Enhancing Secure Data Transmission in IoT via Advanced Conditional Generative Adversarial Network and Encryption Techniques

Security remains a compelling challenge for both individuals and organizations, demanding thorough scrutiny at every stage, from initial design to daily operations. The lifecycle of a device necessitates rigorous security control, encompassing initial booting, patch updates, and all intermediate stages. The issue of IoT security becomes particularly critical during financial transactions or when handling private and confidential information. Given the ease of access to monitor data feeds, change settings, and modify authorizations, potential infiltrators have significant advantages [1].

Deep Learning (DL), with its increasing application across sectors such as healthcare and cybersecurity, is a potent tool for understanding 'normal' and 'abnormal' behaviors in the way IoT components and devices communicate within an IoT framework [2, 3]. By analyzing every input data component of the IoT system, common patterns of interaction can be identified, enabling early detection of malicious activity. Furthermore, ML/DL techniques can be instrumental in predicting new attacks, which are often adaptations of previous ones, as these techniques can effectively anticipate future unknown attacks by learning from existing ones [4]. To provide effective and secure solutions, IoT systems must progress beyond merely enabling secure device connectivity to offering security-based intelligence underpinned by DL/ML approaches.

Recent advancements in deep learning, such as Generative Adversarial Networks (GANs), can generate new data mirroring the statistical properties of the training set. For instance, a GAN trained on images can create new, seemingly realistic images. This implies that within an IoT setup, fake data can be integrated with the original message in the GAN to mislead an attacker with decoy information. However, these cross-modal translation frameworks prove inadequate for multi-domain image-to-image translation [5]. Existing cryptographic systems utilizing neural networks and generative adversarial neural networks have limited mechanisms for data security. Data anonymization, although a viable approach, does not guarantee complete data security, as some aspects of the protected data can still be inferred from the non-anonymised data [6].

Homomorphic encryption, a relatively recent and promising technique, can address cryptography-related challenges in AI. Accordingly, the current study aims to enhance GAN's architecture by incorporating two generators (G1 and G2) and two discriminators (D1 and D2). The contributions of this work are as follows:

• The work employs CGAN, introducing additional coding technology to the generator using an algebraic matrix to address time complexity issues in the coding process.
• A novel technique, termed Improved CGAN, is proposed to distinguish between real and fake data, ensuring secure data transmission.
• Encoded data serve as input for Fully Homomorphic Encryption (FHE), further bolstering the security of IoT data. IoT messages are crucial for cryptographic purposes within this project.
• The Jaro-Winkler similarity measure is used to assess the diversity of generated fake data.

Conditional information (alphabets and numbers) is added to noise and used in the encryption process. The key sizes, derived from noise, are encrypted using an improved FHE in the second generator.

34.1.png

A well-trained GAN can typically produce a wide range of outputs. Whenever a generator could only generate a single output or a limited number of outputs, mode collapse occurs. This could be due to training issues, such as the generator discovering a type of data which can easily tricked the discriminator, then continues to generate that type. As the generator doesn’t have an incentive to switch things up, the entire system will over-optimize on that one output. As a result, whether the data or any information is generated as accurate, the suggested study determined an additional generator and discriminator for identifying the mode collapse problem. This work solves the mode-collapse problem by monitoring whether the produced fake samples by the generators are diverse. If not, the feedback is given to solve this problem.

3.3 Improved CGAN

The proposed CGAN is improved with two generators (G¹ and G²) and discriminators (D¹ and D²) which solves mode collapse problem by checking whether the generated data samples by the generators are diverse in nature as well as similar to real data. Figure 1 depicts the proposed work's architecture. Initially, on the sender's side, the fake data samples generated by the generators (G¹ and G²) and real samples are encrypted using AME and FHE techniques. It is further transmitted through IoT network to the receiver, where the received, data is decrypted using same two techniques (AME, FHE). Then, the discriminator (D¹) checks whether the generated samples are diverse. If so, then real and fake data are classified using discriminator D². Otherwise, the feedback is sent as a loss function to the generators. The FHE technique is improved to encrypt the message using the number of character counts in messages that are referred to as key size.

3.4 Dual generators

This work uses two generators G¹ and G². Both generate fake samples by taking noise and condition as input. The generators can be denoted as:

$G_1(Y)=G_1^a\left(G_1^{a-1}\left(\ldots \ldots G_1^2\left(G_1^1(Y)\right)\right)\right)$          (1)

$G_2(Y)=G_2^b\left(G_2^{b-1}\left(\ldots \ldots G_2^2\left(G_2^1(Y)\right)\right)\right)$         (2)

where, a and b denote the total number of layers in two generators. There can be single distribution for single generator and mixed distribution for two of them. In this work, we assume both generators have similar structure and same equal weights. Inspired from the work [22], this work uses feature matching loss for training the IoT data for mixed data distribution in generators. The feature matching loss function were utilized by generators to control the mixed data distribution, thereby reduces overlapping of high-density data regions of real data while remaining close to the genuine data distribution.

3.5 Dual discriminator

The receiver consists of dual discriminators D¹ and D^2. In this, first one determines whether generated samples are diverse or not. For this, Jaro-Winkler similarity is used. If it is diverse, the next discriminator will classify the data as real and fake samples. Otherwise, feedback will be passed as loss function to the generators for improving the generated fake samples.

The two discriminators can be given as,

$\begin{gathered}D_1\left(z_1\right)=D_1^c\left(D_1^{c-1}\left(\ldots . D_1^2\left(D_1^1\left(z_1\right)\right)\right)\right) =D_2^e\left(D_2^{e-1}\left(\ldots . D_2^2\left(D_2^1\left(z_2\right)\right)\right)\right)\end{gathered}$           (3)

In above equation, c and e refers to number of layers in two discriminators. First discriminator will find whether the generated samples are diversified or not. In the next step, discriminator 2 will classify samples as real and fake. In this work, we consider both discriminators share equal layers and weights to avoid mode collapse problem. This also reduces the number of parameters in receiver side.

3.6 Model training

The proposed model is based on data that have been trained using joint data distributions. Weight-sharing restrictions are a crucial component of our contribution since they allow networks to manage their shared data and boost efficiency. Furthermore, the sharing weight restriction permits the model to reduce the number of parameters while reducing the original GAN's complexity. Also, this work assumes the generators and discriminators share same number of layers and equal weights.

The generators are G¹and G², the discriminators are D¹ and D², and is a set of noise that was used encode the real message. The discriminators D¹ and D² determine the outcomes based on the AME and FHE conditions, accordingly. They were trained via maximizing the loss based on each determination outcome, as illustrated in Eqs. (4) and (5) utilizing D¹ and D² loss correspondingly.

Let,

$\begin{aligned} & \text { Loss D1 (D1, G1) } =\mathrm{E}_\alpha[\log \mathrm{D} 1(\alpha)]+E_\alpha[1 \text { - } \log \text { D1 (G1 ( } \alpha))] \\ & \operatorname{Loss~D2}(\mathrm{D} 2, \mathrm{G} 2)=\mathrm{E}_\alpha[\log \mathrm{D} 2(\alpha)]+E_\alpha[1- \log \text { D2 (G2 ( } \alpha))] \\ & \end{aligned}$            (4)

The generators are trained as shown in Algorithm 1 by optimizing the losses using Loss G¹ (), G² (), and (Eq. (3)) by comprehensively considering the determination results of the two discriminators.

$\begin{gathered}\operatorname{Loss}(\mathrm{G} 1, \mathrm{G} 2, \mathrm{D} 1, \mathrm{D} 2)= \\ \frac{\mathrm{E}_\alpha\left[1-\operatorname{LOG}\left(\mathrm{G}^1(\alpha)\right)\right]+\mathrm{E}_\alpha\left[1-\operatorname{LOG}\left(\mathrm{G}^2(\alpha)\right)\right]}{2}\end{gathered}$          (5)

3.7 Improved CGAN model training algorithm

FUNCTION Back Propagation (α)

BEGIN

Initialize generator G¹, generator G², discriminator D¹, discriminator D²

Initialize α

FOR i←1 to SIZE (number of iterations)

FOR j←1 to SIZE (number of batch size)

α update D¹ by Loss D¹ (D¹, G¹)

Update D² by Loss D² (D², G²)

Update G¹ by Loss G¹ (D¹, D², G¹)

Update G² by Loss G² (D¹, D², G²)

END FOR

END FOR

END

3.8 Encryption and decryption modules

The fake samples generated by generators and real samples are encrypted and passed through IoT network. Then, the received encrypted text on receiver side are decrypted for further processes. This is illustrated in Figure 2.

3.9 Algebraic Matrix Encryption

A=1	B=2	C=3	D=4	X=-12
E=5	F=6	G=7	H=8	Z=-13
I=9	J=10	K=11	L=12
M=13	N=-1	O=-2	P=-3
Q=-4	R=-5	S=-6	T=-7
U=-8	V=-9	W=-10	X=-11

Let the key be $1 K_1, 2 K_2, \ldots . K_N$ where $\mathrm{N}$ is the number of words in the message. Also, consider the messages are $1 K_5$ $=$ HELLO, $2 K_5=$ WORLD. $1 K_5=$ HELLO can be denoted as: $\mathrm{H}=8, \mathrm{E}=5, \mathrm{~L}=12, \mathrm{~L}=12, \mathrm{O}=-2.2 K_5=$ WORLD: $\mathrm{W}=-10, \mathrm{O}=$ $-2, \mathrm{R}=-5, \mathrm{~L}=12, \mathrm{D}=4$ Construct the Cyclic Square Matrix with characters in $K_i$ for each i $=1,2, \ldots$ n, not clear.

$1 K_5$

8	5	12	12	-2
5	12	12	-2	8
12	12	-2	8	5
12	-2	8	5	12
-2	8	5	12	12

$2 K_5$

-10	-2	-5	12	4
-2	-5	12	4	-10
-5	12	4	-10	-2
12	4	-10	-2	-5
4	-10	-2	-5	12

Now, calculating the $\mathrm{E}\left(\eta\left(1 K_5\right)\right)$ and $\mathrm{E}\left(\eta\left(2 K_5\right)\right)$ using the following condition.

1. $W_i=\frac{j+1}{2}$ if $\eta\left(K_i\right)=\mathrm{j}$ is odd, $\mathrm{k}=1,2 \ldots . \mathrm{n} \,\&$ and $I, j=$ $1,2 \ldots$

2. $W_i=\frac{j}{2}$ if $\eta\left(K_i\right)=\mathrm{j}$ is even, $\mathrm{k}=1,2 \ldots . \mathrm{n} \,\&$ and $I, j=$ $1,2 \ldots$

• Then for $1 K_5: \eta\left(1 K_5\right)=5$, this is an odd number, so using the condition is $\frac{j+1}{2}$ if $\eta\left(K_i\right)=\mathrm{j}$ the resultant value is 3. This is similar to $\eta\left(2 K_5\right)$. Assign each column value as b₁=12 12 -2 8 5 and b₂=-5 12 4 -10 -2. Where, b₁ and b₂ are the diagonal matrix, respectively.
• Compute the diagonal matrix D (b₁)-5I₅=D (12 12 -2 8 5)-5I₅  = 7 7-7-3 0 and D (b₂)-5I₅ = D (-5 12 4 -10 -2)-5I₅ = -10 7 -1 -15 -7. Hence the encrypted results are M1= 7 7-7-3 0 and M2= -10 7 -1 -15 -7. This encrypted message is forwarded to the FHE encryption module for next stage of encryption.

3.10 Fully Homomorphic Encryption (FHE)

FHE is an encryption technology that performs addition and multiplication at the same time and can compute any operation [2]. Many encryption algorithms have been used to convert plain text to ciphertext and vice versa. However, it is still inefficient and it is not easy to convert text or data because it contains complex mathematical formulas that take longer to process.

3.11 FHE key generation

Let's consider the encrypted results from AME M1 and M2 key sizes like $1 K_5$ and $2 K_5=\mathrm{n}$. Select another number using Eq. (4).

$\mathrm{S}_1=\mathrm{n} * u$            (6)

Next, select one big random integer with the condition, i.e. $(R \leq 1$ and $R \geq 9)$, therefore

$e=R(n-m+1)$         (7)

Now, the public key is $\left(\mathrm{S}_1, \mathrm{e}\right)$ and the secret key is (n).

3.12 FHE encryption

According to FHE, M1= 7 7-7-3 0 and M2= -10 7 -1 -15 -7 are the messages from IoT. Now, they were utilizing the Eq. (6) to encrypt the message again.

$\mathrm{C} 1 \mathrm{C} 2=\mathrm{M1M2}^{\mathrm{ij} * \mathrm{e}+1} \bmod \mathrm{S}_1$      (8)

where, C1 and C2 are the ciphertexts of message HELLO WORLD, i and j are the two random integers.

Next, the double encrypted message is transmitted to the receiver through the IoT network.

3.13 FHE decryption

The received encrypted IoT data are decrypted in two stages. First, it is decrypted using FHE decryption technique. Then, it is decrypted using FHE decryption technique.

According to FHE, decrypting the ciphertext using Eq. (7).

$P 1 P 2=C 1 C 2 \,\,mod \,\,n$            (9)

where, P1= 7 7-7-3 0 and P2= -10 7 -1 -15 -7 are decrypted message, n is the secret key.

FHE is used for encrypting the actual message in the other approach of proposed work (hello world). In the first stage, the collected number of character counts in encrypted message is referred to as key size and that message will be considered as P1 and P2.

34.2.png

Algebraic Matrix Decryption

Now, decrypting the $1 K_5$ and $2 K_5$ with the help of a diagonal matrix. c₁ = D (b₁) + 5I₅  = 17 17 3 13 10 and c₂ = D (b₂) + 5I₅ = 0 17 9 -5 3. Hence the decrypted results are 17 17 3 13 10 and 0 17 9 -5 3. Now rearrange the values from 1^st to 5^th, 8 5 12 12 -2, which is HELLO. c₂ = -5 12 4 -10 -2$\rightarrow$3^rd 4^th 5^th 1^st 2^nd. Now rearrange the values from 1^st to 5^th, which is WORLD. Finally, this output from the decryption module is send to the discriminator1 for further checking diverse samples.

In this work, Improved FHE encrypts the data (message) to ensure that the message is transferred quickly and securely. When compared to traditional FHE, the improved FHE has lower time complexity. Because the key size in improved FHE is (input) is extracted directly from the IoT message, and no random integer values are used as input at the start.

3.14 Calculation of degree of similarity using Jaro-Winkler similarity

The performance of the generators can be evaluated by checking whether generated fake data are diverse in nature. This is achieved by calculating the degree of similarity between generated fake data. For this, Jaro-Winkler similarity method is adopted. The Jaro-Winkler similarity seems to be a string metric that compares the edit distance of two strings. Jaro Similarity is quite similar to Jaro Similarity. Jarrow compares the similarity of two strings. The Jaro distance has a value between 0 and 1. Where 1 indicates that the strings are equivalent and 0 indicates that the two strings are not similar. The closer the string value is, the greater the distance between the two strings. Whenever the prefixes of two strings match, Jaro-Winkler analogy uses the "p" prefix scale to provide a more accurate result when strings share a common prefix up to a maximum length of l. So, this work considers Jaro-Winkler similarity to find the similarity between generated fake images. When the degree of similarity value was low, it is apparent that the generators' fake samples were diverse in their nature. Hence, the mode collapse problem is resolved.

The Jaro-Winkler similarity can be calculated using following steps:

Step 1: Compute the match range (MR) of comparing strings str1 and str2.

$M R=\frac{\max ({len}({str} 1)),({len}({str} 2))}{2}-1$          (10)

Step 2: The Jaro Similarity (Js) can be determined with the help of Eq. (11),

$J s=\frac{1}{3} * \frac{m c}{|s t r 1|}+\frac{m c}{|s t r 2|}+\frac{m c-t}{m c}, m c !=0$        (11)

where, mc denotes the number of matching characters, t denotes half the number of transpositions, |str1| and |str2| denotes the lengths of strings str1 and str2 correspondingly.

The characters were considered to match when they are identical and they are not more than

$\left[\frac{\max (|s t r 1|,|s t r 2|)}{2}\right]-1$

The conversions are half the number of matching characters in both strings, but in a different order.

Step 3: Compute the Jaro Winkler similarity using following formula,

$J w s=J s+\frac{S}{10} * L *(1-J s)$         (12)

where, Jws denotes Jaro-Winkler similarity; S and L denotes the scaling factor and length of the matching prefix up to a maximum of 4 characters.

Algorithm for Jaro-Winkler similarity

Using the following parameters, this section conducted an efficient comparison between the proposed work and the state of the artwork. The parameters are Jaro-Winkler accuracy Test, Training time, Loss of Generator and Discriminator, Root means square error (RMSE), mean absolute error (MAE), percent root mean square difference (PRD), recall, F-score, mean and standard deviation. This study uses two current approaches to assess the performance of the proposed work as MTC-GAN [5].

Table 1. Training parameters

Table 2. Measurement of Jaro-Winkler accuracy similarity

The WOA is used in hyperparameter optimization because it keeps the transition between exploration and exploitation as seamless as possible. Table 1 shows the optimal hyperparameters determined using the WOA. The activation function used here is the sigmoid function. If a neuron's activation function seems to be a sigmoid function, then the output of this neuron will be typically between 0 and 1.

The Jaro-Winkler algorithm and GSO-COFC is to determine the accuracy of the model. Table 2 denotes the five sample values for two strings, string 1 and string 2 and it depicts that the similarity value for two strings using Jaro-Winkler algorithm and GSO-COFC. The similarity value for third sample is 0, which indicates both strings are same and final conclusion is there occurs a mode collapse problem.

The difference between actual and generated data is measured by the RMSE value and is defined as:

$R M S E=\sqrt{n \sum_{i=1}^n\left(R_i-F_i\right)^2}$           (13)

The average absolute error between the generated and the real data is calculated using the term "mean absolute error" and it can be defined as:

$M A E=\frac{1}{n} \sum_{i=1}^n\left|R_i-F_i\right|$         (14)

By using the percent root mean square difference, the distortion between the real and generated data can be calculated which is shown in below equation.

$P R D=\sqrt{100 \frac{\sum_{i=1}^n\left(R_i-F_i\right)^2}{\sum_{i=1}^n\left(R_i\right)^2}}$          (15)

Table 3 shows the performance comparison for proposed model and existing techniques. While comparing proposed model in terms of RMSE, MAE, PRD, recall and F-score, the proposed model indicates better results than MTC-GAN and AEGAN models. It is because the dual generator generates fake data samples and if not, the discriminators send feedback to generators to avoid mode collapse problem.

Table 3. Performance comparison for proposed model

Figure 3 shows the loss variance in the proposed model, and due to the large losses from epoch 1 to 7, the model was pre-trained to deal with them to reduce the loss to a certain level. Table 4 shows the performance of various methods in terms of loss and training time.

Table 4. Results of the proposed model with existing techniques

Encryption time:

The proposed algorithm is shown in Table 5 and in comparison of the AEGAN and MTC-GAN algorithms. The proposed approach works best for messages of various sizes from 200 KB to 450 KB. Improved CGAN can be applied to larger amounts of data and with less encoding time.

Table 5. Encryption time

The generating loss G1, as demonstrated in Figure 3 (a), began at Epoch 0 at 2.490, suddenly increased to 1.480 at Epoch 30 because of the discriminator processing the encryption operation, and finished at epoch 150, with the loss of 0.7. Also, the generating loss G2, as demonstrated in Figure 3 (b), began at Epoch 0 at 2.527 and finished at Epoch 30 at 1.423. At Epoch 150, the loss is 0.3. The MTC-GAN loss variation is shown in Figure 4, and AEGAN loss variation is shown in Figure 5.

When compared to existing works, the generator of the proposed work achieves a loss value of 2.5678, which is 13.14% lower than MTC-GAN and 0.1312% lower than AEGAN. Similarly, the loss of discriminator for the proposed work is 1.480, which is 3.137% lower than MTC-GAN and 0.09% lower than AEGAN. This low value indicates the effectiveness of the proposed work.

34.3a.png

34.3b.png

34.3c.png

34.3d.png

Figure 3. Results of the proposed work

34.4a.png

34.4b.png

Figure 4. Results of MTC-GAN from Zhang et al. [18]

34.5.png

Figure 5. Results of the AEGAN from Wu et al. [23]

Also, the GAN hyperparameters tuned using WOA enhances the performance of the proposed work, thereby decreasing the loss value which is comparatively lower than the other methods. This further reduces the overfitting and instability problems in the proposed method. Additionally, it eliminates the problem of mode collapse in CGAN. The humpback whale's special hunting trick is used in WOA to find the best search agent for the generator in the given space.

34.6.png

Figure 6. Results of mean and standard deviation for different GAN models

Another useful method for assessing the similarity between real and fake data visually is the estimation of mean and standard deviation. The plotted points in Figure 6 are the generated data, whereas the blue line in the Figure 6 reflects the original data. The similarity between the real and fake data is higher the closer the spots are to the blue line. The mean and standard deviation of real and fake data produced by AEGAN, MTC-GAN, and the proposed approach have been compared. Results demonstrate that the proposed model performs more effectively than other GAN models since the generated data is close to the diagonal.

IoT is being deployed and harnessed globally to address some of the most pressing issues in global development. This phenomenon brought various issues, including reliability, safety, and enhancement in a range of fields, due to significant advances in wireless and mobile communication technology. The risks associated with IoT security, notably the fundamental issue of data confidentiality and integrity while data is being transported from IoT devices to servers through the internet, can be properly mitigated and handled with propriety. This paper proposed a deep learning-based CGAN model to guarantee safe data transmission. To improve the operation of CGAN, two generators and two discriminators were deployed, and the mode collapse problem was solved in this work. In addition, the two proposed encryption algorithms are employed to send the messages safely to the receiver. To find whether generated fake samples are diverse in nature. According to experimental data, the proposed method outperforms others in terms of Jaro-Winkler accuracy test, training time, loss, Root means square error (RMSE), mean absolute error (MAE), percent root means square difference (PRD), recall, F-score, mean, and standard deviation. The proposed model's generator loss was about 82.8%, that was less than the loss of the generator in the standard models. By using mean and standard deviation, similarity between real and fake data are visualized.

The proposed model's discriminator loss was about 66.0 percent, which is lower than the traditional model's (4.617). This could be used in other fields in the future, such as disease diagnosis, where the mode collapse problem can be solved and high-accuracy disease diagnosis is possible. Also, we planned to reduce encryption cost in future.