Performance analysis of probabilistic soft SSDF attack in cooperative spectrum sensing

Zhang, Linyuan; Wu, Qihui; Ding, Guoru; Feng, Shuo; Wang, Jinlong

doi:10.1186/1687-6180-2014-81

Research
Open access
Published: 31 May 2014

Performance analysis of probabilistic soft SSDF attack in cooperative spectrum sensing

Linyuan Zhang¹,
Qihui Wu¹,
Guoru Ding¹,
Shuo Feng¹ &
…
Jinlong Wang¹

EURASIP Journal on Advances in Signal Processing volume 2014, Article number: 81 (2014) Cite this article

2614 Accesses
29 Citations
Metrics details

Abstract

In cognitive radio networks, spectrum sensing data falsification (SSDF) attack is a crucial factor deteriorating the detection performance of cooperative spectrum sensing. In this paper, we propose and analyze a novel probabilistic soft SSDF attack model, which goes beyond the existing models for its generalization. Under this generalized SSDF attack model, we firstly obtain closed form expressions of global sensing performance at the fusion center. Then, we theoretically evaluate the performance of the proposed attack model, in terms of destructiveness and stealthiness, sequentially. Numerical simulations match the analytical results well. Last but not least, an interesting trade-off between destructiveness and stealthiness is discovered, which is a fundamental issue involved in SSDF attack, however, ignored by most of the previous studies.

1 Introduction

Cognitive radio (CR) has been regarded as a promising technology to improve the spectrum utilization[1]. To enable CR, cooperative spectrum sensing, among multiple spectrum sensors, is one of the key technologies[2]. However, due to the openness of low-layer protocol stack of CR, the reliability of cooperative spectrum sensing is challenged by many security threats[3].

The most well-known security threat is the spectrum sensing data falsification (SSDF) attack[4], where abnormal or malicious spectrum sensors falsify their true sensing results. The main goal of SSDF attack can be roughly expressed as two points. One point is to decrease the global detection probability for disturbing the normal operation of the primary user (PU). The other is to increase the global probability of false alarm with the purpose of wasting the access opportunities of the honest secondary users (SUs).

Previous studies on SSDF attack modeling can be generally grouped into two classes: hard SSDF attack and soft SSDF attack. Briefly, in hard SSDF attack, malicious SUs falsify their local binary decisions[5–8], while in soft SSDF attack, malicious SUs falsify their received energy values. Compared to hard SSDF attack, soft SSDF attack is generally more powerful and elusory for its relatively larger value space[9–12], since malicious SUs falsify real energy observations, rather than binary decisions, to mislead the fusion center (FC).

Three soft SSDF attack models have been widely adopted to test various secure sensing algorithms: Always Yes[13], Always No[14, 15], and Always Adverse[16]. In Always Yes soft SSDF attack, an attacker raises its local observations by injecting a positive offset in every sensing slot. In Always No attack, an attacker decreases its local observations by injecting a negative offset in every sensing slot. In Always Adverse attack, an attacker firstly performs a local binary hypothesis testing between H₀ and H₁ by comparing its energy observation with a predefined threshold, with H₀ denoting the case that the primary signal is absent and H₁ otherwise; then, the malicious SU raises its observations when its local binary decision is H₀ and decreases its observations when its decision is H₁. One main limitation of the existing soft SSDF attack models is that they are oversimplified and not general enough to serve as the baseline for the design of counter-attack or secure sensing algorithms.

Motivated by the observations above, in this paper, we start with an objective to develop a more general soft SSDF attack model, which should go beyond the existing models and include them as special cases. We also consider that each attacker should be smart to have dual goals in mind: (i) causing harmful disturb to cooperative spectrum sensing and (ii) protecting itself against being easily detected. Specifically, the main contributions of this paper are as follows:

Propose a generic probabilistic soft SSDF attack model and derive the corresponding closed-form expressions of global sensing performance at the fusion center.
Analyze the destructiveness of the proposed attack model under three general scenarios and obtain the corresponding optimal attack strategies.
Define a stealthiness metric and analyze the stealthiness of the proposed attack model under a classical secure sensing algorithm.
Discover an interesting trade-off between destructiveness and stealthiness, which is a fundamental issue involved in SSDF attack, however, ignored by most of the previous studies.

The remainder of this paper is organized as follows. Section 2 presents the spectrum sensing preliminaries. In Section 3, we formulate the proposed probabilistic soft SSDF attack model and present the analysis of its impacts on the sensing performance. Analytical results on destructiveness and stealthiness of the proposed attack model are provided in Sections 4 and 5, respectively. Numerical results are given in Section 6, and conclusions are provided in Section 7.

2 Spectrum sensing preliminaries

As shown in Figure1, we consider a cooperative spectrum sensing system consisting of N SUs and a FC. Each SU conducts energy detection and transmits its observation to the FC. At the FC, the global decision is made based on the combination of observations. In particular, there are some malicious SUs reporting falsified observations to the FC to deteriorate the spectrum sensing performance.

For a given frequency band, spectrum sensing is generally formulated as a binary hypotheses as follows:

\begin{align} H_{0} : r_{i} (t) = n_{i} (t), i = 1, 2 \dots, N \\ H_{1} : r_{i} (t) = h_{i} (t) s_{i} (t) + n_{i} (t), i = 1, 2 \dots, N, \end{align}

(1)

where H₀ denotes the case that the primary signal is absent and H₁ denotes the case that PU is present, N is the number of SUs, r_i(t) is the t-th sample of the i-th SU’s received signal, s_i(t) is the PU’s transmit signal, h_i(t) is the channel gain, and n_i(t) denotes the additive white Gaussian noise (AWGN).

With an energy detector, the collected energy observation at the i-th SU can be given as $x_{Ei} = \sum_{t = 1}^{2 U} {|r_{i} (t)|}^{2}$ , where U=T W is the time-bandwidth product. According to the central limit theorem, when U is large enough (e.g., U>>10), x_{E
i} can be well approximated as a Gaussian random variable under both hypotheses H₀ and H₁ as follows[14, 16, 17]:

\begin{align} \{\begin{matrix} H_{0} : x_{Ei} \sim N (u_{0 i}, σ_{0 i}^{2}) \\ H_{1} : x_{Ei} \sim N (u_{1 i}, σ_{1 i}^{2}), \end{matrix} \end{align}

(2)

where u_0i=2U, $σ_{0 i}^{2} = 4 U$ , u_1i=2U(γ_i+1), $σ_{1 i}^{2} = 4 U (2 γ_{i} + 1)$ and γ_i is the received SNR of the i th SU.

The local binary decision d_i at the i-th SU can be obtained by comparing its energy observation with a local threshold η_i,

\begin{align} x_{Ei} ⪋_{d_{i} = H_{0}}^{d_{i} = H_{1}} η_{i} . \end{align}

(3)

At the FC, a weighted combination is generally used to obtain the global decision D as follows:

x_{E} = \sum_{i = 1}^{N} w_{i} x_{Ei} ⪋_{D = H_{0}}^{D = H_{1}} η_{f}

(4)

where η_f is the global threshold at the FC and w_i∈ [ 0,1] is the weight assigned to the i-th SU by the FC, and $\sum_{i = 1}^{N} w_{i} = 1 .$

3 Probabilistic soft SSDF attack

In this section, we will propose a generic soft SSDF attack model and present the analysis of its impacts on the sensing performance. Before going into deep analysis, we declare that a generic and effective SSDF attack model should at least have the following features:

Attackers should be able to exploit their local sensing results to implement effective attacks, and the imperfection of the local sensing results should also be considered.
Attackers should be able to jointly consider harmfully disturbing the FC to obtain wrong decisions and reliably protecting itself from being easily detected, by properly adjusting attack parameters.

3.1 The proposed attack model

Based on considerations previously mentioned, a probabilistic soft SSDF attack model is proposed as follows. Firstly, an attacker (say, the i-th SU) makes its local binary decision via (3). Then, it utilizes a probability p_i to decide whether to perform attack. If it decides to attack, it will randomly produce a Gaussian value as sensing result to report; otherwise, it will hold its true observation. Mathematically, this attack model can be written as

\begin{matrix} \begin{matrix} Local \\ observation \end{matrix} & \begin{matrix} Local \\ decision \end{matrix} & \begin{matrix} Reported result \end{matrix} \\ x_{Ei} & H_{0} & \{\begin{matrix} \overset{p_{i}}{\to} x \sim N (u_{2 i}, σ_{2 i}^{2}) \\ \overset{1 - p_{i}}{\to} x = x_{Ei} \end{matrix} \\ x_{Ei} & H_{1} & \{\begin{matrix} \overset{p_{i}}{\to} x \sim N (u_{3 i}, σ_{3 i}^{2}) \\ \overset{1 - p_{i}}{\to} x = x_{Ei} \end{matrix} \end{matrix}

(5)

where u_2i and $σ_{2 i}^{2}$ , respectively, denote the mean and variance when the local decision of the i-th SU is H₀ (i.e., PU is absent), u_3i and $σ_{3 i}^{2}$ denote the mean and variance when the local decision is H₁. Obviously, for an honest SU, the attack probability equals to zero. For a malicious SU, the attack probability p_i∈(0,1). Naturely, the two mean values of random distributions have such a relation: u_2i≥u_3i, as the attacker generally falsifies sensing results by reversing them. To facilitate the following analysis, we define (u_2i,u_3i) as the attack strength and consider the case $σ_{2 i}^{2} = σ_{3 i}^{2} = σ_{1 i}^{2}$ .

The attack model in (5) is general enough to include the existing models as special cases, via properly adjusting the attack parameters (u_2i,u_3i,p_i). For example, Always No[13], Always Yes[14, 15], and Always Adverse attacks[16] can be realized when (u_2i,u_3i,p_i) is set as (u_0i,u_0i,1), (u_1i,u_1i,1) and (u_1i,u_0i,1), respectively. In particular, the attack probability p_i can make the proposed attack more elusory and flexible.

3.2 Local sensing performance under probabilistic soft SSDF attack

For the proposed attack model in the Section 3.1, the probability density function (PDF) of the reported result by the i-th malicious SU, under hypothesis H₀ and H₁, can be respectively calculated as

\begin{array}{l} g_{H_{0} i} (x) = lim_{Δ \to 0} \frac{1}{Δ} [\int_{x}^{x + Δ} f (\frac{x - u_{0 i}}{σ_{0 i}}) dx (1 - p_{i}) \\ + \int_{x}^{x + Δ} f (\frac{x - u_{2 i}}{σ_{2 i}}) dx (1 - Q (\frac{η_{i} - u_{0 i}}{σ_{0 i}})) p_{i} \\ + \int_{x}^{x + Δ} f (\frac{x - u_{3 i}}{σ_{3 i}}) dxQ (\frac{η_{i} - u_{0 i}}{σ_{0 i}}) p_{i}] \\ = f (\frac{x - u_{0 i}}{σ_{0 i}}) (1 - p_{i}) + (1 - Q (\frac{η_{i} - u_{0 i}}{σ_{0 i}})) \\ \times f (\frac{x - u_{2 i}}{σ_{2 i}}) p_{i} + Q (\frac{η_{i} - u_{0 i}}{σ_{0 i}}) f (\frac{x - u_{3 i}}{σ_{3 i}}) p_{i}, \end{array}

(6)

\begin{array}{l} g_{H_{1} i} (x) = lim_{Δ \to 0} \frac{1}{Δ} [\int_{x}^{x + Δ} f (\frac{x - u_{1 i}}{σ_{1 i}}) dx (1 - p_{i}) \\ + \int_{x}^{x + Δ} f (\frac{x - u_{2 i}}{σ_{2 i}}) dx (1 - Q (\frac{η_{i} - u_{1 i}}{σ_{1 i}})) p_{i} \\ + \int_{x}^{x + Δ} f (\frac{x - u_{3 i}}{σ_{3 i}}) dxQ (\frac{η_{i} - u_{1 i}}{σ_{1 i}}) p_{i}] \\ = f (\frac{x - u_{1 i}}{σ_{1 i}}) (1 - p_{i}) + (1 - Q (\frac{η_{i} - u_{1 i}}{σ_{1 i}})) \\ \times f (\frac{x - u_{2 i}}{σ_{2 i}}) p_{i} + Q (\frac{η_{i} - u_{1 i}}{σ_{1 i}}) f (\frac{x - u_{3 i}}{σ_{3 i}}) p_{i}, \end{array}

(7)

where $f (\frac{x - u_{i}}{σ_{i}})$ represents the PDF of the Gaussian variable x with the mean u_i and standard deviation σ_i, Q(x) is the Gaussian Q-function and η_i is local threshold.

3.3 Global sensing performance under probabilistic soft SSDF attack

In a cooperative spectrum sensing system with a FC and N SUs, among which the first k SUs are malicious attackers, the FC fuses results from both malicious SUs and honest SUs via Equation 4. The fusion result’s PDF, under hypothesis H₀ and H₁, can be respectively calculated as

\begin{array}{l} g_{m H_{0}} (x) = \sum_{m_{1} = [0, 2, 3]}^{} \dots \sum_{m_{k} = [0, 2, 3]}^{} a_{m_{1} 1} a_{m_{2} 2} \dots a_{m_{k} k} \\ \cdot f (\frac{x - w_{1} u_{m_{1} 1} - w_{2} u_{m_{2} 2} \dots - w_{k} u_{m_{k} k} - u_{h 0}}{\sqrt{{w_{1}}^{2} σ_{m_{1} 1}^{2} + {w_{2}}^{2} σ_{m_{2} 2}^{2} \dots + {w_{k}}^{2} σ_{m_{k} k}^{2} + σ_{h 0}^{2}}}), \end{array}

(8)

\begin{array}{l} g_{m H_{1}} (x) = \sum_{m_{1} = [1, 2, 3]}^{} \dots \sum_{m_{k} = [1, 2, 3]}^{} b_{m_{1} 1} b_{m_{2} 2} \dots b_{m_{k} k} \\ \cdot f (\frac{x - w_{1} u_{m_{1} 1} - w_{2} u_{m_{2} 2} \dots - w_{k} u_{m_{k} k} - u_{h 1}}{\sqrt{{w_{1}}^{2} σ_{m_{1} 1}^{2} + {w_{2}}^{2} σ_{m_{2} 2}^{2} \dots + {w_{k}}^{2} σ_{m_{k} k}^{2} + σ_{h 1}^{2}}}) . \end{array}

(9)

In (8) and (9), we have

\begin{array}{l} a_{0 i} = 1 - p_{i}, a_{2 i} = p_{i} [1 - Q (\frac{η_{i} - u_{0 i}}{σ_{0 i}})], a_{3 i} = p_{i} Q (\frac{η_{i} - u_{0 i}}{σ_{0 i}}), \\ b_{1 i} = 1 - p_{i}, b_{2 i} = p_{i} [1 - Q (\frac{η_{i} - u_{1 i}}{σ_{1 i}})], b_{3 i} = p_{i} Q (\frac{η_{i} - u_{1 i}}{σ_{1 i}}) \\ u_{h 0} = \sum_{i = k + 1}^{N} w_{i} u_{i 0}, {σ_{h 0}}^{2} = \sum_{i = k + 1}^{N} {w_{i}}^{2} σ_{i 0}^{2}, u_{h 1} = \sum_{i = k + 1}^{N} w_{i} u_{i 1}, {σ_{h 1}}^{2} = \sum_{i = k + 1}^{N} {w_{i}}^{2} σ_{i 1}^{2} . \end{array}

(10)

Let P_f and P_d denote the probabilities of detection and false alarm at the FC, respectively, which can be obtained as

\begin{array}{l} P_{f} = Pr {x_{E} \geq η_{f} | H_{0}} \\ = \sum_{m_{1} = [0, 2, 3]}^{} \dots \sum_{m_{k} = [0, 2, 3]}^{} a_{m_{1} 1} a_{m_{2} 2} \dots a_{m_{k} k} \cdot \\ \cdot Q (\frac{η_{f} - w_{1} u_{m_{1} 1} - w_{2} u_{m_{2} 2} \dots - w_{k} u_{m_{k} k} - u_{h 0}}{\sqrt{{w_{1}}^{2} σ_{m_{1} 1}^{2} + {w_{2}}^{2} σ_{m_{2} 2}^{2} \dots + {w_{k}}^{2} σ_{m_{k} k}^{2} + σ_{h 0}^{2}}}), \end{array}

(11)

\begin{array}{l} P_{d} = Pr {x_{E} \geq η_{f} | H_{1}} \\ = \sum_{m_{1} = [1, 2, 3]}^{} \dots \sum_{m_{k} = [1, 2, 3]}^{} b_{m_{1} 1} b_{m_{2} 2} \dots b_{m_{k} k} \cdot \\ \cdot Q (\frac{η_{f} - w_{1} u_{m_{1} 1} - w_{2} u_{m_{2} 2} \dots - w_{k} u_{m_{k} k} - u_{h 1}}{\sqrt{{w_{1}}^{2} σ_{m_{1} 1}^{2} + {w_{2}}^{2} σ_{m_{2} 2}^{2} \dots + {w_{k}}^{2} σ_{m_{k} k}^{2} + σ_{h 1}^{2}}}) . \end{array}

(12)

4 Destructiveness analysis

In this section, we evaluate the impacts of the three model parameters p_i,u_2i,u_3i on the proposed attack model’s destructiveness. Specifically, we analyze three general and actual scenarios in sequence:

(i)
Probabilistic attack: The optimal attack probability is derived to cause the largest harm to FC’s detection performance.
(ii)
Contention attack: Setting appropriate attack strength, a malicious SU implements the optimal attack to maximize the global probability of false alarm to waste access opportunities of honest SUs.
(iii)
Interference attack: With specific attack strength, a malicious SU conducts the optimal attack with the purpose of minimizing the global probability of detection to disturb the normal operation of the primary user.

Furthermore, without loss of generality, in the following analysis, the weight w_i is set as 1/N.

4.1 Probabilistic attack

Consider a scenario that a malicious SU aims to deteriorate spectrum sensing performance of the system, raising P_f and reducing P_d. Here, we analyze the impacts of the attack probability p_i on performing the above attack objective. The problem can be expressed as:

\begin{matrix} \max_{p_{i}} {(1 - P_{d}) P (H_{1}) + P_{f} P (H_{0})}, \\ subject to u_{2 i} = u_{1 i}, u_{3 i} = u_{0 i} . \end{matrix}

(13)

Theorem 1

For the given attack strength (u_2i,u_3i)=(u_1i,u_0i), the probability of detection P_d decreases with the attack probability p_i and the probability of false alarm P_f increases with p_i.

Proof

Given (u_2i,u_3i)=(u_1i,u_0i), ∀Δ>0, we have

\begin{array}{l} P_{f} (p_{i} + Δ) - P_{f} (p_{i}) \\ = \sum_{m_{1} = [0, 2, 3]} a_{m 1} \dots \sum_{m_{i} = [0, 2, 3]} [a_{mi} (p_{i} + Δ) - a_{mi} (p_{i})] \dots \sum_{m_{k} = [0, 2, 3]} a_{m_{k} k} Q (\frac{η_{f} - \sum_{l = 1}^{k} u_{m_{l} l} - u_{h 0}}{\sqrt{\sum_{l = 1}^{k} σ_{m_{l} l}^{2} + σ_{h 0}^{2}}}) \\ > \sum_{m_{1} = [0, 2, 3]} a_{m 1} \dots \sum_{m_{i - 1} = [0, 2, 3]} a_{m (i - 1)} \sum_{m_{i + 1} = [0, 2, 3]} a_{m (i + 1)} \sum_{m_{k} = [0, 2, 3]} a_{m_{k} k} \\ \cdot \{- Δ (1 - Q (\frac{η_{i} - u_{0 i}}{σ_{0 i}})) Q (\frac{η_{f} - \sum_{n \neq i} w_{n} u_{m_{n} 1} - w_{i} u_{0 i} - u_{h 0}}{\sqrt{\sum_{n \neq i} {w_{n}}^{2} σ_{m_{n} n}^{2} + {w_{i}}^{2} σ_{0 i}^{2} + σ_{h 0}^{2}}}) \\ + Δ [1 - Q (\frac{η_{i} - u_{0 i}}{σ_{0 i}})] Q (\frac{η_{f} - \sum_{n \neq i}^{} w_{n} u_{m_{n} 1} - w_{i} u_{2 i} - u_{h 0}}{\sqrt{\sum_{n \neq i}^{} {w_{n}}^{2} σ_{m_{n} n}^{2} + {w_{i}}^{2} σ_{1 i}^{2} + σ_{h 0}^{2}}})\} . \end{array}

(14)

Furthermore, we have

\begin{align} ∵ σ_{1 i}^{2} > σ_{0 i}^{2}, u_{1 i} > u_{0 i}, Δ > 0, i = 1, \dots, k. \\ ∴ Q (\frac{η_{f} - \sum_{n \neq i}^{} w_{n} u_{m_{n} 1} - w_{i} u_{0 i} - u_{h 0}}{\sqrt{\sum_{n \neq i}^{} {w_{n}}^{2} σ_{m_{n} n}^{2} + {w_{i}}^{2} σ_{0 i}^{2} + σ_{h 0}^{2}}}) \\ < Q (\frac{η_{f} - \sum_{n \neq i}^{} w_{n} u_{m_{n} 1} - w_{i} u_{2 i} - u_{h 0}}{\sqrt{\sum_{n \neq i}^{} {w_{n}}^{2} σ_{m_{n} n}^{2} + {w_{i}}^{2} σ_{1 i}^{2} + σ_{h 0}^{2}}}) \\ ∴ P_{f} (p_{i} + Δ) - P_{f} (p_{i}) > 0 \end{align}

Consequently, the probability of false alarm P_f increases with the attack probability p_i. Similarly, we can obtain P_d(p_i+Δ)-P_d(p_i)<0, and thus the probability of detection P_d decreases with p_i. Therefore, the detection error probability P_e={(1-P_d)P(H₁)+P_fP(H₀)} increases with p_i.

Note that Theorem 1 without taking into account any defense or secure sensing algorithms at the FC, obviously, a malicious SU with a high attack probability is prone to being easily found out for its low stealthiness, which will be further studied in the next section.

4.2 Contention attack

Consider a scenario that a malicious SU intends to contend with honest SUs for secondary access opportunities, i.e., to induce the FC to maximize the probability of false alarm, which can be expressed as follows:

\begin{matrix} \max_{(u_{2 i}, u_{3 i})} P_{f}, \\ subjectto P_{d} = β \in (0, 1) . \end{matrix}

(15)

To simplify proofs, we assume that there exists a single malicious SU (i.e., the i-th SU) in the system. Simultaneously, to partially ensure the stealthiness of attack behaviors, attack strength is limited (see Appendix).

Theorem 2

Given the probability of detection as P_d=β and the attack probability as p_i=p_a, the probability of false alarm P_f increases with u_2i.

Proof.

For a given probability of detection at the FC, we have

P_{d} (u_{2 i}, u_{3 i}) = β.

(16)

Take the derivation of both sides, we have

\frac{d u_{3 i}}{d u_{2 i}} = - \frac{b_{2 i} f (\frac{N η_{f} - u_{2 i} - N u_{h 1}}{\sqrt{σ_{1 i}^{2} + N^{2} σ_{h 1}^{2}}})}{b_{3 i} f (\frac{N η_{f} - u_{3 i} - N u_{h 1}}{\sqrt{σ_{1 i}^{2} + N^{2} σ_{h 1}^{2}}})} .

(17)

From (11), we have

\begin{align} \frac{d P_{f}}{d u_{2 i}} & = a_{2 i} f (\frac{N η_{f} - u_{2 i} - N u_{h 0}}{\sqrt{σ_{1 i}^{2} + N^{2} σ_{h 0}^{2}}}) \\ - a_{3 i} f (\frac{N η_{f} - u_{3 i} - N u_{h 0}}{\sqrt{σ_{1 i}^{2} + N^{2} σ_{h 0}^{2}}}) \frac{d u_{3 i}}{d u_{2 i}} . \end{align}

(18)

Based on limitation of attack strength in the Appendix, we have

\{\begin{array}{l} \frac{a_{2 i}}{a_{3 i}} > 1 > \frac{b_{2 i}}{b_{3 i}} \\ |\frac{N η_{f} - u_{2 i} - N u_{h 0}}{\sqrt{σ_{1 i}^{2} + N^{2} σ_{h 0}^{2}}}| < |\frac{N η_{f} - u_{3 i} - N u_{h 0}}{\sqrt{σ_{1 i}^{2} + N^{2} σ_{h 0}^{2}}}| \\ |\frac{N η_{f} - u_{3 i} - N u_{h 1}}{\sqrt{σ_{1 i}^{2} + N^{2} σ_{h 1}^{2}}}| < |\frac{N η_{f} - u_{2 i} - N u_{h 1}}{\sqrt{σ_{1 i}^{2} + N^{2} σ_{h 1}^{2}}}| . \end{array}

(19)

∴ \frac{b_{3 i} f (\frac{N η_{f} - u_{3 i} - N u_{h 1}}{\sqrt{σ_{1 i}^{2} + N^{2} σ_{h 1}^{2}}})}{b_{2 i} f (\frac{N η_{f} - u_{2 i} - u_{h 1}}{\sqrt{σ_{1 i}^{2} + N^{2} σ_{h 1}^{2}}})} > 1 > \frac{a_{3 i} f (\frac{N η_{f} - u_{3 i} - N u_{h 0}}{\sqrt{σ_{1 i}^{2} + N^{2} σ_{h 0}^{2}}})}{a_{2 i} f (\frac{N η_{f} - u_{2 i} - N u_{h 0}}{\sqrt{σ_{1 i}^{2} + N^{2} σ_{h 0}^{2}}})} .

(20)

∴ \frac{d P_{f}}{d u_{2 i}} > 0 .

(21)

Theorem 2 points out that the global probability of false alarm can reach the maximum when u_2i reaches the available maximum. This theorem provides us with an approach to derive the optimal solution of attack strength to the optimization in (15). Fixed P_d provides an implicit function about u_3i and u_2i whose range is limited in the Appendix. Then based on Theorem 2, the optimal value can be selected from the set of (u_2i,u_3i) satisfying the function.

4.3 Interference attack

Consider another scenario that a malicious SU aims to bring harmful interference to disturb the normal operation of the PU, i.e., to minimize the probability of detection, which can be formulated as

\begin{matrix} \min_{(u_{2 i}, u_{3 i})} P_{d}, \\ subjectto P_{f} = α \in (0, 1) . \end{matrix}

(22)

Theorem 3

Given the probability of false alarm as P_f=α and the attack probability as p_i=p_a, the probability of detection decreases with u_3i.

Proof.

For a given probability of false alarm at the FC, we have

P_{f} (u_{2 i}, u_{3 i}) = α.

(23)

Take the derivation of both sides, we have

\frac{d u_{2 i}}{d u_{3 i}} = - \frac{b_{3 i} f (\frac{N η_{f} - u_{3 i} - N u_{h 1}}{\sqrt{σ_{1 i}^{2} + N^{2} σ_{h 1}^{2}}})}{b_{2 i} f (\frac{N η_{f} - u_{2 i} - N u_{h 1}}{\sqrt{σ_{1 i}^{2} + N^{2} σ_{h 1}^{2}}})} .

From (12), it can be calculated as follows:

\begin{align} \frac{d P_{d}}{d u_{3 i}} & = a_{3 i} f (\frac{N η_{f} - u_{3 i} - N u_{h 0}}{\sqrt{σ_{1 i}^{2} + N^{2} σ_{h 0}^{2}}}) \frac{d u_{2 i}}{d u_{3 i}} \\ - a_{2 i} f (\frac{N η_{f} - u_{2 i} - N u_{h 0}}{\sqrt{σ_{1 i}^{2} + N^{2} σ_{h 0}^{2}}}) \end{align}

(24)

Based on the results in (19) and (20), we finally have

\begin{align} \frac{d P_{d}}{d u_{3 i}} < 0 . \end{align}

(25)

Theorem 3 points out that the global probability of detection can reach the maximum when u_3i reaches the available minimum. This theorem provides us with an approach to derive the optimal solution of attack strength to the optimization in (22). Fixed P_f provides an implicit function about u_3i and u_2i whose range is limited in Appendix. Then based on Theorem 3, the optiaml value can be selected from the set of (u_2i,u_3i) saitisfying the function.

5 Stealthiness analysis

In the previous section, analysis on destructiveness is done without taking into consideration any defense or secure sensing algorithms at the FC, while in this section, we consider that a classical secure sensing algorithm developed in[18] is adopted at the FC to find out the potential attackers. Therefore, stealthiness of the proposed attack model should further be studied.

Current secure algorithms at the FC mainly leverage history sensing results to identify malicious SUs[3]. To ensure the generality of the stealthiness analysis, a classical algorithm developed in[18] is chosen in this paper. Breifly, we first review this algorithm as follows.

Initially, all SUs are treated as reliable ones with a reputation value of r_i(0). Then, the reputation value of the i-th SU at the k-th time slot is updated as[18]

r_{i} (k) = r_{i} (k - 1) + {(- 1)}^{d_{i} (k) + D (k)}

(26)

where D(k) represents the global decision at the FC and d_i(k) is the i-th SU’s local decision at the k-th time slot. When the reputation value is lower than a discarded threshold λ, the SU is identified as a malicious one; otherwise, it is treated as a honest one. In[18], r_i(0)=λ+△, where λ is set as 1 and △ is set as 4. At the k-th time slot, the local decision of the i-th SU is obtained as follows:

Γ_{i} (k) ⪋_{d_{i} (k) = H_{0}}^{d_{i} (k) = H_{1}} η_{i}

(27)

where

Γ_{i} (k) = ln \frac{Pr (x_{Ei} (k) |H_{1})}{Pr (x_{Ei} (k) |H_{0})}

The global decision D(k) is calculated as

Γ (k) = \sum_{j \in S (k)} w_{j} (k) Γ_{i} (k) ⪋_{D (k) = H_{0}}^{D (k) = H_{1}} η_{f}

(28)

where S(k) represents the set of SUs with the reputation values larger than the threshold λ, and

\begin{align} w_{j} (k) = \frac{r_{j} (k - 1)}{\sum_{i \in S (k)} r_{i} (k - 1)} . \end{align}

(29)

Through analysis about the previous algorithm, we define a stealthiness metric ψ as follows:

\begin{matrix} ψ (k) = \{\begin{array}{l} \frac{\frac{1}{N_{m}} \sum_{i = 1}^{N_{m}} r_{i}^{m} (k)}{\frac{1}{N - N_{m}} \sum_{j = 1}^{N - N_{m}} r_{j}^{h} (k)}, \begin{matrix} \sum_{i = 1}^{N_{m}} r_{i}^{m} (k) > 0 \end{matrix} \\ 0, \begin{matrix} otherwise \end{matrix} \end{array} \end{matrix}

(30)

where N_m is the number of malicious SUs, $r_{i}^{m} (k)$ denotes the reputation value of the i-th malicious SU, and $r_{i}^{h} (k)$ denotes the reputation value of the i-th honest SU. We choose honest SUs as a baseline and the FC hardly distinguish a malicious SU from malicious ones when the stealthiness metric is close to 1, that is to say, the malicious SU has good stealthiness. Deeper analysis is done in the next section.

6 Performance evaluation and discussions

In this section, numerical simulations are used to verify the analytical results on destructiveness and stealthiness of the proposed probabilistic soft SSDF attack model.

In the following simulations, the cooperative spectrum sensing system consists of a FC and N SUs, among which N_m SUs are malicious. The average received SNR is set as -7 dB and the local threshold is obtained by setting the local false alarm probability as 0.1. The time bandwidth product U is 100. The probability of primary signal being present is set as P(H₁)=0.5. Without loss of generality, in the following simulations, for all malicious SUs, we set A=1.1u_1i,B=0.9u_0i,u_2i=u₂,u_3i=u₃,∀i=1,…,N_m.

6.1 Destructiveness evaluation

Figure2 shows the global sensing performance at the FC under the proposed SSDF attack model, in terms of global detection error probability P_e, defined as

P_{e} = P (H_{1}) (1 - P_{d}) + P (H_{0}) P_{f} .

(31)

In the simulation, N=10,N_m=3. Curves with four groups of attack strengths (u₂,u₃) are plotted. We also plot the curve without malicious SUs as the baseline. It is shown in Figure2 that (i) the global detection error probability increases with the attack probability, (ii) when the attack strength increases, i.e., increasing of u₂ and/or decreasing of u₃, the global detection error probability increases, and (iii) simulations match the theoretical results very well.

Figure3 shows the global false alarm probability versus different detection probabilities, when the malicious SU implements contention attack as discussed in Section 4.2. In the simulation, the attack probability is set as 0.7 and the optimal values of attack strength (u₂,u₃) is obtained according to Theorem 2. Remind that in Theorem 2, we consider the case that there is a single malicious SU in the system and we set N=5,N_m=1. Other two curves are also presented for comparison when 0.95u₂ and 0.9u₂ are set lower than the optimal value u₂, $u_{3}^{*}$ and $u_{3}^{* *}$ are correspondingly calculated for the given P_d. It can be observed in Figure3 that the global false alarm probability P_f gets its maximum when the malicious SU implements contention attack.

Figure4 shows the global detection probability versus different false alarm probabilities when the malicious SU implements interference attack as discussed in Section 4.3. In the simulation, the attack probability is set as 0.7 and optimal value of attack strength (u₂,u₃) is obtained according to Theorem 3. Remind that in Theorem 2, we consider the case that there is a single malicious SU in the system and we set N=5,N_m=1. Other two curves are also presented for comparison when 1.01u₃ and 1.02u₃ are set larger than the optimal value u₃, $u_{2}^{*}$ and $u_{2}^{* *}$ are correspondingly calculated for the given P_f. As shown in Figure4, the global detection probability P_d gets the minimum when the malicious SU implements interference attack.

6.2 Stealthiness evaluation

In this subsection, we study the impact of the attack probability on stealthiness of the proposed attack model. The attack strength is set as u₂=u₁,u₃=u₀, and N=10,N_m=3.

Figure5 shows the evolution of the stealthiness metric, defined in (30), under different attack probabilities. Two main observations are as follows:

After a few sensing slots, the stealthiness metric restrains itself to a constant value ψ for each given attack probability p_a.
Figure 5
Stealthiness under different attack probabilities. N=10,N_m=3.
Full size image
Malicious users’ stealthiness deteriorates with the attack probability p_a.

Mathematically, denote k as the index of the sensing slot, the first observation above can be rewritten as:

\exists constant M \in R, k > M, ψ (k) = ψ = h (p_{a})

(32)

As shown in Figure5, the secure algorithm is not sufficiently valid to probabilistic attack. Essentially, the secure algorithm in[18] uses a reputation accumulation mechanism based on history decision information. However, the reputation accumulating process is ruined by such malicious SUs that may behave in a honest manner, then turn malicious at the next moment. Furthermore, there exists a probability of collision p_c(k), with which the i-th malicious SU’s local decision $d_{i}^{m} (k)$ is inconsistent with FC’s global decision D(k), which can be denoted as

\begin{align} p_{c} (k) & = P (d_{i}^{m} (k) \neq D (k)) \\ = P (H_{0}) P (d_{i}^{m} (k) \neq D (k) | H_{0}) + P (H_{1}) P (d_{i}^{m} (k) \neq D (k) | H_{1}) \end{align}

(33)

Simultaneously, there is a collision between FC’s global decision and a honest user’s local decision with a probability p_c^′(k) during the k-th sensing slot as well. Consistent with the stealthiness metric, the collision probabilities restrain themselves to constant values as well.

\exists M, k > M, \{\begin{matrix} p_{c} (k) = p_{c} \\ {p_{c}}^{'} (k) = {p_{c}}^{'} \end{matrix} .

(34)

Furthermore, we can obtain the relation between collision probabilities and the stealthiness metric as follows

ψ = \frac{{p_{c}}^{'}}{p_{c}} .

(35)

The second observation above is opposite to the results in Figure2. Briefly, destructiveness in Figure2 increases with the attack probability while stealthiness in Figure5 decreases with the attack probability. Consequently, there should be a trade-off between stealthiness and destructiveness with respect to the attack probability.

Motivated by this discovery, we further plot Figure6, which shows the global detection error probability P_e of the robust defense or secure sensing algorithm developed in[18], under the proposed probabilistic soft attack model. In the simulation, N=10,N_m=3.

Although the x-axis and y-axis of Figures2 and6 are of the same content, their results are quite different. The main reason behind the differences lies on the fact that the secure sensing algorithm developed in[18] is adopted at the FC in producing Figure6 to discard the detected malicious SUs before the global fusion. It is observed in Figure6 that with defense or secure sensing algorithms into consideration, there generally exists an optimal attack probability p_a∈(0,1], not necessarily equal to 1.

Taking the curve with the attack strength (u₁,u₀) as an example and comparing it with the curve without malicious SUs, we can divide the attack probability into three intervals:

An interval with a low attack probability than the first point drawn as a circle in Figure6, named role reversal interval, where malicious SUs’ participation does not pose harm to FC’s global fusion, but is beneficial to it.
An interval of a high attack probability than the second point drawn as a square, named exposure interval, where attackers are found out and removed, and their powerful attack action is nearly transparent to FC for their low stealthiness.
An interval of a medium attack probability between the above two points, named favorable attack interval, where effective but stealthy attack can be implemented.

7 Conclusions

In this paper, a generic and novel probabilistic soft SSDF attack model has been proposed. In the proposed attack model, a malicious SU has a certain probability, varying from 0 to 1, to conduct attacks. Under this generalized SSDF attack model, we firstly obtained closed-form expressions of the global sensing performance at the fusion center. Then, we theoretically evaluated the performance of the proposed attack model, in terms of destructiveness and stealthiness, sequentially. Moreover, numerical simulations match the analytical results well. An interesting trade-off between destructiveness and stealthiness has also been discovered, which is a fundamental issue involved in SSDF attack, however, ignored by most of the previous studies.

Appendix

Limitation of attack strength

An extremely large or small value viciously reported by malicious users will bring about huge damage for the fusion center without any defense schames, but such attack behaviors are very prone to be identified. So, before studying optimal attack parameters’ setting, we list restricted conditions as follows:

\begin{align} \{\begin{array}{l} A \geq u_{2 i} \geq u_{3 i} \geq B \\ N η_{f} - u_{h 1} < \frac{u_{3 i} + u_{2 i}}{2} < N η_{f} - u_{h 0} \end{array} \begin{matrix} (a) \\ (b) \end{matrix} \end{align}

(36)

where A and B are constants. In the condition (a), attack stength are restricted within certain intervals determined by the constants A and B and the relationship of size between u_2i and u_3i is referred to before, revealing the attack intention. Further, the condition (b) is used to avoid the large deviation from honest reports through the inter-constraint relationship between u_2i and u_3i, and the two sides of the inequation can be used to denote the residual of FC’s threshold minus the honest means.

References

Mitola J: Cognitive radio: an integrated agent architecture for software defined radio. Ph.D. Dissertation, KTH 2000.
Google Scholar
Wu Q, Ding G, Wang J, Yao YD: Spatial-temporal opportunity detection in spectrum-heterogeneous cogntive radio networks: two-dimensional sensing. IEEE Trans. Wireless Commun 2013, 12(2):516-526.
Article Google Scholar
Rifa Pous H, Blasco MJ, Garrigues C: Review of robust cooperative spectrum sensing techniques for cognitive radio networks. Wireless Personal Commun 2012, 67(2):175-198. 10.1007/s11277-011-0372-x
Article Google Scholar
Chen R, Park JM, Hou YT: Toward secure distributed spectrum sensing in cognitive radio networks. IEEE Commun. Mag 2008, 46(4):50-55.
Article Google Scholar
Penna F, Sun Y, Dolecek L, Cabric D: Detecting and counteracting statistical attacks in cooperative spectrum sensing. IEEE Trans. Signal Process 2012, 60(4):1806-1822.
MathSciNet Google Scholar
Yao JN, Wu Q, Wang J: Attacker detection based on dissimilarity of local reports in collaborative spectrum sensing. IEICE Trans. Commun. 2012, 9: 3024-3027.
Article Google Scholar
Li H, Han Z: Catch me if you can: an abnormality detection approach for collaborative spectrum sensing in cognitive radio networks. IEEE Trans. Wireless Commun 2010, 9(11):3554-3565.
Article Google Scholar
Vempaty A, Tong L, Varshney P: Distributed inference with byzantine data: state-of-the-art review on data falsification attacks. IEEE Signal Process. Mag 2013, 30(5):65-75.
Article Google Scholar
Farmani F, Berangi R, MA Jannat-Abad: Detection of SSDF attack using SVDD algorithm in cognitive radio networks. IEEE Third International Conference on Computational Intelligence, Communication Systems and Networks (CICSyN): 26–28 July 2011 (IEEE, Bali, 2011) 201-204.
Chapter Google Scholar
Min AW, Shin KG, Hu X: Secure cooperative sensing in IEEE 802.22 WRANs using shadow fading correlation. IEEE Trans. Mobile Comput 2011, 10(10):1434-1447.
Article Google Scholar
Ding G, Wu Q, Yao YD, Wang JL, Chen YY: Kernel-based learning for statistical signal processing in cognitive radio networks: Theoretical foundations, example applications, and future directions. IEEE Signal Process. Mag 2013, 30: 126-136.
Article Google Scholar
Cui S, Han Z, Kar S, Kim TT, Poor H, Tajer A: Coordinated data-injection attack and detection in smart grid. IEEE Signal Process. Mag 2012, 29(5):106-115.
Article Google Scholar
Chen R, Park JM, Bian K: Robust distributed spectrum sensing in cognitive radio networks. INFOCOM 13-18 April 2008; Phoenix, AZ (IEEE, 2008), pp. 1876–1884
Google Scholar
Han Y, Chen Q, Wang JX: An enhanced DS theory cooperative spectrum sensing algorithm against SSDF attack. IEEE Vehicular Technol.ogy Conference (VTC Spring) 6–9 May 2012; Yokohama (IEEE, 2012), pp.1–5
Google Scholar
Kaligineedi P, Khabbazian M, Bhargava VK: Secure cooperative sensing techniques for cognitive radio systems. IEEE International Conference on Communications 19–23 May 2008; Beijing (IEEE, 2008), pp. 3406–3410
Google Scholar
Nguyen-Thanh N, Koo I: A robust secure cooperative spectrum sensing scheme based on evidence theory and robust statistics in cognitive radio. IEICE Trans. Commun 2009, 12: 3644-3652.
Article Google Scholar
Urkowitz H: Energy detection of unknown deterministic signals. Proc. IEEE 1967, 55(4):523-531.
Article Google Scholar
Zeng K, Paweczak P, Cabric D: Reputation-based cooperative spectrum sensing with trusted nodes assistance. IEEE Commun. Lett 2010, 14(3):226-228.
Article Google Scholar

Download references

Acknowledgements

This work is supported in part by the National Natural Science Foundation of China under Grant No. 61172062 and No. 61301160 and in part by Jiangsu Province Natural Science Foundation under Grant No. BK2011116.

Author information

Authors and Affiliations

College of Communications Engineering, PLA University of Science and Technology, Yudao Road, Nanjing, 210007, China
Linyuan Zhang, Qihui Wu, Guoru Ding, Shuo Feng & Jinlong Wang

Authors

Linyuan Zhang
View author publications
You can also search for this author in PubMed Google Scholar
Qihui Wu
View author publications
You can also search for this author in PubMed Google Scholar
Guoru Ding
View author publications
You can also search for this author in PubMed Google Scholar
Shuo Feng
View author publications
You can also search for this author in PubMed Google Scholar
Jinlong Wang
View author publications
You can also search for this author in PubMed Google Scholar

Corresponding authors

Correspondence to Qihui Wu or Guoru Ding.

Additional information

Competing interests

The authors declare that they have no competing interests.

Authors’ original submitted files for images

Below are the links to the authors’ original submitted files for images.

Authors’ original file for figure 1

Authors’ original file for figure 2

Authors’ original file for figure 3

Authors’ original file for figure 4

Authors’ original file for figure 5

Authors’ original file for figure 6

Rights and permissions

Open Access This article is licensed under a Creative Commons Attribution 4.0 International License, which permits use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons licence, and indicate if changes were made.

The images or other third party material in this article are included in the article’s Creative Commons licence, unless indicated otherwise in a credit line to the material. If material is not included in the article’s Creative Commons licence and your intended use is not permitted by statutory regulation or exceeds the permitted use, you will need to obtain permission directly from the copyright holder.

To view a copy of this licence, visit https://creativecommons.org/licenses/by/4.0/.

Reprints and permissions

About this article

Cite this article

Zhang, L., Wu, Q., Ding, G. et al. Performance analysis of probabilistic soft SSDF attack in cooperative spectrum sensing. EURASIP J. Adv. Signal Process. 2014, 81 (2014). https://doi.org/10.1186/1687-6180-2014-81

Download citation

Received: 02 March 2014
Accepted: 20 May 2014
Published: 31 May 2014
DOI: https://doi.org/10.1186/1687-6180-2014-81

Performance analysis of probabilistic soft SSDF attack in cooperative spectrum sensing

Abstract

1 Introduction

2 Spectrum sensing preliminaries

3 Probabilistic soft SSDF attack

3.1 The proposed attack model

3.2 Local sensing performance under probabilistic soft SSDF attack

3.3 Global sensing performance under probabilistic soft SSDF attack

4 Destructiveness analysis

4.1 Probabilistic attack

Theorem 1

Proof

4.2 Contention attack

Theorem 2

Proof.

4.3 Interference attack

Theorem 3

Proof.

5 Stealthiness analysis

6 Performance evaluation and discussions

6.1 Destructiveness evaluation

6.2 Stealthiness evaluation

7 Conclusions

Appendix

Limitation of attack strength

References

Acknowledgements

Author information

Authors and Affiliations

Corresponding authors

Additional information

Competing interests

Authors’ original submitted files for images

Authors’ original file for figure 1

Authors’ original file for figure 2

Authors’ original file for figure 3

Authors’ original file for figure 4

Authors’ original file for figure 5

Authors’ original file for figure 6

Rights and permissions

About this article

Cite this article

Share this article

Keywords