With advances in wireless communication and growing spectrum scarcity, Spectrum Access Systems (SASs) offer an opportunistic solution but face significant security challenges. Regulations require disclosure of location coordinates and transmission details, exposing user privacy and anonymity during spectrum queries, while the database operations themselves permit Denial-of-Service (DoS) attacks. As location-based services, SAS is also vulnerable to compromised or malicious users conducting spoofing attacks. These threats are further amplified given the quantum computing advancements. Thus, we propose QPADL, the first post-quantum (PQ) secure framework that simultaneously ensures privacy, anonymity, location verification, and DoS resilience while maintaining efficiency for large-scale spectrum access systems. QPADL introduces SAS-tailored private information retrieval for location privacy, a PQ-variant of Tor for anonymity, and employs advanced signature constructions for location verification alongside client puzzle protocols and rate-limiting technique for DoS defense. We formally assess its security and conduct a comprehensive performance evaluation, incorporating GPU parallelization and optimization strategies to demonstrate practicality and scalability.
翻译:随着无线通信技术的进步和频谱资源的日益稀缺,频谱接入系统(SAS)提供了一种机会性解决方案,但也面临着严峻的安全挑战。监管要求需披露位置坐标与传输细节,这在频谱查询过程中暴露了用户的隐私与匿名性,而数据库操作本身也易遭受拒绝服务(DoS)攻击。作为基于位置的服务,SAS同样易受已遭破坏或恶意的用户发起欺骗攻击。随着量子计算的发展,这些威胁进一步加剧。为此,我们提出了QPADL,这是首个后量子(PQ)安全框架,能同时确保隐私性、匿名性、位置验证与抗DoS能力,并保持大规模频谱接入系统的运行效率。QPADL引入了为SAS量身定制的私有信息检索机制以保护位置隐私,采用一种基于Tor的PQ变体实现匿名性,并利用先进的签名构造进行位置验证,同时结合客户端谜题协议与速率限制技术以防御DoS攻击。我们对其安全性进行了形式化评估,并开展了全面的性能测试,结合GPU并行化与优化策略,证明了该方案的实用性与可扩展性。
相关内容
微信扫码咨询专知VIP会员