Jamming-assisted Eavesdropping over Parallel Fading Channels
Yitao Han, Lingjie Duan, Rui Zhang

TL;DR
This paper proposes a jamming-assisted eavesdropping strategy over parallel fading channels, optimizing the monitor's jamming to improve eavesdropping success while managing the trade-offs between jamming effectiveness and own goal probability.
Contribution
It introduces a novel cognitive jamming approach for half-duplex monitors in parallel fading channels, formulating and solving an optimal jamming design problem with trade-off analysis.
Findings
Optimized jamming significantly increases eavesdropping success probability.
Maximum jamming power is optimal when jamming is employed.
Trade-offs exist between jamming more channels and own goal probability.
Abstract
This paper advances the proactive eavesdropping research by considering a practical half-duplex mode for the legitimate monitor and dealing with the challenging case that the suspicious link opportunistically communicates over parallel fading channels. To increase eavesdropping success probability, we propose cognitive jamming for the monitor to change the suspicious link's long-term belief on the parallel channels' distributions, and thereby induce it to transmit more likely over a smaller subset of unjammed channels with a lower transmission rate. As the half-duplex monitor cannot eavesdrop the channel that it is simultaneously jamming to, our jamming design should also control the probability of such "own goal" that occurs when the suspicious link chooses one of the jammed (uneavesdroppable) channels to transmit. We formulate the optimal jamming design problem as a mixed integer…
Click any figure to enlarge with its caption.
Figure 1
Figure 2
Figure 3
Figure 4
Figure 5
Figure 6
Figure 7
Figure 8
Figure 9
Figure 10
Figure 11
Figure 12
Figure 13
Figure 14
Figure 15| Symbols | Physical meanings | ||
|---|---|---|---|
| Total number of parallel channels. | |||
| Number of jammed channels. | |||
| , , |
|
||
| ST’s transmitting power. | |||
| Monitor’s jamming power on channel . | |||
| Jamming power budget of the monitor. | |||
| , , |
|
||
| , |
|
||
|
|||
|
|||
| , |
|
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsWireless Communication Security Techniques · Security in Wireless Sensor Networks · Smart Grid Security and Resilience
Jamming-assisted Eavesdropping over
Parallel Fading Channels
Yitao Han, Lingjie Duan, and Rui Zhang Y. Han and L. Duan are with the Engineering Systems and Design Pillar, Singapore University of Technology and Design (e-mail: [email protected], [email protected]).R. Zhang is with the Department of Electrical and Computer Engineering, National University of Singapore (e-mail: [email protected]).
Abstract
Unlike passive eavesdropping, proactive eavesdropping is recently proposed to use jamming to moderate a suspicious link’s communication rate for facilitating simultaneous eavesdropping. This paper advances the proactive eavesdropping research by considering a practical half-duplex mode for the legitimate monitor (e.g., a government agency) and dealing with the challenging case that the suspicious link opportunistically communicates over parallel fading channels. To increase eavesdropping success probability, we propose cognitive jamming for the monitor to change the suspicious link’s long-term belief on the parallel channels’ distributions, and thereby induce it to transmit more likely over a smaller subset of unjammed channels with a lower transmission rate. As the half-duplex monitor cannot eavesdrop the channel that it is simultaneously jamming to, our jamming design should also control the probability of such “own goal” that occurs when the suspicious link chooses one of the jammed (uneavesdroppable) channels to transmit. We formulate the optimal jamming design problem as a mixed integer nonlinear programming (MINLP) and show that it is non-convex. Nevertheless, we prove that the monitor should optimally use the maximum jamming power if it decides to jam, for maximally reducing suspicious link’s communication rate and driving the suspicious link out of the jammed channels. Then we manage to simplify the MINLP to integer programming and reveal a fundamental trade-off in deciding the number of jammed channels: jamming more channels helps reduce the suspicious link’s communication rate for overhearing more clearly, but increases own goal probability and thus decreases eavesdropping success probability. Finally, we extend our study to the two-way suspicious communication scenario, and show there is another interesting trade-off in deciding the common jammed channels for balancing bidirectional eavesdropping performances. Numerical results show that our optimized jamming-assisted eavesdropping schemes greatly increase eavesdropping success probability as compared with the conventional passive eavesdropping.
Index Terms:
Wireless surveillance, jamming-assisted eavesdropping, half-duplex monitor, parallel fading channels, eavesdropping success probability, bidirectional eavesdropping.
I Introduction
Security issues in wireless communication have drawn increasingly more attentions from both academia and industry. Due to the broadcast nature of wireless communication, its physical layer is vulnerable to eavesdropping (interception of confidential information) and jamming (interruption of legitimate transmission) [1], and there are many works focusing on defence schemes against eavesdropping and jamming, such as secrecy beamforming [2, 3, 4], channel-based secret key [5], using cooperative networks to avoid eavesdropping [6] and using hopping to avoid jamming attacks [7]. These works view eavesdropping or jamming as malicious attacks and assume all the communication links are rightful (see [8, 9, 10, 11, 12, 13]). However, they overlook the emerging case that wireless links or devices can be established and used by criminals or terrorists to present severe public security threats.
With the fast development of wireless technologies and devices, user-controlled or infrastructure-free communications (e.g., ad hoc network and short-range communication) now become popular. For examples, mobile applications such as MeshMe and FireChat can network users in the vicinity with reliable mutual connection, and drones can take nice photos or videos and send back to their users. While providing great convenience to normal users, these new technologies and devices can be misused to commit crimes. Terrorists can use them to facilitate their plotting and acts, and spies can use them to send out commercial or military secrets. Since the data do not go through any public infrastructure under internet service providers (ISPs), it is difficult to be monitored by government surveillance program. As a result, prior methods (e.g., deploying dedicated wiretapping devices in network infrastructure) for eavesdropping infrastructure-based communications (e.g., cellular networks) no longer work. There is thus a growing need for authorized parties to develop new approaches to legitimately eavesdrop these infrastructure-free suspicious wireless communications. For example, in the USA, the National Security Agency has launched Terrorist Surveillance Program and aims to intercept all wireless devices [14] to protect public security.
Traditionally, passive eavesdropping is used for such surveillance purpose but it does not provide good eavesdropping performance once the suspicious transmitter (ST) is far away from the monitor or hops to an undesirable channel. Recently, a novel approach called proactive eavesdropping via jamming is proposed in [15], [16], where the legitimate monitor, ideally operating in full-duplex mode, uses jamming to moderate the suspicious communication rate for facilitating simultaneous eavesdropping. [17] extends this work by assuming the legitimate monitor’s knowledge of full channel state information (CSI) and designs adaptive jamming power in each fading block. [18] studies the case that the suspicious link adopts HARQ-based communication. [19] further considers that the monitor is equipped with multiple antennas to achieve more efficient jamming and better eavesdropping performance. [20] proposes another efficient eavesdropping method, where the monitor disguises as a fake relay to overhear the suspicious communication. These works largely assume that there is only one communication channel between the ST and suspicious receiver (SR), and they require the monitor to operate in interference-free full-duplex mode for enabling simultaneous jamming and eavesdropping. However in practice, full-duplex mode is difficult to implement, and self interference cancellation is hard to achieve as perfect [21] [22]. Rather, half-duplex mode is more widely used, and usually there is more than one channel for the suspicious link to communicate over.
In this paper, we study a practical wireless surveillance scenario: a half-duplex legitimate monitor eavesdrops from a suspicious communication link over parallel independent Rayleigh fading channels. As shown in Fig. 1, at the beginning of each fading block, based on the conditions of the parallel independently fading channels, the ST hops to the best one for transmission in this fading block.111This approach of channel hopping and selection is commonly used in the multi-channel scenario to enhance wireless security against eavesdropping and jamming (e.g., [7]). In the future work, we will further consider the case that the ST uses multiple channels to transmit, e.g., by deploying waterfilling-based power allocation over multiple channels, which will bring more challenges to legitimate eavesdropping. Here we assume a typical delay-sensitive application (e.g., video talk) on the suspicious link, i.e., the transmitter adjusts its transmission rate by maintaining a certain target outage probability at the receiver [16]. Usually, the monitor is far away from the ST to stay undetected, which makes the traditional passive eavesdropping difficult or even infeasible. Under this challenging setup, the monitor can deliberately send jamming signals to the SR to induce the ST to transmit more likely over a smaller subset of unjammed channels with a lower transmission rate, so that the monitor can still eavesdrop effectively.
To avoid getting exposed, the monitor will not change its jamming power and jammed channels over time, it just disguises itself as a normal device-to-device (D2D) user in sharing the network, by sending randomly modulated messages over fixed channels with fixed power. The ST/SR is aware of its co-existence in the same network by updating the long-term belief of the parallel channels’ distributions, but does not consider it as a jammer. If the monitor keeps changing its jammed channels or jamming power, then it is no longer like a normal user and will cause the ST/SR’s suspicion to hop over channels to increase resilience in a game theoretic setting or directly stop transmitting any message as in [7] [23] [24].
The key novelty and main contributions of this paper are summarized as follows.
- •
Novel jamming-assisted eavesdropping approach over parallel fading channels: To our best knowledge, this is the first paper studying wireless surveillance of parallel fading channels via a half-duplex monitor. The monitor uses jamming to change the suspicious link’s long-term belief on the parallel channels’ distributions, and thereby induce it to transmit more likely in a smaller subset of unjammed channels with a lower transmission rate for higher eavesdropping success probability. For practical concern, we consider a challenging case that the monitor has no instantaneous CSI of any suspicious link channels, and the monitor in half-duplex mode cannot eavesdrop a channel that it is simultaneously jamming to.
- •
Joint optimization of jamming power and number of jammed channels: We formulate the problem for optimal jamming design over parallel fading channels as a mixed integer nonlinear programming (MINLP) and show it is non-convex. Nevertheless, we prove that the monitor should use the maximum jamming power if it decides to jam. Then we manage to simplify the MINLP to integer programming and further show that there is a fundamental trade-off in deciding the number of jammed channels: jamming more channels helps reduce the suspicious communication rate for overhearing more clearly, but at the risk that the ST is more likely to choose among the jammed channels to transmit and as a result cannot be overheard.
- •
Jamming-assisted eavesdropping over two-way communications: We extend the model to consider the two-way communications of the suspicious link. As the monitor cannot change its jamming strategy to avoid getting exposed, it needs to jam the same subset of channels for both communication directions. To decide the optimal number of jammed channels, we show there is another trade-off to balance the eavesdropping performances of the two-way communications.
- •
Performance evaluation: Numerical results show that our jamming-assisted eavesdropping schemes achieve great performance gain over conventional passive eavesdropping. We also show that the monitor will perform passive eavesdropping only when it is close to the ST, and will jam increasingly more channels when it is moving away from the ST to SR, due to deteriorating eavesdropping channels and improving jamming channels.
The rest of this paper is organized as follows. In Section II, we present the system model and formulate the legitimate monitor’s proactive eavesdropping design problem. In Section III, we solve the eavesdropping optimization problem in the special two-channel case to gain useful insights. In Section IV, we extend to multi-channel case and show an interesting trade-off in deciding the number of jammed channels, for eavesdropping success probability maximization. In Section V, we further consider jamming-assisted eavesdropping over two-way communications. In Section VI, we provide more numerical results to evaluate our jamming-assisted eavesdropping approach. Finally, we conclude this paper in Section VII.
II System model and problem formulation
As shown in Fig. 1, the ST communicates with the SR over parallel channels with independent Rayleigh fading, and there is a legitimate monitor aiming to eavesdrop their communications. We consider a quasi-stationary system model, where the monitor has sufficient time (before the ST and SR’s movement to another locations) to learn the global channel distribution information (CDI) and launch jamming to eavesdrop from the suspicious link’s transmission. The ST and SR are both equipped with one antenna, while the legitimate monitor is purposely equipped with two antennas, one for receiving (eavesdropping) and the other for transmitting (jamming). In order to characterize the fundamental performance limit of this jamming-assisted eavesdropping approach, we assume the encryption method used by the ST/SR is known to the monitor beforehand (e.g. via eavesdropping the related encryption codebook). Note that the focus of this work is on decoding the message instead of decrypting the message itself. The monitor disguises itself as a normal user in sharing the same set of channels with the suspicious link, and operates at half-duplex mode, which means it cannot eavesdrop the channel that it is jamming to. Thus, the monitor will not jam all channels, otherwise, it overhears nothing. There are two eavesdropping schemes to investigate and compare:
- •
Scheme I (passive eavesdropping): The legitimate monitor performs passive eavesdropping over all channels while jamming no channels. This is also a benchmark case for our proposed jamming-assisted eavesdropping to compare with.
- •
Scheme II (jamming-assisted eavesdropping): The legitimate monitor performs jamming-assisted eavesdropping by jamming channels and eavesdropping from the rest channels, where .
We consider a block fading model, where the channel stays unchanged in each fading block and may vary over different fading blocks. As shown in Fig. 1, we respectively denote the channel power gains of the suspicious communication link, eavesdropping link (from the ST to the monitor) and jamming link (from the monitor to the SR) on channel as , and . By considering independent Rayleigh fading, , and are modelled as independent exponentially distributed random variables with mean , and , respectively, with . This suggests that all the suspicious link channels (, ) are independent and identically distributed (i.i.d.), so are the eavesdropping channels (, ) and the jamming channels (, ). Hence in Scheme II, in statistical sense it does not matter which channels to jam given the jammed channel number by the monitor (who does not know the instantaneous CSI of any suspicions link channels). Thus, without loss of generality, we assume the half-duplex monitor picks the first out of channels to jam, and eavesdrops from the rest channels. We assume that the monitor only knows the global CDI (, and ), which can be obtained by the monitor through long-term observation as mentioned earlier.
On the other hand, we consider that the ST knows the CSI of all the suspicious communication channels (i.e., ’s instantaneous values). The ST transmits at a fixed power and keeps hopping to the best channel for transmission in each fading block. For ease of reading, Table I summarizes the main symbol notations used in this paper and their physical meanings.
II-A Monitor’s expected performance of the suspicious link without or with jamming
Both the signal sent by the ST and the jamming signal sent by the monitor are assumed to be circularly symmetric complex Gaussian (CSCG) random variables. This is because that CSCG message will achieve channel capacity given CSCG noise, and monitor’s CSCG jamming signal will achieve the best jamming effect [8].
In Scheme I, the monitor does not jam, and the achievable rate of suspicious communication on channel is in bits/second/Hertz (bps/Hz), where denotes the noise power at the SR. The monitor expects the signal-to-noise ratio (SNR) at the SR on the channel is a random variable, with cumulative distribution function (CDF) given by
[TABLE]
In Scheme II, the monitor jams by allocating power to channel , and thus the achievable rate of suspicious communication channel is . The monitor expects the signal-to-interference-plus-noise ratio (SINR) at the SR on the channel is a random variable, with CDF given by the following lemma.
Lemma 2.1: In Scheme II, the CDF of SINR at the SR under jamming is given by
[TABLE]
Proof:
See Appendix A. ∎
Based on (1) and (2) under the two eavesdropping schemes, we are ready to formulate the monitor’s design objective.
In Scheme I, the legitimate monitor performs passive eavesdropping. The ST will choose the best channel, i.e., the one with the highest SNR, in each fading block. From (1), the monitor’s expected CDF of the maximum SNR at the SR among all the channels is
[TABLE]
We consider a typical delay-sensitive transmission model for the suspicious link, where the ST adjusts its transmission rate to keep a target outage probability at the SR. Only when the transmission rate is no larger than the achievable rate of the best suspicious communication channel , the SR can successfully decode the delay-sensitive message. Thus we have
[TABLE]
which yields the suspicious transmission rate as
[TABLE]
In Scheme II, the legitimate monitor performs jamming-assisted eavesdropping and jams channels. Under jamming, the ST will choose the channel with the highest SINR among the jammed channels or the channel with the highest SNR among the remaining channels without jamming in each fading block. Note that ST’s chosen channel may still be a jammed channel by the monitor due to independent channel fading. From (1) and (2), the monitor’s expected CDF of the maximum SINR or SNR at the SR among all the channels is
[TABLE]
To maintain target outage probability at the SR, the ST sets the transmission rate to ensure
[TABLE]
which yields
[TABLE]
With its jamming power allocations , the monitor believes the ST will use rate to transmit. Note that there is no closed-form solution to equation (8).
II-B Monitor’s problem formulation for jamming-assisted eavesdropping
The legitimate monitor aims to maximize the eavesdropping success probability on the suspicious communication, which is the percentage of fading blocks it can successfully decode.
In Scheme I, assuming the suspicious communication is on the channel in a certain fading block, only when the achievable rate of the eavesdropping channel is no smaller than the suspicious transmission rate in (5), the monitor can successfully eavesdrop in this fading block. Thus, the eavesdropping success probability under Scheme I (passive eavesdropping) is
[TABLE]
where denotes the noise power at the legitimate monitor.
In Scheme II, since all the suspicious communication channels have independent fading, it is possible that a jammed channel is still chosen by the ST, and in this case the half-duplex monitor cannot eavesdrop anything. We define the probability that any jammed channel is chosen by the ST (i.e., own goal probability of the monitor’s self-jamming) as and we will detail its analysis later in Sections III and IV.
Now, assuming the suspicious communication is on the channel in a certain fading block, only when none of the jammed channels is chosen by the ST, and the achievable rate of the eavesdropping channel is no smaller than the suspicious transmission rate in (8), the monitor can successfully eavesdrop. Thus, the eavesdropping success probability under Scheme II (jamming-assisted eavesdropping) is
[TABLE]
From (9) and (10), we can formulate the optimization problem for jamming design as a mixed integer nonlinear programming (MINLP), given by
[TABLE]
Note that does not depend on or and it is a constant. In other words, the monitor only jams if the optimized is larger than .
The joint optimization of and ’s in problem () is difficult due to discrete and non-concave objective . In the next section, we will first look into the two-channel case () to simplify this problem and provide tractable analysis and clean insights. We will generalize the results to the multi-channel case in Section IV.
III Optimal jamming-assisted eavesdropping over two channels
If there are only two parallel channels (), in jamming-assisted eavesdropping approach, the half-duplex legitimate monitor will only jam one channel (i.e., ), otherwise, both channels are jammed and it cannot overhear anything due to own goal. Its eavesdropping success probability under our jamming-assisted eavesdropping in (10) now only depends on jamming power , i.e.,
[TABLE]
and (P1) is simplified to
[TABLE]
Proposition 3.1: In the two-channel case, the own goal probability in (11) due to self-jamming at the monitor is given by
[TABLE]
where is the exponential integral function [25, Eq. ]. As jamming power increases, decreases. This is because a higher jamming power helps drive the suspicious link to the other unjammed (eavesdropped) channel. More specifically, we have due to trivial jamming effect on changing the ST’s belief of channel distributions, and the suspicious link is equally likely to choose both i.i.d. channels to transmit. Moreover, , since the jammed channel will never be chosen by the suspicious link under infinite jamming power.
Proof:
See Appendix C, where we choose and . By substituting and into (12), we can derive the two limits for . ∎
Proof:
Next, we analyze the non-outage probability at the monitor , a part of (11), which is a function of . By simplifying (8) under and , we have the following results.
Proposition 3.2: In the two-channel case, the suspicious link’s transmission rate in (11) is the unique solution to
[TABLE]
As jamming power increases, decreases. This is because the ST faces more noisy channel, and has to transmit at a lower rate in order to maintain target outage probability . More specifically, \lim_{Q\rightarrow 0^{+}}R^{II}(Q)=\log_{2}\big{(}1+P\ln(1-\delta^{\frac{1}{2}})^{-1}/\lambda_{a}\sigma_{a}^{2}\big{)}, which equals to in (5) with under passive eavesdropping, due to trivial jamming effect on the suspicious communication. Moreover, \lim_{Q\rightarrow\infty}R^{II}(Q)=\log_{2}\big{(}1+P\ln(1-\delta)^{-1}/\lambda_{a}\sigma_{a}^{2}\big{)}, which equals to in (5) with under the passive eavesdropping, since the jammed channel will never be chosen.
Proof:
By substituting and into (8), we have (13). Denote the left-hand-side (LHS) of (13) to be . According to the implicit function theorem, we have
[TABLE]
thus monotonically decreases as increases. By substituting and into (13), we can derive the two limits for . ∎
Theorem 3.1: We denote as the unique solution to
[TABLE]
If , the legitimate monitor will jam with the maximum power , otherwise it will perform passive eavesdropping without jamming (as illustrated in Fig. 2).
According to Propositions 3.1 and 3.2, in (11) monotonically increases with , thus the monitor will use the maximum jamming power if it decides to jam, while in (9) is a constant regardless of .
When jamming power is close to zero,
[TABLE]
On the other hand, when jamming power goes to infinity, , hence
[TABLE]
Given that when jamming power goes to zero, the performance of jamming-assisted eavesdropping is worse than passive eavesdropping, while the performance of jamming-assisted eavesdropping increases with jamming power, and eventually when jamming power goes to infinity, becomes better than passive eavesdropping, it follows that there exists a unique intersection point between and at point , which is given in (14). If , the monitor will jam with the maximum jamming power , otherwise it will perform passive eavesdropping to obtain a greater than . ∎
As we can see from above, in jamming-assisted eavesdropping, jamming with a higher power helps reduce own goal probability and transmission rate at the same time. Thus, by using up jamming power budget , the monitor can achieve the maximum eavesdropping success probability.
IV Optimal jamming-assisted eavesdropping over multiple channels
In this section, we consider the general case with multiple i.i.d. fading channels for the optimal jamming design, and need to further decide how many channels to jam. Similar to the case in Theorem 3.1, we also expect to jam with the maximum power in the general case of channels if the monitor decides to jam. More specifically, we have the following result.
Proposition 4.1: Given that of channels are jammed, the monitor should allocate all the jamming power over jammed channels equally, i.e., , .
Proof:
See Appendix B. ∎
Thanks to Proposition 4.1, we know that the monitor will evenly allocate all the jamming power over the jammed channels, as a result the eavesdropping success probability under jamming-assisted eavesdropping in (10) only depends on the number of jammed channels , i.e.,
[TABLE]
Thus, we manage to simplify the non-convex MINLP in (P1) to the following single-variable problem:
[TABLE]
As is an integer, problem () is an integer programming problem and still difficult to solve analytically. Next, we will analyze the monotonic properties of own goal probability and suspicious link’s transmission rate with respect to in the objective, to understand the key insights and solve (P3).
Proposition 4.2: In the general multi-channel case, the own goal probability at the monitor in (15) is given by
[TABLE]
where is the upper incomplete gamma function [25, Eq. ]. Further, increases as increases.
Proof:
See Appendix C. ∎
Here, increases with due to two reasons. First, more channels are jammed and potentially they can be selected by the suspicious link for transmission. Second, the jamming power on each jammed channel weakens as increases given the total jamming power budget, and thus each jammed channel is more likely to be chosen by the suspicious link. Thus, the suspicious link is more likely to transmit on the jammed channels and this increases the self-jamming (own goal) probability for the monitor.
Next, we determine the non-outage probability at the monitor in (15), which is a function of . Similar to , here only depends on .
Proposition 4.3: In the general multi-channel case, the suspicious link’s transmission rate in (15) is the unique solution to
[TABLE]
Further, monotonically decreases as increases.
Proof:
See Appendix D. ∎
The reason why decreases with is because jamming more channels increases the chance that the ST chooses the jammed channels, and the ST will transmit at a lower rate to maintain target outage probability at the SR. A lower transmission rate leads to a higher non-outage probability at the monitor, and thus the monitor can overhear more clearly.
Fig. 3 numerically illustrates in (16), non-outage probability in (17), and their product in (15). As increases, it is observed that decreases and increases. To maximize , there is thus a trade-off in deciding the optimal number of jammed channels (here in this numerical example).
It should be noted that it is still difficult to analytically solve in (P3) even by relaxing to be continuous for tractable analysis. This is because not only in (17) is not in closed-form, but also it is difficult to approximate in (16) to be a continuous function due to the combinatorial nature and the involved upper incomplete gamma function. Still, we can numerically obtain , by a one-dimensional exhaustive search in the set with low computation complexity of .
Proposition 4.4: In jamming-assisted eavesdropping scheme, as the monitor’s jamming power budget goes to zero, it is optimal for the monitor to jam as few channels as possible (), and the eavesdropping success probability is
[TABLE]
On the other hand, as the monitor’s jamming power budget goes to infinity, it is optimal for the monitor to maximally jam channels and eavesdrop the remaining one with ideal zero own goal probability, and the eavesdropping success probability is
[TABLE]
Proof:
When the monitor’s jamming power budget goes to zero, the jammed channels and unjammed channels are the same in distribution, while the half-duplex monitor cannot eavesdrop the jammed channels, making the own goal probability proportional to , i.e.,
[TABLE]
Meanwhile, the transmission rate in (17) now becomes the same as constant transmission rate of passive eavesdropping in (5). Thus, the eavesdropping success probability in (15) becomes
[TABLE]
As we can see from (20), monotonically decreases as increases, thus it is optimal to only jam channel when employing the jamming-assisted eavesdropping.
On the other hand, as jamming power budget goes to infinity, the own goal probability becomes , as the severely jammed channel will never be chosen by the ST. Meanwhile, the transmission rate becomes
[TABLE]
Thus, the eavesdropping success probability becomes
[TABLE]
As we can see from (21), monotonically increases as increases, thus it is optimal to jam channels in this case. ∎
Note that under optimal , if , the legitimate monitor will perform jamming-assisted eavesdropping, otherwise it will perform passive eavesdropping.
V Extension to eavesdropping two-way communications
So far, we have considered the one-way communication from the ST to the SR for the suspicious link, while in practice, the two users may need to alternately exchange information with each other over time periods or fading blocks (see Fig. 4). Our jamming-assisted eavesdropping approach in Section IV is designed for the one-way communication, and will be extended in this section for the two-way communications.
The distributions of channel power gains of the communication from user A to user B follow the same model defined in Section II, i.e., , , . Due to the reciprocity of wireless channel, the suspicious communication channels are the same from user B to user A, i.e., . However, the original jamming channels now become eavesdropping channels, i.e., , and the original eavesdropping channels now become jamming channels, i.e., . As we can see, the optimal number of jammed channels are in general different for user A to B communication ( as computed in last section) and user B to A communication (), where subscript denotes the communication direction from user A to user B, and denotes the communication from user B to user A. But alternately jamming channels over time will easily arouse the suspicion of suspicious users by examining the channel statistics. Then the suspicious link can tell that the monitor is a jammer instead of a normal D2D user with time-division-duplex.
To intercept the two-way communications between user A and user B, we need to balance these two communication ways for maximizing the minimum eavesdropping success probability between both communication ways, keep the same jammed channels and jamming power in the long run. Without loss of generality, if out of i.i.d. fading channels are jammed in two-way communications, we consider the monitor picks the first out of channels to jam. Similar to Proposition 4.1 in the one-way communication, the monitor should also use up all the jamming power budget and evenly partition over the jammed channels in two-way communications. Thus, the max-min optimization problem can be reformulated as follows.222Our problem (P4) can further include different weights for the two communication ways. For example, if the monitor values the message from user A (e.g., a leader of a criminal gang) to user B (e.g., a follower) more important, it will assign a large weight to this way’s eavesdropping success probability.
[TABLE]
(P4) compares the performance of jamming-assisted eavesdropping and the performance of passive eavesdropping in two-way communications. Since both and are constants, we can only focus on optimizing the performance of jamming-assisted eavesdropping . To numerically solve this integer programming, we can obtain the optimal number of jammed channels in two-way communications, by efficiently performing one-dimensional exhaustive search in the set with low computation complexity of . Then we compare with : if the former is smaller, the monitor will perform jamming-assisted eavesdropping with jammed channels, otherwise the monitor will perform passive eavesdropping.
We first use a numerical example to illustrate the eavesdropping success probability of jamming-assisted eavesdropping in two-way communications. Assuming there are parallel channels, we set the mean channel power gains to be and , additive white Gaussian noise (AWGN) power as , target outage probability at user A/B as , transmitting power of user A/B as dB and jamming power budget as dB.
As Fig. 5 shows, the optimal number of jammed channels for suspicious user A’s communication to user B is , while the optimal number of jammed channels for suspicious user B’s communication to user A is ; and we find the optimal number of jammed channels to balance between the communications from user A to B and from user B to A.
It is difficult to analytically derive the optimal solution to (P4), due to the non-concave objective involving incomplete gamma function and the discrete nature of decision variable . Despite of these, we still manage to derive some analytical results by assuming the one-way eavesdropping success probability (i.e., for user A to B and for user B to A) is unimodal (having only one peak) or monotonic in as in Fig. 3. Actually, this is always the case in our extensive simulations though it is difficult to rigorously prove.
Proposition 5.1: Assuming the objective functions and in (P4) are unimodal or monotonic in , the optimal jamming-assisted eavesdropping scheme is given as follows, depending on the jamming power budget .
- •
If the monitor’s jamming power budget is low (i.e., ), jamming more channels hurts the eavesdropping performances on both ways, where . In this case, it is optimal for the monitor to minimally jam channel. As a special case, when goes to zero, (as a two-way extension of Proposition 4.4).
- •
If the monitor’s jamming power budget is high (i.e., ), jamming more channels improves the eavesdropping performances on both ways, where . In this case, it is optimal for the monitor to maximally jam channels. As a special case, when goes to infinity, (as a two-way extension of Proposition 4.4).
- •
If the jamming power budget is medium (i.e., ), the optimal number of jammed channels is between and , by balancing the eavesdropping performances of the two ways.
Proof:
See Appendix E. ∎
VI Numerical Results
In this section, we provide more numerical results to validate our studies and designs. Assuming there are parallel channels, we set the mean channel power gain of the suspicious communication link, eavesdropping link and jamming link in the one-way communication to be and , respectively. We also set the AWGN power as , the target outage probability at the SR as and transmitting power of the ST as dB.
Fig. 7 shows the eavesdropping success probability as a function of and for the case of one-way communication from suspicious user A to user B. When is small (e.g., dB curve in Fig. 7), the monitor will perform passive eavesdropping. When is sufficiently large (starting from dB), the monitor will jam to assist eavesdropping for a larger eavesdropping success probability. We can see that as increases, the monitor will jam more channels by optimally controlling the trade-off between own goal probability and transmission rate. When is further large (e.g., dB), the monitor will optimally jam channels to overhear the lowest-rate suspicious communication in the remaining single channel, without worrying about the own goal of self-jamming. This result is consistent with Proposition 4.4.
Then we consider the passive eavesdropping as a benchmark for performance comparison. We set the mean channel power gain of the suspicious communication link to be and jamming power budget to be dB. Here we consider the monitor is far away from the ST and SR, thus the mean channel power gains of eavesdropping channels and jamming channels are nearly the same, i.e., .
Fig. 7 shows the eavesdropping success probability as a function of and mean channel power gain of eavesdropping and jamming links. As their mean channel power gains increase, eavesdropping success probabilities of both jamming-assisted and passive eavesdropping increase. But jamming-assisted eavesdropping greatly outperforms passive eavesdropping. The performance of jamming-assisted eavesdropping is better when total number of channels is smaller (e.g., in Fig. 7), as the monitor can more efficiently induce the suspicious link to use a smaller subset of unjammed channels and a lower transmission rate under the same jamming power budget. While the performance gain of jamming-assisted eavesdropping comparing with passive eavesdropping is greater when total number of channels is large (e.g., in Fig. 7), as more channels provides more degrees of freedom for jamming.
Next, we study the effect of the monitor’s location. To capture the effect of large-scale fading, we consider that for any two points with coordinates and in the two-dimensional (2D) ground plane, the mean channel power gain between the two points is inversely proportional to the square of their distance, i.e., 1/\lambda=1/\big{(}(x_{1}-x_{2})^{2}+(y_{1}-y_{2})^{2}\big{)}. The ST is located at , and the SR is located at . The distances are normalized with transmit power. The legitimate monitor is placed in different locations in this plane, and its jamming power budget is dB.
Fig. 8(a) shows the optimal number of jammed channels in different monitor’s locations in the 2D ground plane. When the monitor is close to the ST, passive eavesdropping can already provide good eavesdropping performance. When the monitor is moving away from the ST, passive eavesdropping can no longer provide good eavesdropping performance, and the monitor will jam more channels to lower the suspicious link’s transmission rate in order to overhear more clearly. When the monitor is close to the SR, which means now the efficiency of jamming is high, the monitor will jam most channels (up to ) for improving eavesdropping performance.
Fig. 8(b) and Fig. 8(c) compare the eavesdropping success probability of jamming-assisted eavesdropping and passive eavesdropping with different monitor’s locations in the 2D ground plane. As we can see, the eavesdropping success probability of passive eavesdropping is fully determined by the distance between the monitor and the ST, and a good eavesdropping performance can only be guaranteed when the monitor is close to the ST. While our proposed jamming-assisted eavesdropping greatly outperforms passive eavesdropping even when the monitor is not close to the ST, because it can efficiently jam the SR and drive the ST to transmit in a smaller subset of channels with a lower transmission rate so that the monitor can eavesdrop more effectively. The performance gain of jamming-assisted eavesdropping is significant when the monitor is close to the SR, since now the efficiency of jamming is high. This clearly shows that passive eavesdropping is dramatically sensitive to the ST-monitor distance, while our proposed jamming-assisted eavesdropping is no longer that sensitive even when the monitor is geometrically far away from the ST.
Finally, we examine the performance of jamming-assisted eavesdropping in two-way communications. Here we still assume the mean channel power gain between any two points is inversely proportional to the square of their distance, similar to the previous simulation. Suspicious user A is located at and suspicious user B at . The legitimate monitor can be at any point between and to eavesdrop the two-way communications, and its jamming power budget is set to dB. We provide two benchmark cases for performance comparison with our optimal solution. Benchmark tells that the monitor just focuses on the one-way communication from A to B, and jams channels according to the one-way surveillance problem in (P3). Meanwhile, benchmark focuses on the one-way communication from B to A, and jams channels.
Fig. 9(a) compares the optimal number of jammed channels in (P4) with and when the monitor moves horizontally between and . Fig. 9(b) shows the eavesdropping success probability versus the monitor’s location in two-way communications. We have the following observations.
- •
When the monitor is between and , it is far away from user B and the overall eavesdropping performance is bottlenecked by user B as the ST, thus jamming channels will give the best eavesdropping performance as the optimal . Note that is smaller than () in this case, since user A is much closer to the monitor than user B, which is consistent with Fig. 8(a) in the sense that the monitor will jam more channels when it is moving away from the ST.
- •
When the monitor is moving from to , it is getting closer to user A than user B, thus the eavesdropping performance of benchmark improves more significantly than that of benchmark . Still, outperforms benchmarks and . Note that is greater than in this case, because now the monitor is very close to user A, and according to Fig. 8(a), the monitor will jam most channels when it is close to the SR.
- •
When the monitor is between and , the monitor’s distances to users A and B are close, thus both benchmarks and are symmetric and achieve the optimal eavesdropping performance as . Note that in Fig. 9(b) the sharp performance increase of benchmarks and at point is caused by changing the number of jammed channels. Taking as an example, the monitor is moving closer to user B (SR in ’s point of view), and at the point , the monitor increases the number of jammed channels due to better jamming efficiency, which causes the obvious eavesdropping performance change.
Finally, the eavesdropping success probability reaches the maximum when the monitor is at , since now the monitor’s distances to user A and user B are the same. The eavesdropping performance analysis of the monitor moving from to is similar as above by symmetry.
VII Conclusions
This paper proposes a new wireless security model, which is jamming-assisted legitimate eavesdropping over parallel independently fading channels. The legitimate monitor uses jamming in order to achieve better eavesdropping performance. Assuming Rayleigh fading, we formulate the optimization problem for jamming design as a mixed integer nonlinear programming (MINLP). Despite its non-convexity, we show that the legitimate monitor should use the maximum jamming power for the best eavesdropping performance if it decides to jam. Then we simplify the MINLP to integer programming and further show that there is a trade-off in deciding the number of jammed channels in the general multi-channel case, where jamming more channels helps reduce the suspicious communication rate for overhearing more clearly, but at the risk that the ST is more likely to choose jammed channels to transmit and as a result cannot be overheard. Finally, we extend our study to two-way communications, and show another trade-off in deciding the common jammed channels for balancing the bidirectional eavesdropping performances. Numerical results show that our jamming-assisted eavesdropping schemes greatly improve eavesdropping success probability comparing with conventional passive eavesdropping.
This work can be extended in various directions. For example, the suspicious link can transmit at multiple channels and perform combining at the receiver, or there can be multiple suspicious link pairs, which will bring more challenges to legitimate eavesdropping. The more general case of parallel channels with correlated (non-independent) fading is also worth investigating in future work.
Appendix
VII-A Proof of Lemma 2.1
We aim to show the distribution of SINR on jammed channel . Denote its numerator and denominator as and , respectively. As and follow independent exponential distributions with mean and , respectively, we have
[TABLE]
[TABLE]
The probability density function (PDF) of can be calculated as follows
[TABLE]
With the help of [25, Eq. ], we have
[TABLE]
and the CDF of can be calculated as
[TABLE]
VII-B Proof of Proposition 4.1
For certain jamming scheme , the own goal probability can be expressed as
[TABLE]
There exists a jamming scheme , where the monitor reduces jamming power on channel to with , for which
[TABLE]
Clearly, is larger than .
For certain jamming scheme , the transmission rate of the ST satisfies
[TABLE]
There exists a jamming scheme , where the monitor reduces jamming power on channel to , for which
[TABLE]
Similar to the proof of Proposition 3.2, is larger than , while maintaining the same target outage probability at the receiver, but the non-outage probability at the monitor will decrease due to the higher transmission rate .
From above, if the jamming power on any jammed channel decreases, the product of non-outage probability and non-own-goal probability at the monitor, i.e. the eavesdropping success probability, will degenerate. So the monitor will always use up all the jamming power.
Further since all channels are i.i.d. fading, by symmetry it is optimal to allocate the same amount of jamming power over jammed channels. Thus, if of channels are jammed, the monitor should evenly allocate all the jamming power over jammed channels, i.e., .
VII-C Proofs of Propositions 3.1 and 4.2
We first prove that the own goal probability increases as the number of jammed channels increases.
Assuming out of channels are jammed, the own goal probability can be expressed as
[TABLE]
If now channels are jammed, then the own goal probability becomes
[TABLE]
Since the number of jammed channels changes from to , the jamming power on each jammed channel gets smaller, which makes them easier to be chosen by the ST for transmission. Also, there are more jammed channels (from to ) and less unjammed channels (from to ). Combining these two effects, clearly as the number of jammed channels increases, the own goal probability will also increase.
Note that Proposition 3.1 is a special case of Proposition 4.2 and it is sufficient to prove Proposition 4.2 here. Denote and , the CDFs of and are given in (1) and (2), respectively. Then we have
[TABLE]
where is the PDF of the maximum SNR of the unjammed channels. Thus we have
[TABLE]
[TABLE]
[TABLE]
[TABLE]
where equality comes from the fact that the total number of channels and the number of jammed channels are both integers, following the binomial expansion of the two polynomial terms; and equality comes from reference [25, Eq. ], and is the incomplete Gamma function. Note that , which completes the proof of Proposition 3.1 with and .
VII-D Proof of Proposition 4.3
Denote . We define the LHS of (17) as , which is the outage probability at the SR. Then we have
[TABLE]
By taking the first-order derivative of this implicit function over and , we have the relationship between and as follows
[TABLE]
We then can explicitly derive
[TABLE]
and according to inequality for any , we have
[TABLE]
For , as the transmission rate increases, outage probability at the SR increases, thus
[TABLE]
Combining (22) and (23), we have
[TABLE]
By substituting back, we have
[TABLE]
Thus, as the number of jammed channels increases, the transmission rate decreases.
VII-E Proof of Proposition 5.1
Consider the expression of eavesdropping success probability in (15), which is the product of non-own goal probability multiplied by non-outage probability at the monitor .
For any fixed , as jamming power budget increases, the first part, non-own goal probability, increases, since the jammed channels become less likely to be chosen by the suspicious link. The second part, non-outage probability at the monitor, also increases, since the suspicious link will transmit at a lower rate to maintain target outage probability and the monitor can eavesdrop more clearly. Thus monotonically increases with for any fixed .
For , we can see from (20) that
[TABLE]
and from (21), we can see that
[TABLE]
Thus there exists a unique solution , so that
[TABLE]
and we call this solution as .
By assuming is unimodal or monotonic in , if , from we can conclude that now monotonically decreases with . For , we can derive so that when , decreases with . Define , when , both and decrease with , thus it is optimal for the monitor to jam channel.
Similarly for , we can see from (20) that
[TABLE]
and from (21), we can see that
[TABLE]
There exists a unique solution , so that
[TABLE]
and we call this solution as .
By assuming is unimodal or monotonic in , if , from we can conclude that now monotonically increases with . Similarly for , we can derive so that when , increases with . Define , when , both and increase with , thus it is optimal for the monitor to jam channels.
When , at least one of and is unimodal. Without loss of generality, we assume , clearly when , both and are monotonically increasing, and when , both and are monotonically decreasing. Thus must lie between and , and can be numerically searched.
The reference list from the paper itself. Each links out to its DOI / PubMed record.
- 1[1] Y. Zou, J. Zhu, X. Wang, and L. Hanzo, “A survey on wireless security: Technical challenges, recent advances, and future trends,” Proc. IEEE , vol. 104, no. 9, pp. 1727–1765, Sept. 2016.
- 2[2] J. Li and A. P. Petropulu, “On beamforming solution for secrecy capacity of MIMO wiretap channels,” in Proc. IEEE GLOBECOM , Dec. 2011, pp. 889–892.
- 3[3] G. T. Amariucai and S. Wei, “Half-duplex active eavesdropping in fast-fading channels: A block-markov Wyner secrecy encoding scheme,” IEEE Trans. Inform. Theory , vol. 58, no. 7, pp. 4660–4677, Jul. 2012.
- 4[4] A. Mukherjee and A. L. Swindlehurst, “A full-duplex active eavesdropper in MIMO wiretap channels: Construction and countermeasures,” in Proc. ASILOMAR , Nov. 2011, pp. 265–269.
- 5[5] K. Ren, H. Su, and Q. Wang, “Secret key generation exploiting channel characteristics in wireless communications,” IEEE Trans. Inform. Theory , vol. 18, no. 4, pp. 6–12, Aug. 2011.
- 6[6] K. Wang, L. Yuan, T. Miyazhaki, D. Zeng, S. Guo and Y. Sun, “Strategic antieavesdropping game for physical layer security in wireless cooperative networks,” IEEE Trans. Veh. Technol. , vol. 66, no. 10, pp. 9448–9457, May 2017.
- 7[7] V. Navda, A. Bohra, S. Ganguly, and D. Rubenstein, “Using channel hopping to increase 802.11 resilience to jamming attacks,” in Proc. IEEE INFOCOM , May 2007, pp. 2526–2530.
- 8[8] A. Kashyap, T. Basar, and R. Srikant, “Correlated jamming on MIMO Gaussian fading channels,” IEEE Trans. Inform. Theory , vol. 50, no. 9, pp. 2119–2123, Sept. 2004.
