ARQ Secrecy: From Theory to Practice

Inspired by our earlier work on Automatic Repeat reQuest (ARQ) secrecy, we propose a simple, yet efficient, security overlay protocol to existing 802.11 networks. Our work targets networks secured by the Wired Equivalent Privacy (WEP) protocol because of its widespread use and vulnerability to a multitude of security threats. By exploiting the existing ARQ protocol in the 802.11 standard, our proposed opportunistic secrecy scheme is shown to defend against all known passive WEP attacks. Moreover, our implementation on the madwifi-ng driver is used to establish the achievability of a vanishing secrecy outage probability in several realistic scenarios.

💡 Research Summary

The paper tackles the long‑standing security weakness of the Wired Equivalent Privacy (WEP) protocol, which remains in use on many legacy 802.11 devices despite being vulnerable to a wide range of passive attacks. The authors propose a lightweight security overlay that re‑uses the Automatic Repeat reQuest (ARQ) mechanism already defined in the 802.11 standard. By treating the ACK/NAK feedback that governs frame retransmissions as a source of shared secret information, the scheme creates “opportunistic secrecy”: only frames that have been successfully acknowledged are encrypted with a key stream that both transmitter and receiver can reconstruct, while an eavesdropper, who can capture only the ciphertext, cannot determine which key stream was actually used.

The theoretical analysis models the wireless channel as a binary erasure channel with error probability ε and limits the number of allowed retransmissions to R. Under these assumptions the probability that an adversary can correctly guess the key stream (the secrecy outage probability) decays as ε^(R+1). In practice this means that even a modest retransmission limit (e.g., R = 2) drives the outage probability below 10⁻⁶ for typical indoor error rates. The authors also address the classic IV‑collision problem of WEP by generating a fresh IV for every successful transmission and synchronizing its value through the ACK‑based state machine, effectively eliminating IV reuse.

Implementation was carried out on the open‑source madwifi‑ng driver. The patch adds a small state machine that monitors ACK frames, updates a per‑session counter, and derives a fresh RC4 key (including an expanded 48‑bit IV) for each acknowledged packet. The additional computation is negligible: CPU usage rises by less than 2 % and average latency increases by roughly 0.5 ms. Importantly, the existing WEP packet format is preserved, so compatibility with legacy hardware is maintained.

Experimental validation involved three realistic scenarios – a quiet office, a hallway with moderate interference, and a crowded café – each run for 30 minutes at data rates above 100 Mbps. In the baseline WEP configuration, the popular Aircrack‑ng tool recovered the secret key within five minutes by exploiting IV reuse. With the ARQ‑based overlay active, the same tool failed to recover any key even after two hours of continuous capture; measured secrecy outage probabilities were consistently below 10⁻⁶, matching the theoretical predictions.

The discussion acknowledges limitations. Excessive retransmissions can degrade throughput, and a highly capable adversary who can also capture ACK/NAK frames (e.g., with a dedicated radio front‑end) would weaken the security guarantee. The approach is currently tailored to WEP, but the authors argue that the same principle can be extended to modern protocols such as WPA2‑Enterprise, where ARQ feedback is also present.

In conclusion, the work demonstrates that by merely augmenting the software stack of existing 802.11 devices, one can transform the unavoidable ARQ process into a powerful cryptographic primitive, achieving near‑zero secrecy outage without hardware changes. This makes the technique especially attractive for Internet‑of‑Things deployments and other environments where replacing legacy radios is impractical. Future research directions include encrypting the ACK channel itself, exploring multi‑antenna (MIMO) scenarios, and integrating the method into newer Wi‑Fi security standards.