{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,9]],"date-time":"2026-01-09T20:30:59Z","timestamp":1767990659679,"version":"3.49.0"},"reference-count":35,"publisher":"Association for Computing Machinery (ACM)","issue":"4","license":[{"start":{"date-parts":[[2022,12,5]],"date-time":"2022-12-05T00:00:00Z","timestamp":1670198400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["Digital Threats"],"published-print":{"date-parts":[[2022,12,31]]},"abstract":"<jats:p>MAC-layer spoofing, also known as identity spoofing, is recognized as a serious problem in many practical wireless systems. IoT systems are particularly vulnerable to this type of attack as IoT devices (due to their various limitations) are often incapable of deploying advanced MAC-layer spoofing prevention and detection techniques, such as cryptographic authentication. Signal-level device fingerprinting is an approach to identity spoofing detection that is highly suitable for sensor-based IoT networks but can be also utilized in many other types of wireless systems. Previous research works on signal-level device fingerprinting have been based on rather simplistic assumptions about both the adversary\u2019s behavior and the operation of the defense system. The goal of our work was to examine the effectiveness of a novel system that combines signal-level device fingerprinting with the principles of Randomized Moving Target Defense (RMTD) when dealing with a very advanced adversary. The obtained results show that our RMTD-enhanced signal-level device fingerprinting technique exhibits far superior defense performance over the non-RMTD techniques previously discussed in the literature and, as such, could be of great value for practical wireless systems subjected to identity spoofing attacks. We have also introduced a novel proof-of-concept adaptive parameter tuning approach for system practitioners with the ability to encode their risk profile and compute the most efficient hyper-parameters of our proposed defense system.<\/jats:p>","DOI":"10.1145\/3477403","type":"journal-article","created":{"date-parts":[[2022,4,8]],"date-time":"2022-04-08T06:00:48Z","timestamp":1649397648000},"page":"1-24","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":9,"title":["Randomized Moving Target Approach for MAC-Layer Spoofing Detection and Prevention in IoT Systems"],"prefix":"10.1145","volume":"3","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-4474-8817","authenticated-orcid":false,"given":"Pooria","family":"Madani","sequence":"first","affiliation":[{"name":"Department of Electrical Engineering and Computer Science, York University, Toronto, Ontario, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9921-0128","authenticated-orcid":false,"given":"Natalija","family":"Vlajic","sequence":"additional","affiliation":[{"name":"Department of Electrical Engineering and Computer Science, York University, Toronto, Ontario, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9769-8879","authenticated-orcid":false,"given":"Ivo","family":"Maljevic","sequence":"additional","affiliation":[{"name":"Department of Technology Strategy, Telus Communications Inc., Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2022,12,5]]},"reference":[{"key":"e_1_3_2_2_2","doi-asserted-by":"crossref","first-page":"53","DOI":"10.1145\/1998412.1998424","volume-title":"Proceedings of the 4th ACM Conference on Wireless Network Security","author":"Ahmad Md Sohail","year":"2011","unstructured":"Md Sohail Ahmad and Shashank Tadakamadla. 2011. Short paper: Security evaluation of IEEE 802.11 w specification. In Proceedings of the 4th ACM Conference on Wireless Network Security. 53\u201358."},{"key":"e_1_3_2_3_2","doi-asserted-by":"publisher","DOI":"10.1145\/2661829.2662047"},{"key":"e_1_3_2_4_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-40994-3_25"},{"key":"e_1_3_2_5_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.patcog.2018.07.023"},{"key":"e_1_3_2_6_2","first-page":"193","volume-title":"4th Annual IEEE Communications Society Conference on Sensor, Mesh and Ad Hoc Communications and Networks","author":"Chen Yingying","year":"2007","unstructured":"Yingying Chen, Wade Trappe, and Richard P. Martin. 2007. Detecting and localizing wireless spoofing attacks. In 4th Annual IEEE Communications Society Conference on Sensor, Mesh and Ad Hoc Communications and Networks. IEEE, 193\u2013202."},{"key":"e_1_3_2_7_2","doi-asserted-by":"crossref","first-page":"18","DOI":"10.1109\/ISI.2012.6283222","volume-title":"2012 IEEE International Conference on Intelligence and Security Informatics","author":"Colbaugh Richard","year":"2012","unstructured":"Richard Colbaugh and Kristin Glass. 2012. Predictive defense against evolving adversaries. In 2012 IEEE International Conference on Intelligence and Security Informatics. IEEE, 18\u201323."},{"key":"e_1_3_2_8_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.ins.2013.03.022"},{"key":"e_1_3_2_9_2","first-page":"5\u2013pp","volume-title":"2006 International Symposium on a World of Wireless, Mobile and Multimedia Networks (WoWMoM\u201906)","author":"Demirbas Murat","year":"2006","unstructured":"Murat Demirbas and Youngwhan Song. 2006. An RSSI-based scheme for Sybil attack detection in wireless sensor networks. In 2006 International Symposium on a World of Wireless, Mobile and Multimedia Networks (WoWMoM\u201906). IEEE, 5\u2013pp."},{"key":"e_1_3_2_10_2","article-title":"Computing the complete Pareto front","author":"Ehlers R\u00fcdiger","year":"2015","unstructured":"R\u00fcdiger Ehlers. 2015. Computing the complete Pareto front. arXiv preprint arXiv:1512.05207 (2015).","journal-title":"arXiv preprint arXiv:1512.05207"},{"key":"e_1_3_2_11_2","doi-asserted-by":"publisher","DOI":"10.1145\/1161289.1161298"},{"key":"e_1_3_2_12_2","first-page":"1","volume-title":"2010 IEEE Global Telecommunications Conference (GLOBECOM\u201910)","author":"Gonzales Harold","year":"2010","unstructured":"Harold Gonzales, Kevin Bauer, Janne Lindqvist, Damon McCoy, and Douglas Sicker. 2010. Practical defenses for evil twin attacks in 802.11. In 2010 IEEE Global Telecommunications Conference (GLOBECOM\u201910). IEEE, 1\u20136."},{"key":"e_1_3_2_13_2","first-page":"48","volume-title":"2nd IEEE International Conference on Computer Science and Information Technology","author":"Lashkari Arash Habibi","year":"2009","unstructured":"Arash Habibi Lashkari, Mir Mohammad Seyed Danesh, and Behrang Samadi. 2009. A survey on wireless security protocols (WEP, WPA and WPA2\/802.11 i). In 2nd IEEE International Conference on Computer Science and Information Technology. IEEE, 48\u201352."},{"key":"e_1_3_2_14_2","doi-asserted-by":"publisher","DOI":"10.2200\/S00735ED1V01Y201609SPT018"},{"key":"e_1_3_2_15_2","doi-asserted-by":"publisher","DOI":"10.1145\/1081870.1081950"},{"key":"e_1_3_2_16_2","doi-asserted-by":"publisher","DOI":"10.1145\/3339252.3340520"},{"issue":"4","key":"e_1_3_2_17_2","doi-asserted-by":"crossref","first-page":"1015","DOI":"10.21917\/ijct.2014.0145","article-title":"RSSI based location estimation in a Wi-Fi environment: An experimental study","volume":"5","author":"Madhan M. Ganesh","year":"2014","unstructured":"M. Ganesh Madhan, U. Susaritha, R. Ragupathi, and Ashita Priya Thomas. 2014. RSSI based location estimation in a Wi-Fi environment: An experimental study. ICTACT Journal on Communication Technology 5, 4 (2014), 1015\u20131018.","journal-title":"ICTACT Journal on Communication Technology"},{"key":"e_1_3_2_18_2","first-page":"247","volume-title":"European Symposium on Research in Computer Security","author":"Maiti Rajib Ranjan","year":"2017","unstructured":"Rajib Ranjan Maiti, Sandra Siby, Ragav Sridharan, and Nils Ole Tippenhauer. 2017. Link-layer device type classification on encrypted wireless traffic with COTS radios. In European Symposium on Research in Computer Security. Springer, 247\u2013264."},{"issue":"1","key":"e_1_3_2_19_2","first-page":"65","article-title":"RSSAT: A wireless intrusion detection system based on received signal strength acceptance test","volume":"4","author":"Moosavirad S. Mobarakeh","year":"2013","unstructured":"S. Mobarakeh Moosavirad, Peyman Kabiri, and Hamidreza Mahini. 2013. RSSAT: A wireless intrusion detection system based on received signal strength acceptance test. Journal of Advances in Computer Research 4, 1 (2013), 65\u201380.","journal-title":"Journal of Advances in Computer Research"},{"key":"e_1_3_2_20_2","doi-asserted-by":"publisher","DOI":"10.5555\/2503308.2343688"},{"key":"e_1_3_2_21_2","first-page":"92","volume-title":"International Workshop on Privacy and Security Issues in Data Mining and Machine Learning","author":"Nelson Blaine","year":"2010","unstructured":"Blaine Nelson, Benjamin I. P. Rubinstein, Ling Huang, Anthony D. Joseph, and J. D. Tygar. 2010. Classifier evasion: Models and open problems. In International Workshop on Privacy and Security Issues in Data Mining and Machine Learning. Springer, 92\u201398."},{"key":"e_1_3_2_22_2","doi-asserted-by":"publisher","DOI":"10.1007\/s00291-010-0224-1"},{"key":"e_1_3_2_23_2","unstructured":"CSIA NITRD. 2013. IWG: Cybersecurity game-change research and development recommendations."},{"issue":"2","key":"e_1_3_2_24_2","first-page":"1","article-title":"Outdoor localization system using RSSI measurement of wireless sensor network","volume":"2","author":"Oguejiofor O.","year":"2013","unstructured":"O. Oguejiofor, V. Okorogu, Abe Adewale, and B. Osuesu. 2013. Outdoor localization system using RSSI measurement of wireless sensor network. International Journal of Innovative Technology and Exploring Engineering 2, 2 (2013), 1\u20136.","journal-title":"International Journal of Innovative Technology and Exploring Engineering"},{"key":"e_1_3_2_25_2","volume-title":"Manuel D\u2019\u00e9conomie Politique","author":"Pareto Vilfredo","year":"1909","unstructured":"Vilfredo Pareto. 1909. Manuel D\u2019\u00e9conomie Politique. Vol. 38. Giard & Bri\u00e8re."},{"key":"e_1_3_2_26_2","doi-asserted-by":"crossref","unstructured":"Christian Robert. 2014. Machine Learning a Probabilistic Perspective. 27 2 (4 2014) 62\u201363. 10.1080\/09332480.2014.914768","DOI":"10.1080\/09332480.2014.914768"},{"key":"e_1_3_2_27_2","doi-asserted-by":"crossref","unstructured":"Christian Robert. 2014. Machine learning a probabilistic perspective.","DOI":"10.1080\/09332480.2014.914768"},{"key":"e_1_3_2_28_2","volume-title":"Theory of Multiobjective Optimization","author":"Sawaragi Yoshikazu","year":"1985","unstructured":"Yoshikazu Sawaragi, Hirotaka Nakayama, and Tetsuzo Tanino. 1985. Theory of Multiobjective Optimization. Academic Press, 296 pages."},{"key":"e_1_3_2_29_2","first-page":"1768","volume-title":"IEEE INFOCOM 27th Conference on Computer Communications","author":"Sheng Yong","year":"2008","unstructured":"Yong Sheng, Keren Tan, Guanling Chen, David Kotz, and Andrew Campbell. 2008. Detecting 802.11 MAC layer spoofing using received signal strength. In IEEE INFOCOM 27th Conference on Computer Communications. IEEE, 1768\u20131776."},{"key":"e_1_3_2_30_2","first-page":"201","volume-title":"International Conference on E-Business and Telecommunications","author":"Tao Kai","year":"2007","unstructured":"Kai Tao, Jing Li, and Srinivas Sampalli. 2007. Detection of spoofed MAC addresses in 802.11 wireless networks. In International Conference on E-Business and Telecommunications. Springer, 201\u2013213."},{"key":"e_1_3_2_31_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-12331-3_3"},{"key":"e_1_3_2_32_2","first-page":"485","volume-title":"AAMAS","author":"Vorobeychik Yevgeniy","year":"2014","unstructured":"Yevgeniy Vorobeychik and Bo Li. 2014. Optimal randomized classification in adversarial settings. In AAMAS. 485\u2013492."},{"key":"e_1_3_2_33_2","doi-asserted-by":"crossref","first-page":"468","DOI":"10.1007\/978-3-642-48782-8_32","volume-title":"Multiple Criteria Decision Making Theory and Application","author":"Wierzbicki Andrzej P.","year":"1980","unstructured":"Andrzej P. Wierzbicki. 1980. The use of reference objectives in multiobjective optimization. In Multiple Criteria Decision Making Theory and Application. Springer, 468\u2013486."},{"key":"e_1_3_2_34_2","doi-asserted-by":"publisher","DOI":"10.1109\/mc.2002.1039518"},{"issue":"8","key":"e_1_3_2_35_2","doi-asserted-by":"crossref","first-page":"155014771879583","DOI":"10.1177\/1550147718795838","article-title":"PRAPD: A novel received signal strength\u2013based approach for practical rogue access point detection","volume":"14","author":"Wu Wenjia","year":"2018","unstructured":"Wenjia Wu, Xiaolin Gu, Kai Dong, Xiaomin Shi, and Ming Yang. 2018. PRAPD: A novel received signal strength\u2013based approach for practical rogue access point detection. International Journal of Distributed Sensor Networks 14, 8 (2018), 1550147718795838.","journal-title":"International Journal of Distributed Sensor Networks"},{"key":"e_1_3_2_36_2","doi-asserted-by":"crossref","first-page":"2392","DOI":"10.1109\/INFCOM.2009.5062166","volume-title":"IEEE INFOCOM 2009","author":"Yang Zheng","year":"2009","unstructured":"Zheng Yang, Yunhao Liu, and X. -Y. Li. 2009. Beyond trilateration: On the localizability of wireless ad-hoc networks. In IEEE INFOCOM 2009. IEEE, 2392\u20132400."}],"container-title":["Digital Threats: Research and Practice"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3477403","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3477403","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T19:30:32Z","timestamp":1750188632000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3477403"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022,12,5]]},"references-count":35,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2022,12,31]]}},"alternative-id":["10.1145\/3477403"],"URL":"https:\/\/doi.org\/10.1145\/3477403","relation":{},"ISSN":["2692-1626","2576-5337"],"issn-type":[{"value":"2692-1626","type":"print"},{"value":"2576-5337","type":"electronic"}],"subject":[],"published":{"date-parts":[[2022,12,5]]},"assertion":[{"value":"2021-01-15","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2021-07-22","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2022-12-05","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}