Abstract
The low-power wide-area (LPWA) technologies, which enable cost and energy-efficient wireless connectivity for massive deployments of autonomous machines, have enabled and boosted the development of many new Internet of things (IoT) applications; however, the security of LPWA technologies in general, and specifically those operating in the license-free frequency bands, have received somewhat limited attention so far. This paper focuses specifically on the security and privacy aspects of one of the most popular license-free-band LPWA technologies, which is named LoRaWAN. The paper’s key contributions are the details of the design and experimental validation of a security-focused testbed, based on the combination of software-defined radio (SDR) and GNU Radio software with a standalone LoRaWAN transceiver. By implementing the two practical man-in-the-middle attacks (i.e., the replay and bit-flipping attacks through intercepting the over-the-air activation procedure by an external to the network attacker device), we demonstrate that the developed testbed enables practical experiments for on-air security in real-life conditions. This makes the designed testbed perspective for validating the novel security solutions and approaches and draws attention to some of the relevant security challenges extant in LoRaWAN.
Highlights
Published: 20 August 2021The Internet of things (IoT) has gained momentum in the past few years, resulting in many devices taking their place all around us, opening the road for many versatile applications across different verticals
In contrast to the previously discussed articles, in the current work, we report the design of a platform allowing empirical validation of the LoRaWAN security, implying the use of software-defined radio (SDR) as a tool for eavesdropping of communication and subsequent reconstruction of keys
We have shown how LoRa packets can be eavesdropped by an SDR
Summary
Published: 20 August 2021The Internet of things (IoT) has gained momentum in the past few years, resulting in many devices taking their place all around us, opening the road for many versatile applications across different verticals. The low-power wide-area network (LPWAN) technologies, which is an umbrella term for the radio access technologies (RATs) characterized by low energy consumption, broad coverage and good scalability, are considered among the critical enablers for the massive machine type connectivity (mMTC). For these reasons, LPWANs today are actively being rolled out commercially all around the globe [1]. The signals with different SFs are quasi-orthogonal, allowing transmissions with different SFs to be correctly received simultaneously
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have