Resilient Random Time-hopping Reply against Distance Attacks in UWB Ranging
Wenlong Gou, Chuanhang Yu, Gang Wu
TL;DR
The paper tackles distance-reduction (e.g., Ghost Peak) attacks in UWB ranging by introducing a secure ranging scheme that employs random time-hopping without extra signaling and remains compatible with IEEE 802.15.4a/z. It combines the time-hopping DS-TWR method with an attack-detection module based on channel reciprocity and autoencoders, enabling dynamic switching to a higher-security mode when threats are detected. Theoretical analysis yields an attack-probability bound and a gain factor that scales with the randomized delay range, while simulations and hardware experiments demonstrate substantial reductions in attack success probability, down to near 0% in tested scenarios. The approach offers a low-overhead, backward-compatible enhancement to UWB security, with practical validation on commercial chips and clear avenues for broader network and frame-format optimization in the future.
Abstract
In order to mitigate the distance reduction attack in Ultra-Wide Band (UWB) ranging, this paper proposes a secure ranging scheme based on a random time-hopping mechanism without redundant signaling overhead. Additionally, a secure ranging strategy is designed for backward compatibility with existing standards such as IEEE 802.15.4a/z, combined with an attack detection scheme. The effectiveness and feasibility of the proposed strategy are demonstrated through both simulation and experimental results in the case of the Ghost Peak attack, as demonstrated by Patrick Leu et al. The random time-hopping mechanism is verified to be capable of reducing the success rate of distance reduction attacks to less than 0.01%, thereby significantly enhancing the security of UWB ranging.