Issue No. 04 - October-December (2008 vol. 5)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/TDSC.2008.11
Inspired by unidirectional error detecting codes that are used in situations where only one kind of bit errors are possible (e.g., it is possible to change a bit "0" into a bit "1", but not the contrary), we propose integrity codes (I-codes) for a radio communication channel, which enable integrity protection of messages exchanged between entities that do not hold any mutual authentication material (i.e. public keys or shared secret keys). The construction of I-codes enables a sender to encode any message such that if its integrity is violated in transmission over a radio channel, the receiver is able to detect it. In order to achieve this, we rely on the physical properties of the radio channel and on unidirectional error detecting codes. We analyze in detail the use of I-codes on a radio communication channel and we present their implementation on a wireless platform as a "proof of concept". We further introduce a novel concept called "authentication through presence", whose broad applications include broadcast authentication, key establishment and navigation signal protection. We perform a detailed analysis of the security of our coding scheme and we show that it is secure within a realistic attacker model.
Security, integrity, and protection, Wireless systems
Mario Čagalj, Ramkumar Rengaswamy, Jean-Pierre Hubaux, Mani Srivastava, Srdjan Čapkun, Ilias Tsigkogiannis, "Integrity Codes: Message Integrity Protection and Authentication over Insecure Channels", IEEE Transactions on Dependable and Secure Computing, vol. 5, no. , pp. 208-223, October-December 2008, doi:10.1109/TDSC.2008.11