Secret key agreement under an active attack in MU-TDD systems with large antenna arrays

We consider secret key agreement (SKA) over time division duplex for a multi-user wireless system, in which a base station (BS) equipped with a large antenna array remotely generates different secret keys for multiple users in the system. The BS can have the SKA over downlink broadcast channels with precoding based on uplink training from the multiple users. In this case, unfortunately, an eavesdropper can effectively perform a pilot contamination attack (PCA) by transmitting a targeted user's training sequence for the purpose to steer beam direction toward the eavesdropper. As the beam direction becomes under the eavesdroppers control, this PCA can result in information leakage from the BS to the targeted user. In order to fend off this PCA, we derive PCA detectors based on generalized likelihood ratio test and propose a countermeasure. For the performance analysis, we consider the outage probability and show that it decreases exponentially with the number of antennas at the BS, which cannot be achieved by the conventional SKA.