Attacks on Physical-layer Identification


Boris Danev, Heinrich Luecken, Srdjan Capkun, and Karim El Defrawy


Third ACM conference on Wireless network security, WiSec 2010, Hoboken, New Jersey, USA, pp. 89-98, Mar. 2010

DOI: 10.1145/1741866.1741882

[BibTeX, LaTeX, and HTML Reference]


Physical-layer identification of wireless devices, commonly referred to as Radio Frequency (RF) fingerprinting, is the process of identifying a device based on transmission imperfections exhibited by its radio transceiver. It can be used to improve access control in wireless networks, prevent device cloning and complement message authentication protocols. This paper studies the feasibility of performing impersonation attacks on the modulation-based and transient-based fingerprinting techniques. Both techniques are vulnerable to impersonation attacks; however, transient-based techniques are more difficult to reproduce due to the effects of the wireless channel and antenna in their recording process. We assess the feasibility of performing impersonation attacks by extensive measurements as well as simulations using collected data from wireless devices. We discuss the implications of our findings and how they affect current device identification techniques and related applications.

Download this document:


Copyright Notice: © 2010 B. Danev, H. Luecken, S. Capkun, and K. El Defrawy.

This material is presented to ensure timely dissemination of scholarly and technical work. Copyright and all rights therein are retained by authors or by other copyright holders. All persons copying this information are expected to adhere to the terms and constraints invoked by each author's copyright. In most cases, these works may not be reposted without the explicit permission of the copyright holder.