Security enhancement for OFDM-UWOC system using three-layer chaotic encryption and chaotic DFT precoding

Huan Deng; Zihao Du; Jianmin Xiong; Xingqi Yang; Yan Hua; Jing Xu

doi:10.3788/COL202220.110601

1. Introduction

To meet the increasing demand for underwater activities, such as ocean explorations and rescue missions, underwater wireless sensor networks (UWSNs)^[1] are expected to be widely used in the near future. Underwater radio frequency (RF) signals are critically attenuated, and the transmission rate of underwater acoustic communication (UAC) is very low. By contrast, underwater wireless optical communication (UWOC) has the characteristics of high bandwidth and low latency, which plays a significant supplementary role in fulfilling the requirements of UWSNs.

UWOC is customarily regarded as highly secure compared with UAC since the light source is highly directional and has limited penetration distance in common waters^[2,3]. Thus, UWOC has been investigated less to figure out and solve potential security issues, and its research activities mainly focus on improving data rate, transmission distance, and link alignment^[4–6]. From a wireless coverage perspective, security and privacy are also important in accessing information^[7].

A UWOC system does not inherently provide a secure transmission link, making it easy for attackers to capture information. In seawater, especially for long-reach transmission, the scattering effect will make the received light spot much larger than the detection area, thereby increasing the risk of signal eavesdropping^[2]. Besides, eavesdroppers can place a mirror or diffraction grating^[8] somewhere between the transmitter and receiver to tap light from the line-of-sight beam. To reduce the difficulty of alignment, an omni-directional light source^[9] and a wide-beam laser diode (LD)^[10] are also widely used in UWOC, which undoubtedly increase the probability of information leakage. Simultaneously, potential attackers may also use the non-line-of-sight channel formed by the scattered light^[11,12] with increased concealment. Currently, there are not many solutions available to address UWOC security. Underwater quantum communication generally supports a low communication rate ( $< 1 kbit / s$ )^[13–15]. References [16,17] used phase deflection and a higher-order modulated stream to encrypt data, respectively. Chaotic encryption technology has excellent pseudo-randomness and sensitivity to initial conditions. In Ref. [18], optical discrete multi-tone (DMT) data was encrypted by digital chaos, which verified the feasibility of chaotic encryption in UWOC. The above-mentioned encryption schemes^[16–18] have a low encryption dimension and a small key space, which are vulnerable to attack after statistical analysis. Furthermore, they all failed to consider the extremely threatening chosen-plaintext attacks (CPAs), and thereby they are not enough for higher safety requirements.

In this Letter, we present a security-enhanced orthogonal frequency division multiplexing (OFDM) scheme based on three-layer chaotic encryption and chaotic discrete Fourier transform (DFT) precoding in a UWOC system, which can simultaneously guarantee sufficiently high security and transmission performance. The application of multiple hyperchaotic maps and multi-fold data encryption can improve the key space and reduce the risk of the scrambling method and chaotic model being destroyed by statistical analysis. Multiple hyperchaotic maps generate masking factors, implementing bit stream diffusion encryption, in-phase/quadrature (IQ) encryption, time-frequency dimensional scrambling, and chaotic DFT precoding in OFDM. The chaotic DFT precoding matrix is generated to reduce the peak to average power ratio (PAPR) and bit error rates (BERs). The chaotic DFT precoding matrix is obtained by introducing chaotic sequences into the standard DFT matrix for phase encryption and column permutation. Hence, it is more difficult to crack than the encrypted DFT matrix in Refs. [18,19]. To verify the feasibility of the scheme, a 3 Gbit/s encrypted 16-quadrature amplitude modulation (16-QAM) OFDM signal is successfully demonstrated over a 7 m UWOC link. The encryption system is tested and analyzed to have higher security with a key space of $9.7 \times 10^{179}$ and can resist brute force attacks (BFAs) and CPAs, achieving the higher confidentiality of information transmission.

2. Principles

The concept of the proposed security-enhanced OFDM system for UWOC based on three-layer chaotic encryption and chaotic DFT precoding is shown in Fig. 1. The key-driven hyperchaotic maps are used to generate masking factors. It has been proved that signals encrypted by low-dimensional chaotic maps are not always safe^[20]. Hyperchaotic maps can generate dynamic trajectories with more randomness in high-dimensional space and require more key parameters to recover. Hence, it is much more difficult for eavesdroppers to steal information from hyperchaotic encrypted signals than low-dimensional ones. At the transmitter, the input data is encrypted by bidirectional diffusion and then mapped to QAM for IQ encryption. Subsequently, the OFDM frame is further scrambled in the time-frequency dimension^[21,22]. Finally, chaotic DFT precoding is employed to reduce the PAPR. The application of multi-hyperchaotic encryption can effectively hide the original information and increase the keyspace. The signal demodulation and decryption operation at the receiver is the reverse of the transmitter.

Figure 1.Block diagram of the secure OFDM-UWOC based on three-layer chaotic encryption and chaotic DFT precoding.

Download full size

View all figures

2.1. Diffuse encryption

Bidirectional diffusion in cryptography makes each bit in the plaintext affect many bits in the ciphertext. Here, a four-dimensional (4D) hyperchaotic Chen system is applied to generate chaotic sequences for bidirectional diffusion^[23]: ${\begin{cases} \partial x_{1} / \partial t = a_{1} (y_{1} - x_{1}) + u_{1} \\ \partial y_{1} / \partial t = d_{1} x_{1} - x_{1} z_{1} + c_{1} y_{1} \\ \partial z_{1} / \partial t = x_{1} y_{1} - b_{1} z_{1} \\ \partial u_{1} / \partial t = y_{1} z_{1} + r_{1} u_{1} \end{cases} .$ (1)

When $a_{1} = 35$ , $b_{1} = 3$ , $c_{1} = 12$ , $d_{1} = 7$ , and $0.085 \leq r_{1} \leq 0.798$ , the system is in a chaotic state. From Eq. (1), four chaotic sequences $X_{1} = {x_{1} (i)}$ , $Y_{1} = {y_{1} (i)}$ , $Z_{1} = {z_{1} (i)}$ , and $U_{1} = {u_{1} (i)}$ can be obtained. Key1 of bidirectional diffusion is ${r_{1} = 0.16, x_{1} (0) = 1, y_{1} (0) = 2, z_{1} (0) = 1, u_{1} (0) = 1}$ . The specific diffusion process is as follows.

Step 1. Original data and chaotic sequence pre-processing. To improve the efficiency of processing data, the original bit stream is first converted into a data stream $P$ with $t$ ( $t = 8$ ) bits as a unit, and the length of $P$ is denoted as $L_{P}$ . A new chaotic sequence $S_{1}$ is composed of sequences $X_{1}$ and $Z_{1}$ , and the combination process is $S_{1} = {X_{1} (j), Z_{1} (j) | j = 1, 2, \dots, L_{P} / 2}$ . Similarly, $Y_{1}$ and $U_{1}$ form a new sequence $S_{2}$ . The sequences $S_{1}$ and $S_{2}$ have the same length as $P$ , and they are further processed as ${\begin{matrix} K_{1} (i) = \mod (floor ((| S_{1} (i) | - floor (| S_{1} (i) |)) \times 10^{15}), 2^{8}) \\ K_{2} (i) = \mod (floor ((| S_{2} (i) | - floor (| S_{2} (i) |)) \times 10^{15}), 2^{8}) \end{matrix} .$ (2)

The function $\mod (x, 2^{8})$ returns the remainder divided by $2^{8}$ , $floor (x)$ is rounding down. $K_{1}$ and $K_{2}$ sequences, both with the length of $L_{P}$ , consist of integers in the range of 0 to 255.

Step 2. Utilize $K_{1}$ to encrypt the plaintext $P$ by the XOR operation to form the encrypted data $C_{1}$ : $C_{1} (i) = C_{1} (i - 1) \oplus P (i) \oplus K_{1} (i),$ (3)where “ $\oplus$ ” is bitxor operation, and $i = 1, 2, \dots, L_{P}$ . When $i = 1$ is a particular case, we set $C_{1} (0)$ to 112 in the experiment.

Step 3. Let $C_{1}^{'} (0)= C_{1} (L_{P})$ and use Eq. (4) to get bidirectional diffusion of $C_{1}^{'}$ : $C_{1}^{'} (i) = C_{1}^{'} (i - 1) \oplus C_{1} (i) \oplus K_{2} (i) .$ (4)

Step 2 can diffuse the plaintext into the ciphertext to different degrees but fails to spread globally due to the single direction of the diffusion, and the following plaintext cannot be diffused to the preceding ciphertext. Hence, using bidirectional diffusion, each part of the binary plaintext information is fully diffused into the ciphertext to generate an utterly dynamic ciphertext. When the plaintext is changed, the entire ciphertext will produce irregular changes, which can effectively resist the CPAs.

2.2. IQ encryption

Then, the first layer of encrypted data $C_{1}^{'}$ is converted to binary data for QAM mapping to obtain symbol sequence $W$ . The hyperchaotic logistic mapping is used for IQ encryption and is defined as^[24] ${\begin{cases} x_{n + 1} = 4 λ_{1} x_{n} (1 - x_{n}) + γ y_{n} \\ y_{n + 1} = 4 λ_{2} y_{n} (1 - y_{n}) + γ x_{n} \end{cases},$ (5)where $γ = 0.1$ , and $λ_{1}$ , $λ_{2} \in [0.65, 0.9]$ . The values of the generated sequences $X_{2} = {x (i)}$ and $Y_{2} = {y (i)}$ range from 0 to 1. Key2 of IQ encryption in the second layer is ${λ_{1} = 0.9, λ_{2} = 0.9, x_{2} (0) = 0.01, y_{2} (0) = 0.12}$ . To generate IQ-encrypted sequences, the post-processing of $X_{2}$ and $Y_{2}$ to obtain the sequences $R$ and $I$ is described as ${\begin{cases} R (i) = 1 - round (X_{2} (i)) \times 2 \\ I (i) = 1 - round (Y_{2} (i)) \times 2 \end{cases},$ (6)where $R (i)$ , $I (i) \in {- 1, 1}$ , and two sequences $R$ and $I$ are used to encrypt the real and imaginary parts of the QAM symbol, respectively.

The encryption for the $k$ th QAM symbol $W_{k}$ in the symbol sequence can be expressed as $C_{2} (k) = Re (W_{k}) \cdot R (k) + j \cdot Im (W_{k}) \cdot I (k) .$ (7)

2.3. Time-frequency dimensional scrambling

After completing the IQ encryption in the second layer, the OFDM frames are scrambled in the time-frequency dimension^[21,22], as shown in Fig. 2. The third layer of encryption and chaotic DFT precoding apply a hyperchaotic Lorenz system, which is defined as follows^[25]: ${\begin{cases} \partial x_{3} / \partial t = a_{3} (- x_{3} + y_{3}) \\ \partial y_{3} / \partial t = c_{3} x_{3} - y_{3} - x_{3} z_{3} + u_{3} \\ \partial z_{3} / \partial t = x_{3} y_{3} - b_{3} z_{3} \\ \partial u_{3} / \partial t = - d_{3} x_{3} \end{cases},$ (8)where $a_{3} = 10$ , $b_{3} = 8 / 3$ , $c_{3} = 28$ , and $d_{3} \in [0, 21.75]$ , and key3 is { $d_{3} = 5$ , $x_{3} (0) = 3.5$ , $y_{3} (0) = 2.2$ , $z_{3} (0) = 1.7$ , $u_{3} (0) = 4.6$ }. Four chaotic sequences $X_{3}$ , $Y_{3}$ , $Z_{3}$ , and $U_{3}$ are generated by Eq. (8). $X_{3}$ is used for frequency-domain (row) permutation, and $Y_{3}$ is applied for time-domain (column) permutation. The dimension of sequences $X_{3}$ and $Y_{3}$ is $M \times L$ , where $M$ is the number of effective subcarriers, and $L$ is the number of symbols effectively transmitted in the OFDM frame.

Figure 2.Schematic diagram of time-frequency scrambling^[21].

Download full size

View all figures

The data matrix after IQ encryption can be expressed as $Q_{M \times L} = [\begin{matrix} Q_{11} & Q_{12} & \dots & Q_{1 L} \\ Q_{21} & Q_{22} & \dots & Q_{2 L} \\ ⋮ & ⋮ & ⋮ \\ Q_{M 1} & Q_{M 2} & \dots & Q_{M L} \end{matrix}] = [\begin{matrix} F_{1} \\ F_{2} \\ ⋮ \\ F_{M} \end{matrix}] .$ (9)

Equation (9) defines the row vectors of the data matrix as $F_{1}, F_{2}, \dots, F_{M}$ . Before the time-frequency permutation, the sequence $X_{3}$ is partitioned into $L$ parts, and then each part is ranked in ascending order separately to return and record the dynamic indices. $L$ position index sequences obtained by $X_{3}$ are used to reorder the frequency-domain data of the $L$ OFDM symbols, respectively, to realize row scrambling operation. The frequency-domain scrambled matrix can be represented by column vectors $T_{1}, T_{2}, \dots, T_{L}$ . The same operation is used to process $Y_{3}$ to obtain $M$ position index sequences and then scramble time-domain data of $M$ subcarriers, respectively. Time-frequency permutation is similar to bit interleaving, which can reduce the BER to some extent in the case of burst noise.

2.4. Chaotic DFT precoding

In this work, chaotic DFT precoding is adopted to reduce PAPR and increase the security of UWOC additionally^[18]. Chaotic DFT precoding can be realized by applying a combination of row–column phase encryption and column scrambling to the conventional DFT precoding matrix. The conventional DFT precoding matrix $D$ can be defined as^[19] $D_{m, l} = \frac{1}{\sqrt{M}} e^{- j 2 π (m - 1) (l - 1) / M}, 0 \leq m, l \leq M - 1,$ (10)where $m$ and $l$ are the row and column index of the standard DFT matrix: $D_{m, l}^{p} = \frac{1}{\sqrt{M}} e^{- j 2 π (m - Z_{3} (l)) (l - α) / M}, 0 \leq m, l \leq M - 1 .$ (11)

According to the above equation, the standard DFT matrix of $M \times M$ is row-phase encrypted using $M$ different values in the sequence $Z_{3}$ generated by Eq. (8), i.e., each row is subtracted by a different value $Z_{3} (l)$ , while the column-phase is encrypted using a constant $α = 6.35$ , which is from $Z_{3}$ . Finally, the sequence $U_{3}$ is used to perform a column scrambling on the whole of the phase encrypted DFT matrix $D^{p}$ to obtain our final chaotic encrypted DFT matrix $D^{p c}$ . Column scrambling of the DFT matrix is equivalent to input data scrambling.

Compared with other single and common chaotic mappings, the multiple hyperchaotic mappings used have more dimensions, leading to increased complexity and security of the UWOC encryption system, similar to the seven-dimensional (7D) chaotic mappings applied in Ref. [20]. However, once the encryption system is implemented in practical applications, we do not need to iterate multiple hyperchaotic systems or update the key sequence frequently until the key of the UWOC system changes. In this case, the major computation complexity would only come from the encryption at the system level^[18,20], as shown in Table 1. Here, the number of effective subcarriers is set to $M$ , the inverse fast Fourier transform (IFFT) size is $N$ , and only one OFDM symbol is used. In contrast, if we want to change the security key frequently to enhance the security of the UWOC further, the computational complexity of the hyperchaotic mapping iterations needs to be considered, as shown in Table 2.

Table 1. The Computation Complexity of Encryption Schemes

View table

View all Tables

Table 1. The Computation Complexity of Encryption Schemes

	Our Scheme	Ref. [20] (with DFT-S)	Ref. [18]
Real-valued multiplication	0	N²	0
Complex-valued multiplication	M² + N²	M²	M² + N²
Addition	M(M − 1) + N(N − 1)	3M(M − 1) + 2M × (2M − 1) + N(N − 1)	M(M − 1) + N(N − 1)

Table 2. The Computation Complexity of Chaos Systems

View table
View all Tables
Table 2. The Computation Complexity of Chaos Systems

Our Chaotic Systems 7D Chaos (Ref. [20]) Chaos Maps (Ref. [18])
Addition 104 221 5
Multiplication 110 118 10
Sine function 0 4 2

As mentioned above, there is a trade-off between security and complexity. It is worth mentioning that the UWOC encryption method in this Letter does not introduce any additional optical modules, and all of the encryption and decryption operations are performed in the digital signal processing (DSP), so the impact of the iterations of chaotic mapping is small^[26,27]. Moreover, an extra layer of encryption for communication systems represents an additional security guarantee. We believe that the study of using multiple hyperchaotic mappings to encrypt UWOC systems is worthwhile.

3. Experimental Setup

The experimental setup of the proposed high-security OFDM system for UWOC based on three-layer chaotic encryption and chaotic DFT precoding is shown in Fig. 3. At the transmitter, the bit streams are encrypted and loaded into an arbitrary waveform generator (AWG, Tektronix 70002A) at a sampling rate of 3.125 GSamples/s. The voltage amplitude of the output signal is appropriately adjusted using an amplifier (AMP) and a variable electronic attenuator (ATT). Subsequently, the encrypted signal is superimposed on a bias tee (Bias-T) with a direct current (DC) of 0.3414 A, so that the drive signal operates within the linear region of the blue LD. The blue light is collimated by a collimating lens (CL) and emitted into a 7 m water tank filled with tap water. At the receiver, the blue light is incident on an avalanche photodiode (APD210) after passing through a focusing lens (FL) and a variable optical ATT (VOA). Finally, the detected encrypted signals are captured via a mixed signal oscilloscope (MSO, Tektronix MSO71254C) at a sampling rate of 25 GSamples/s and processed offline by a personal computer (PC). The final data transmission rate is about 3 Gbit/s. Table 3 shows the detailed OFDM parameters of the UWOC system.

Table 3. Parameters of the OFDM-UWOC System

View table

View all Tables

Table 3. Parameters of the OFDM-UWOC System

OFDM Parameters	Values
Modulation format	16-QAM
Number of effective subcarriers	256
Inverse fast Fourier transform (IFFT) size	1024
Number of cyclic prefix (CP)	64
Number of subcarriers for gap near DC	8
Number of OFDM symbols	520

Figure 3.Experimental setup. Insets: (a) the transmitter module, (b) the water tank, and (c) the receiving module.

Download full size

View all figures

4. Performance and Safety Analysis

The PAPR and BER are utilized to evaluate the performance of our encryption scheme. Besides, image transmission is a typical digital communication application, so we tested the encryption scheme with image data to visualize the encryption performance. The complementary cumulative distribution functions (CCDFs) of PAPRs for the original and encrypted data are shown in Fig. 4.

Figure 4.Performance of PAPR for (a) original image data and (b) three-layer encrypted data under different conditions.

Download full size

View all figures

The PAPR decreases along with the auto-correlation coefficient of the input data reduction before the N-IFFT operation^[19]. Figure 4 shows that the chaotic DFT matrix can significantly reduce the PAPR of the original image and the three-layer encrypted data. Compared with the original image using the standard DFT method, the chaotic DFT scheme obtains a PAPR reduction of about 1.7 dB (CCDF: $1 \times 10^{- 3}$ ) owing to multiple scrambling operations. The PAPR performance of the image data after three-layer chaotic encryption is very close to that of the pseudo-random bit sequence (PRBS), where the order of PRBS is 26. Due to the relatively low auto-correlation of encrypted data, both the chaotic DFT and standard DFT matrix can achieve a PAPR reduction of about 2.6 dB (CCDF: $1 \times 10^{- 3}$ ). In Fig. 5(b), the BERs of the three-layer encrypted data using standard DFT and chaotic DFT are almost the same.

Figure 5.BER curves of normal and illegal receiver for (a) original image data and (b) three-layer encrypted data.

Download full size

View all figures

It can be further verified that our scheme can be used in UWOC with high confidentiality and solid BER performance. Figure 5 shows BER curves and constellation diagrams of the original image and the encrypted data. The legal receiver can correctly recover the data using the correct private key. In contrast, illegal receivers always obtain a BER of about 0.5 and cannot decrypt the message, even if they obtain most of the correct key, with only a slight difference of $10^{- 15}$ from $y_{1} (0)$ of key1. In the case of BFAs, the attacker receives an annulary distributed constellation since the chaotic DFT has the effect of phase encryption, as in Fig. 5(a), which perceives the encryption operation in the UWOC link. In general, the attacker utilizes all possible methods to restore the normal constellation diagram. However, the proposed UWOC system is still highly secure with multiple chaotic encryptions because they cannot easily detect the encryption operations in the bit stream, QAM, and time-frequency domain.

The randomness of chaotic systems and their high sensitivity to initial conditions are the basis of our encryption algorithm. Multiple hyperchaotic mappings can create a larger key space and increase the difficulty for attackers to crack. According to the Institute of Electrical and Electronics Engineers (IEEE) floating-point standard^[28], the computational precision of a 64 bit double-precision number is approximately $10^{- 15}$ . Thus, the key space of the whole encryption system can be approximately calculated as $(0.798 - 0.085) \times 10^{15} \times {(10^{15})}^{4} \times {[(0.9 - 0.65) \times 10^{15}]}^{2} \times 21.75 \times 10^{15} \times {(10^{15})}^{4} = 9.6923 \times 10^{179}$ . It takes at least $9.08 \times 10^{155}$ years to obtain the correct key by exhaustive enumeration with the $3.386 \times 10^{4} TFlop / s$ computation speed of the Tianhe-2 supercomputer^[18]. The key space of our encryption method is large enough to resist BFAs.

It is worth noting that two-layer encryption without diffusion has a better BER performance than three-layer encryption in Fig. 5(b). Owing to the XOR operation in the diffusion, which associates the front and back plaintexts, noise accumulation will happen when the ciphertext is decrypted. However, diffusion encryption can generate dynamic ciphertexts to resist the most threatening and aggressive CPAs, so the performance penalty is acceptable. In this paper, to obtain higher information security and ensure transmission performance, chaotic DFT precoding is adopted to compensate for the loss, even improving the reception sensitivity by about 1 dB.

To verify the anti-CPA ability of our encryption system, we give the variations of the ciphertext when changing 1 bit of the plaintext, as shown in Fig. 6. The 10th bit of the original binary plaintext has been changed in Fig. 6(a). Figure 6(b) indicates great difference between the new ciphertext obtained after the corresponding plaintext change and the original one in the same OFDM subcarrier, implying that the plaintext information has been sufficiently spread out to nearly all the data during the ciphertext generation process in the OFDM-based UWOC system. For clarity, Fig. 6(b) only shows the difference of ciphertext change on the first 60 OFDM subcarriers. Consequently, the proposed encryption system can mix up the relationship between the original data and the ciphertext to resist CPAs.

Figure 6.(a) Change 1 bit in plaintexts. (b) The difference of ciphertext change on the first 60 OFDM subcarriers.

Download full size

View all figures

5. Conclusion

In this Letter, we have proposed a security-enhanced OFDM scheme for UWOC using three-layer chaotic encryption and chaotic DFT precoding. Although there is a trade-off between security and system complexity, the experiment in this paper validates the transmission performance and feasibility of this scheme, which is also an additional way to achieve UWOC secure transmission. The three-layer encryption operations of OFDM symbols are diffusion, IQ encryption, and time-frequency scrambling in turn. Finally, chaotic DFT precoding compensates for BER deterioration, and the key space reaches $9.7 \times 10^{179}$ . Our encryption system can resist BFAs, statistical attacks, and CPAs, which has great potential for UWOC systems in the future with higher security requirements.

Category: Fiber Optics and Optical Communications

Received: Apr. 21, 2022

Accepted: May. 31, 2022

Published Online: Jul. 5, 2022

The Author Email: Jing Xu (jxu-optics@zju.edu.cn)

DOI:10.3788/COL202220.110601

Table 1. The Computation Complexity of Encryption Schemes

Table 1. The Computation Complexity of Encryption Schemes

Table 2. The Computation Complexity of Chaos Systems

Table 2. The Computation Complexity of Chaos Systems

Table 3. Parameters of the OFDM-UWOC System

Table 3. Parameters of the OFDM-UWOC System