performance of the key-generation system is characterised in terms of the bit-disagreement rate between the generated key sequences of communicating parties and the key randomness by means of the NIST statistical test suite.