Journal of Network and Computer Applications 213 (2023) 103607

Contents lists available at ScienceDirect

Journal of Network and Computer Applications

journal homepage: www.elsevier.com/locate/jnca

Review

A comprehensive survey on security, privacy issues and emerging defence

technologies for UAVs
Hassan Jalil Hadi a , Yue Cao a,b ,∗, Khaleeq Un Nisa a , Abdul Majid Jamil a , Qiang Ni c
a
School of Cyber Science and Engineering, Wuhan University, China
b
Shenzhen Research Institute of Wuhan University, China
c
School of Computing and Communications, Lancaster University, UK

ARTICLE INFO ABSTRACT

Keywords: In the past two decades, there has been a rapid development in the drone industry known as Unmanned
Cyber security and privacy Aerial Vehicles (UAVs). Currently, the use of commercial UAVs has increased a lot due to their affordability,
Vulnerabilities but lack of security implementations has introduced many threats and vulnerabilities in UAVs. In addition,
Adversarial machine learning
software, and hardware complexity in UAVs also triggers privacy and security issues as well as causes critical
Intrusion detection system
challenges for government, industry and academia. Firstly, in this research review, we broadly survey privacy
Digital forensic
Blockchain
and security issues of UAVs by dividing them into three classes: Software, Hardware and Communication.
Particularly, for each class, we systematically survey the common vulnerabilities causing potential attacks
to UAVs. Secondly, a review of prevailing threats that are threatening civilian UAVs’ applications is also
a part of this survey. Thirdly, a comprehensive discussion of passive and active attacks from adversaries,
for compromising privacy and security of UAVs is given as well. Fourthly, we provide detail description
of existing mitigation techniques and countermeasures, to protect UAVs. Fifthly, the solution architecture
part includes discussion about emerging technologies such as, blockchain usage, machine learning, intrusion
detection systems and secure communication protocols. To store all data in transit, blockchain can be used
cryptographically and protect it from eavesdropping and tampering. In this research review, key points that
highlighted the lessons learned about security and privacy of UAVs are also summarized. Lastly, the survey
is concluded by discussing important pitfalls as well as suggestions for future research directions, concerning
privacy and security of UAVs.

1. Introduction surveys and damage assessments. Fig. 1 shows the applications of

The use of mobility and locality aware vehicles has increased in
nearly every domain, this has led to the significant increase in the
number of these vehicles and associated applications. A popular class of
such vehicles is Unmanned Aerial Vehicles (UAVs), capable to fly with
or without any pilot. UAVs can be controlled remotely through radio
or Wi-Fi and their advance features have capability of carrying heavy
payloads, mine’s detection and unethical activities’ scanning in specific
areas (Abbaspour et al., 2016a).
1.1. Applications of UAVs
UAVs.
The applications of UAVs are dramatically increasing as a result
of their mobility flexibility, low upkeep cost and capacity, to monitor
real-time environment. The following are the key applications of UAVs:
1.1.1. Monitoring, security and surveillance
UAVs are a crucial component of military surveillance missions.
UAVs have been included in the defence strategies of several na-
tions. These flying robot devices are used by nations for border con-
trol, maritime monitoring of important sea lanes, enemy identification,
anti-poaching, and enemy detection.

In recent years, the usage of UAVs by military for crucial operations 1.1.2. Disaster management
has intensified. The other applications of UAVs include rescue missions, Information gathering, the need for quick responses, and debris
search missions, courier services, fire-fighting surveillance, ecological navigation can all be assisted by UAVs. UAVs equipped with radars,

∗ Corresponding author.
E-mail addresses: [email protected] (H.J. Hadi), [email protected] (Y. Cao), [email protected] (K.U. Nisa),
[email protected] (A.M. Jamil), [email protected] (Q. Ni).

https://doi.org/10.1016/j.jnca.2023.103607
Received 3 November 2022; Received in revised form 23 January 2023; Accepted 20 February 2023
Available online 24 February 2023
1084-8045/© 2023 Elsevier Ltd. All rights reserved.
H.J. Hadi et al.
Fig. 1. Applications of UAVs.
sensors, and high-quality cameras can help rescue crews locate damage,
launch recovery efforts right away, and deliver supplies like manned
helicopters and first aid packages. UAVs can aid with rapid disaster
estimation, disaster alarms, and the discovery of effective countermea-
sures.
1.1.3. Aerial photography
One of the wonderful uses for UAVs is aerial photography. This
technology is outfitted with heavy camera equipment that will greatly
help enthusiasts give aerial pictures of the targeted areas. UAV aerial
photography have the ability to give clear images.
1.1.4. Packet delivery
The use of UAVs for transportation and delivery is another signifi-
cant evolutionary sector. It speeds up the distribution process, enhances
system efficiency, and uses less manual labor overall.
1.1.5. Rescue and search operation
UAVs can be deployed through flood zones for the purpose of rescue
operations and care. Before the assistance of a rescue team arrives,
these are more useful for providing food and medications to those
human resources who are outside of these institutions. Additionally,
UAVs can significantly reduce the amount of the labor, materials and
time required for SAR by providing real time imaging data of tar-
get sites. As a result, a SAR (search and rescue) team may precisely
determine where immediate aid is needed and identify the location
in real-time. In emergency scenarios including missing individuals,
avalanches, wildfires, and gas penetration, UAVs can expedite SAR
activities.
1.1.6. Wildlife monitoring
UAVs are quite useful for observing animals because they are fitted
with laser lights, cameras altimeters, GPS tracking, altimeters and other
devices. In addition to using night and day cameras, effective conser-
vation UAVs have used infrared and long-range focal-point cameras to
observe wildlife.
2
Journal of Network and Computer Applications 213 (2023) 103607
1.2. Security concerns raised by UAVs applications
However, majority of such application domains has caused great
threat to human lives, because of unidentified weather and other en-
vironmental factors. These UAVs are being attacked in different ways,
because they are susceptible to numerous security risks (Nassi et al.,
2019). Therefore, results of many attacks might be overwhelming,
where some of these attacks are intended to steal information as well as
affect confidentiality, integrity, and availability (AbdAllah et al., 2015).
Additionally, with the help of communication channels, UAVs carry
a lot of information, while that must be secured. The information
carried by UAVs is of multiple forms like text, images, videos, and
audios. Although, many encryption algorithms have been proposed for
security of sensitive data gathered by UAVs, yet UAVs are insecure (Li
et al., 2018) because these encryption algorithms have vulnerabilities
that can be exploited. This has raised many security concerns about the
communication protocols of UAVs. Currently, the main security con-
cern related to these communication protocols is to secure information
exchange using connections like Wi-Fi.
Usually, to send data to base stations, UAVs use a wireless link
which is vulnerable for attackers. Hence, it is necessary to prevent data
interception by attackers. For this purpose, one widely used mechanism
is encryption like Advanced Encryption Standard (AES) being used
commonly at present. However, its use is inefficient when it comes to
real-time applications due to communication overhead, particularly in
case of extremely high data transfer rate (Li et al., 2018).
Another important security concern is the attackers interfering with
UAVs, with intention to take control of UAV for disabling communi-
cation between Ground Control Station (GCS) and the UAV. For this
purpose, numerous attacks such as spoofing (Arthur) jamming and false
data injection are being used. In this paper, we will analyze the security
and privacy challenges faced by UAV networks, but it is necessary to
know first the UAV system’s components and information flow among
these components, in order to effectively analyze these challenges.
H.J. Hadi et al.
Fig. 2. Block diagram of a typical UAV.
1.3. UAV system
The base system of a UAV is manufactured only to link together all
components. It is utilized for communication among these components,
to control sensors and navigation systems, as shown in Fig. 2. The base
system of UAVs is also used to integrate the optional components like
weapon systems etc. Besides, the sensors system in UAVs is made up of
sensory equipment having integrated functionalities for pre-processing,
e.g., sensors having GPS, sensors along with cameras and sensors with
radars.
In addition, avionics systems have the responsibility to execute
the control commands issued by controllers like spoilers, engine com-
mands, stabilizers and flaps. The UAVs mainly depend on a wireless
communication channel, a direct communication line or indirect com-
munication line, by using satellites. For attacking a UAV, the attacker
must affect the UAV externally to access UAV system physically. The
communication system of UAVs relies mainly on the inputs from exter-
nal environment, due to wireless condition in these system, this offers
numerous input channels to an attacker.
The information in UAVs streams between the UAVs and external
environment over different channels. Therefore, the two-way com-
munication between the GPS and UAV communication system is the
highly open channel, which can be easily utilized for attacking UAVs.
Another most critical and sensitive component of the UAVs is the flow
of information from the external environment to UAVs sensors, where
such links are highly prone to manipulations. However, the reliability
of these sensors is not trustworthy. In such case, the knowledge of the
host, about receptiveness of components to commands, is a key for
controlling UAVs during cyber-attacks.
3
Journal of Network and Computer Applications 213 (2023) 103607
This review paper is arranged in this way: Section 2 presents related
work, vulnerabilities in UAVs are discussed in Section 3. Defence and
emerging technologies to secure UAVs are described in Section 4. In
Section 5, application of Blockchain in UAVs network are explored,
while challenges and possible future research directions are discussed
in Section 7. In addition to above, to give better understanding of paper
flow, the taxonomy of the paper is presented graphically in Fig. 3.
1.4. Motivation
The estimated value of the commercial UAVs’ market was $20.8
billion in 2021 and it is expected to increase to $ 501.4 billion by the
end of 2026 (Anon, 2021). UAVs are becoming more popular due to
their application in a variety of fields and their use will further increase
in future. This has also posed serious privacy and security threats to
UAVs also there exist many vulnerabilities in UAVs. In last few decades,
many research surveys have been conducted about security and privacy
concerns of UAVs but none of these has thoroughly expressed security
and privacy issues related to UAVs. Most of the existing surveys have
just discussed common security risks and concerns related to UAVs.
Hence, there is a need to conduct a survey that provides high cover-
age of this issue. Thus, we are motivated to thoroughly explore the
vulnerabilities and threats present in UAVs, as well as related security
and privacy concerns. Moreover, we are determined to discuss solution
architecture (like blockchain, IDS, MLIDS) to mitigate these threats and
vulnerabilities.
H.J. Hadi et al.
Fig. 3. Flow of the survey paper.
1.5. UAV cyber security threat model
The UAV threat model is based on fundamental security services
including availability, confidentiality, and integrity. Under these three
services, there are natural events and malicious attacks. These, ma-
licious attacks on the confidentiality of UAV communication include
malware, viruses, key-loggers, hacking, trogons, hijacking, cross-layer,
4
Journal of Network and Computer Applications 213 (2023) 103607
hijacking, identity spoofing, eavesdropping, and multiprotocol han-
dover. Such attacks can be caused by integrity loss like increased Signal
to Noise Ratio (SNR), tapping, subroutine exploits, re-transmitting, and
capturing feed.
Similarly, attacks on availability can be performed by an intruder
using DoS. Table 1 shows threats and projected control for UAVs, while
natural events causing confidentiality loss are greed, social engineering,
H.J. Hadi et al.
Fig. 4. UAV cyber security threat model.
and life threatening in Fig. 4. All related cyber security threats are
explained below:
1.5.1. Eavesdropping
This is one type of man-in-the-middle attacks. Here, attackers would
create an individualistic connection with the victim and transmit mes-
sage, in such a way that victim cannot identify that the communication
party is illegitimate.
1.5.2. Distributed and denial of service (DDoS, DoS) attack
In the DoS attack, attacker try to make a system unavailable to
intended purpose. Specifically they flood the system with requests
more than the processing capacity of that system. This overloads the
system and causes interruptions of service. The Dos attack is simple
that unskilled hackers can conduct it, while DDoS attack is conducted
by originating the attack source from numerous infected hosts.
1.5.3. Identity spoofing
In this attack, attackers act like legitimate users in Internet of
Drones (IoD) network. They use spoofing ID of legitimate users, and
access to the network as well as communication links. To prevent such
attacks, pseudo-ID or encrypted IDs might be useful.
1.5.4. Malicious code
This is the code inserted in the software or web script aimed to
cause unwanted effects, damage to systems or security breaches. The
self-protection of software can be used to prevent from vulnerabilities
and attacks.
1.5.5. Malware infection
Communication protocols in UAVs permit users to pilot UAVs
through remote control like tablets, mobile phones, and laptops. Un-
fortunately, this is an insecure method because it permits hackers to
make reverse-shell payload of TCP, injecting into the UAVs memory
for installation of malwares.
5
Journal of Network and Computer Applications 213 (2023) 103607
1.5.6. Man-in-the-middle (MitM) attack
In this attack, attackers secretly relay and alter communication
among two or more parties, so that parties trust they are communi-
cating to each other.
1.5.7. Trojan
It is a way through which the user can bypass normal security and
get access to the system. The backdoor can have a legal use and pre-
exist for enabling system administrator’s access. Like other attacks, this
attack might be used for evil purposes, such as allowing malicious users
continuous, secret access to the system.
1.5.8. Brute force password attack
In this attack, the password is cracked systematically by attempting
numerous passwords, in order to eventually guess a correct password.
1.5.9. Compromised URL
This involves changing parameters in a URL, so that the web server
would send information without authorization.
1.5.10. Fabrication
The authenticity of UAV is targeted by this attack. It permits access
to UAVs components by giving incorrect information.
1.5.11. Natural issues
Due to the lightweight nature, UAVs cannot stand wind and extreme
temperature, causing failure of engine, bringing the UAV down. More-
over, the battery may explode causing serious harm and damage. In
fog, the visibility becomes limited which narrow downs from meters
to a meter, causing communication disruption between UAVs and GPS.
Therefore, this can send the UAVs outside the range of control area
until it crashes.
H.J. Hadi et al. Journal of Network and Computer Applications 213 (2023) 103607

Table 1
Threats and countermeasures for UAVs.

Types of attacks Entity under attack System limitations Possible consequences Countermeasures

Malware, Key loggers, Malicious code GCS, UAV Less computational and Loss of Critical Data & UAV Antivirus, IDS, IPS
limited power at UAV,
Processing overhead

Jamming UAV Processing overhead and Loss of UAV Use of high gain directional
Power constraints antennas

Hijacking UAV Processing overhead and Loss of Critical Data & UAV Encryption
Power constraints

Eavesdropping UAV Processing overhead and Loss of Critical Data& UAV Encrypt communication fully
Power constraints

Multiprotocol attacks UAV Processing overhead and Loss of Critical Data Use tamper resistant protocols
Power constraints across communication links

Compromised link UAV Processing overhead and Loss of Critical Data Strong authentication,
Power constraints encryption

Data retransmitting Fabrication Replay UAV Processing overhead and Loss of Critical Data Time Stump, Packet signing
Power constraints

Dos/DDoS UAV Processing overhead and Loss of data & control Use resource and Bandwidth
Power constraints throttling techniques

Distortion UAV Processing overhead and Loss of UAV & control Anti-jamming techniques,
Power constraints ECCM Features, Frequency
Hopping.

Subroutine exploit UAV Processing overhead Loss of Critical Data & UAV Encryption

Cross-Layer Attack UAV Weak network performance Loss of Critical Data & UAV MAC binding

Interception of Transmission UAV Processing overhead and Loss of Critical Data & UAV Encryption
power constraints

GPS Spoofing GPS Processing overhead and Loss of Critical Data & UAV Filter packets, Verify identity
power constraints

Physical Security UAV Increase operational cost Loss of Critical Data & UAV Deployment of physical
security assets

Masquerading UAV Processing overhead Loss of Critical Data & UAV Encryption

1.5.12. Keyloggers 1.5.18. Signal-to-noise ratio

keyloggers are thought of as an internal threat because IoD is
developed and deployed, keyloggers are integrated with software of
IoD. Hence, the secret information is transferred to attackers through
attached keyloggers.
1.5.13. GPS jamming and spoofing UAVs
Hackers can hack UAVs as well, for example, through GPS jamming
and spoofing. In such a situation, UAVs cannot get legitimate GPS
signals and the GPS Jamming occurs when attackers successfully launch
signals that can interfere with GPS signals. While GPS spoofing is more
sophisticated, thus attackers create incorrect signals causing UAV to
change its position.
1.5.14. Physical attacks
These attacks are conducted on hardware’s and a have key motiva-
tion to destroy devices.
1.5.15. UAV hijacking
GPS spoofing or Jamming is used for UAV hijacking, such as terror-
ist attacks.
1.5.16. Keystroke logging
It is the practice to record keystrokes of a keyboard, usually with-
out knowledge of users, for capturing instructions as well as data
transferred between UAV and operator.
1.5.17. Distortion
Once the trust in data integrity is lost, the modifications in sensitive
data as well as access monitoring become critical, like the development
of complicated management procedures in case of incident.
It is a method used in engineering and science, making a comparison
of the level of a required signal with level of noise. It can be defined
as the ratio of signal power to the background noise power.
1.5.19. Signal integrity
Signal Integrity (SI) includes the measurement of quality of electric
signals. Critical issues regarding SI are crosstalk, ringing, distortion,
ground bounce, power supply noise, and signal loss.
1.5.20. Subroutine exploit
It is also known as function, method, procedure, and subprogram.
It is a code called and executed somewhere in program, e.g., a routine
can be used for saving files or to show time.
1.5.21. Retransmission
An Round Trip timeout (RTO) has a significant role in TCP, pri-
marily for achieving reliable transmission. In the TCP, if a sender
sends information and there is no acknowledgment, also the RTO
timer is expired, then sender will consider that the information is lost.
Commonly used attacks against UAV are shown in Fig. 5.
1.5.22. Malfunction
The malfunction of a sensor may lead to loss of assets and human
life as well as abandoning missions. The communication between UAV
and GCS includes an uplink transferring command. Further, it involves
control to down link and UAV from the controller that gives back data
displaying UAV status on the GCS. The GCS may be connected directly
to UAV through ground relay or satellite in case of Line of Sight (LOS)
range. There are numerous threats to UAV communication that are

6
H.J. Hadi et al.
Fig. 5. Common types of attacks on UAV.
necessary to be tackled, and vulnerabilities in communication protocols
should be protected.
1.6. Contributions of this survey
In this survey, we provide an extensive survey addressing privacy
and security issues in UAVs. Our main contributions are given below:
• In this survey, we present a systematic division of privacy and
security issues by categorizing them into three classes: Software,
Hardware and Communication. Particularly, for each class, we
systematically survey the common vulnerabilities causing poten-
tial attacks to UAV.
• Applications vulnerabilities in security protocols and prevailing
threats concerning civil applications of UAVs are also reviewed.
• We thoroughly discuss passive and active attacks from adversaries
for compromising privacy and security of UAVs. A detailed de-
scription of existing mitigation techniques and countermeasures
for protecting UAVs is also given.
• Moreover, the solution architecture part includes discussion about
emerging technologies. These comprise of Blockchain usage, Ma-
chine Learning, Intrusion detection systems and secure communi-
cation protocols.
• In this research review, takeaways that highlighted the lessons
learned about security and privacy of UAVs are also summarized.
Lastly, we conclude the survey by discussing important pitfalls
as well as suggestions for future research directions, concerning
privacy and security of UAVs.
2. Related work
UAVs are thought of as an emerging category of flying IoT de-
vices. UAVs include many applications such as immediate help for
patients, like medical supplies and delivering blood etc. Many privacy
and security issues have been addressed in the past decade, due to
introduction of UAV technology. In this regard, several research works
have been published covering numerous aspects of UAV privacy and
security issues.
2.1. Security and privacy challenges of UAVs
The privacy and security challenges in UAV networks are presented
in Wang et al. (2019) from a Cyber–Physical System perspective. Wang
at el. in this study, discussed important UAV components that have high
7
Journal of Network and Computer Applications 213 (2023) 103607
attack risk either form physical or cyber domain. Similarly, security
issues of UAVs communication are also reviewed in Hentati and Fourati
(2020). Shakhatreh et al. in Shakhatreh et al. (2019) surveyed civil
applications of UAVs and their key challenges. Likewise, Krishna et al.
in Krishna and Murphy (2017) surveyed security vulnerabilities present
in UAVs, recent research by Shafique et al. (2021) discussed security
protocols and vulnerabilities in UAVs.
Another research work (Altawy and Youssef, 2016) have highlighted
safety, privacy and security aspects of commercial UAVs. Particularly,
authors have discussed physical and cyber threats, major vulnerabilities
and possible attacks that may cause crashing during a flight mission.
Authors in Yaacoub et al. (2020) identified emerging challenges as
well as cyber-attacks in commercial UAVs. Furthermore, malicious use
of UAVs and present threats were reviewed in Yaacoub et al. (2020).
Nassi et al. (2021) conducted a systematic review of privacy and
security challenged on commercial UAVs. Researchers in Zhi et al.
(2020) investigated challenges of wireless communication in UAVs like
Wi-Fi based communication in UAVs. They have also discussed the
privacy leak, caused by a UAV because of aerial photos.
2.2. Security and privacy issues of UAV communications
Fotouhi et al. (2019) reviewed the critical security challenges caused
by UAV wireless communications. Mishra and Natalizio (2020) argued
that UAVs integration with wireless networks causes security challenges
in UAVs. They further pointed that such issues a thorough investigation
by research community. Hayat et al. (2016) explored the security,
privacy and safety challenges of UAV networks from a communication
perspective. Also, they have discussed communication requirements for
a secure and safe UAVs deployment. Another research work (Sharma
et al., 2020), presented a comprehensive literature review of emerging
UAV communication technologies, and discussed the need for securing
the data transmitted to GCS. Hassija et al. (2021) have surveyed key
security challenges and vulnerabilities in UAV communications.
2.3. Security and privacy issues of UAV networks
Boccadoro et al. (2021) presented a survey of IoD. The authors
have discussed privacy and security issues of drone-to-drone commu-
nications. They have also highlighted security concerns for specific
application scenarios in IoD architecture like smart framing and public
safety. Likewise, privacy and security challenges related to design of
UAV networks are discussed in Noor et al. (2020). In this research
study authors have argued that the key challenge is an Ad-hoc fashion
communication among multiple UAVs (Rondon et al., 2022). This
communication is called Flying Ad hoc Network (FANET). Chriki et al.
(2019) have also reviewed FANETs security challenges. They have
highlighted the need for developing robust security mechanisms before
deployment of FANET in real scenarios. Maxa et al. (2017) discussed
key security issues of UAV routing protocols. Sharma et al. (2020) have
presented security threats and vulnerabilities of UAV communications
protocols.
2.4. Edge AI implementation challenges for UAVs
Edge AI, which runs AI close to consumers on devices or edge
servers, may be appropriate for enhancing UAV-based IoT applications.
Several important UAV technological elements, including formation
control, autonomous navigation, power management, computer vision,
security and privacy, communication, and applications, have been ex-
amined in a study on the effects of edge AI (McEnroe et al., 2022).
Although there are many difficulties in implementation, the develop-
ment of security and privacy, distributed training algorithms, resource
allocation, and real-time needs pose the most problems. There are two
key components of application delivery system that require additional
study. The first component is reaction of system to errors, the key is
H.J. Hadi et al.
Fig. 6. Vulnerability in UAV.
reaction of the. Second component is coordination of numerous UAVs
flying simultaneously in the same airspace while being controlled by
various operators. This can call for identical resources and operating
frequencies (Huda and Moh, 2022). The effective handling of image
processing, the development and creation of precise and independent
real-time UAV power line detection methods, and multi-UAV collabo-
ration for connectivity inspection are all areas of the implementation
infrastructure inspection that require additional research.
2.5. Differences from existing surveys
Unlike other reviews, this review paper is intended to broadly sur-
vey privacy and security challenges of UAVs by categorizing them into
different levels. Most of the existing surveys have categorized privacy
and security challenges, in terms of attack vectors or based on basic
information security principles. Yet, this categorization cannot explain
completely the threats, attacks, vulnerabilities, and countermeasures
etc. On contrary, our survey considers the privacy and security issues
of a complete UAV system e.g., end to end components like hardware,
communication, and software.
Besides, privacy and security issues in commercial UAVs, are also
reviewed in this survey. Particularly, dissecting from a security perspec-
tive, threats, vulnerabilities, attacks, and countermeasures into three
different categories. The first category is based on hardware, the second
is based on software and the third is communication based. These
categories are significant classes of UAVs functionality. Moreover, this
survey also presents attacks of UAV privacy and security aspect along
with techniques for their mitigation. The survey has also categorized
the emerging defence technologies for security and privacy risks in all
categories mentioned earlier. The categories of these defence technolo-
gies, for securing a UAV, include I) Secure Communication Protocols
II) Machine Learning II) Intrusion detection Systems Iv) Blockchain
Technologies.
To show differences among this survey and other existing works, a
comparison table for existing surveys is presented in Table 2.
3. Potential vulnerabilities in UAVs
Numerous methods have been introduced to strengthen security of
UAVs. Yet, all the existing methodologies have many shortcomings,
8
Journal of Network and Computer Applications 213 (2023) 103607
which made UAVs more vulnerable to several certain cyber attacks
(Tlili et al., 2022). Therefore, this section will describe how attackers
use different strategies to breach security protocols for UAVs. Different
vulnerabilities and countermeasures are summarized in Tables 3, 4 and
5, with schematic diagram shown in Fig. 6.
3.1. Hardware threats and vulnerabilities
Hardware threats and vulnerabilities consists of physical collision of
UAV, trojans, issues in flying skills and hardware failures (see Table 3).
3.1.1. Hardware Trojan
These trojans include tampering with electronic hardware like mod-
ifying logic gate and hardware circuit modifications, etc. Bhunia and
Tehranipoor (2018). Hardware trojans are specially indented to tar-
get Flight Controllers (FC) and make UAV vulnerable to numerous
attacks. A non-trusted party maliciously embeds hardware trojans in
supply chain of FC (Rahman et al., 2020a). The enemy leverages such
modifications for compromising the functions and security features of
integrated circuits in FC, e.g., decrease in propellers’ rotation speed,
access to the secret keys of FC, etc. A similar trojan was discovered
in Boeing 787 jet (Casals et al., 2013). This trojan was found in the
chip called Actel ProASIC (Casals et al., 2013). The backdoor in the
jet helped the attacker in monitoring the avionics system and taking
control of the aircraft, by putting the security of passengers at risk.
3.1.2. Physical UAV collision
Physical collision might happen during a mission that needs col-
laboration and cooperation among multiple UAVs. This will result in a
crash of UAVs and to avoid such a collision, UAVs depend on Collision
Avoidance System (CAS) (Yasin et al., 2020). Unfortunately, there are
no built-in security features in these systems, so these systems cannot
fulfill the requirement of collision prevention threat posed by malicious
entities (Hannah et al., 2020).
3.1.3. Hardware failures
UAVs can have defects of hardware components like motor issues
or battery life. Such defects pose a threat to the mission of flight
and could cause unsafe landing in unexpected area (Alwateer et al.,
2019). In such a situation, if UAVs have unencrypted information, then
enemy can disclose secret mission-information and can also challenge
the confidentiality of flight mission.
H.J. Hadi et al. Journal of Network and Computer Applications 213 (2023) 103607

Table 2
Comparison of our survey and existing surveys on security, privacy issues and emerging defence technologies for UAVs.
Ref & year Security Issues in Privacy Emerging Defence
UAV Issues in Technologies
UAV
Hardware Software Communication SC PY IDS MLIDS BCT
Vulnerability Vulnerability Vulnerability
A C T V A C T V A C T V A C
Wang et al.
(2019)
Hentati and
Fourati (2020)
Shakhatreh et al.
(2019)
Krishna and Mur-
phy (2017)
Shafique et al.
(2021)
Altawy and
Youssef (2016)
Yaacoub et al.
(2020)
Nassi et al.
(2021)
Zhi et al. (2020)

Mishra and Na-

talizio (2020)
Hayat et al.
(2016)
Sharma et al.
(2020)
Hassija et al.
(2021)
Noor et al.
(2020)
Chriki et al.
(2019)
Maxa et al.
(2017)
Newaz et al.
(2021)
Rondon et al.
(2022)
Boccadoro et al.
(2021)
Nassi et al.
(2019)
Khan et al.
(2020)
Syed et al.
(2021)
Tsao et al.
(2022)
Tlili et al. (2022)

Alladi et al.
(2020a)
Huda and Moh
(2022)
This work
A=Attack, C= Countermeasure, T=Threat, V= Vulnerability, SC= Secure communication, Py= Physical layer, IDS= Intrusion Detection system, MLIDS =Machine Learning Based
intrusion detection system, BCT= Blockchain Technology.

3.1.4. Flying skills issues
Such issues occur when semi-autonomous or non-autonomous UAV
is operated by human remotely. Particularly those UAVs that are ex-
tremely sensitive to wind disturbance, due to their size and complex
dynamics (Lee et al., 2020). That is why, flying skills like orientation
of UAVs, height, and remote control of speed are needed, otherwise
UAVs may crash as well as operational failures may occur. As a result,
UAVs might become an easy target for physical theft.
3.2. Software vulnerabilities and threats
Software vulnerabilities and threats for UAVs include zero-day vul-
nerabilities and malicious software (see Table 4).

9
H.J. Hadi et al. Journal of Network and Computer Applications 213 (2023) 103607

Table 3
Hardware level vulnerabilities, existing countermeasures, and their limitations.

Ref Hardware-Based Countermeasure Limitation

Bhunia and Tehranipoor (2018) Hardware Trojans Designing machine learning based IDS solution and Hardware based complicated approaches
fine-grained circuit analysis perceive Trojan in hardware. might evade existing detection
approaches.

He et al. (2020) Physical collisions Design and implement collision avoidance systems for Collision avoidance system mostly avoid
physical collision protection. from security measures.

Alwateer et al. (2019) Hardware failure Implement strong encryption techniques to secure store data Strong encryption on data might be
in case of hardware failure. hurdle in forensic analysis.

Hodgkins (2015) Hijacking Validated encryption secure against unauthorized access of Attackers can hijack authentic UAVs by
UAV and GCS. Flight pattern can be avoided by constant counter UAVs technology.
changing flying path.

Table 4
Software level vulnerabilities, existing countermeasures, and their limitations.

Ref Software-Based Countermeasure Limitation

Paganini (2015) Malicious Software Firewall would be an excellent measure to restrict malicious Real-time detection and counter action
attacks. Along with mentioned measure IDS and antivirus enhance computational cost.
solutions would be beneficial protective measure.

Hooper et al. (2016) Zero day vulnerabilities Zero days vulnerabilities reduce attacks by periodic system Manufactures release patches after
update. zero-day exposure.

3.2.1. Malicious software 3.3.2. Network layer vulnerabilities and threats

The FC and GCS are vulnerable to malicious software and threats
caused by UAV malware. These threats may lead to control of UAV as
well as loss of sensitive information. Also, an attacker’s access to a UAV
flight stack can lead to shut down of UAV, resulting a DoS attack and
disruption of flight mission. Implantation of such malware in UAV can
compromise the privacy and security of UAV, e.g., Maldrone is a virus
that infects FC and enables the attacker to get control of UAV (Paganini,
2015). Currently, there is an emerging kind of malware that comprises
of locking a system or encrypting the data of a user. It holds the data
encrypted until an user is willing to pay a ransom to the adversary, such
malware is called ransomware (Oz et al., 2021). However, ransomware
has not attacked UAVs yet. Therefore, it is necessary to consider that it
may target UAVs in future, because of their civilian applications.
3.2.2. Zero-day vulnerabilities
Hidden vulnerabilities can exist in GCS software or flight stack,
for example, overflow, DoS, and buffer, etc. These vulnerabilities are
known to the manufacturers of UAVs and can pose critical threats to
operators. The attackers can exploit such vulnerabilities until appropri-
ate patches are released by UAVs manufacturers. However, operators
must update the system when a patch is released.
3.3. Communication vulnerabilities and threats
Communication threats and vulnerabilities can be classified based
on the communication layers as follows (see Table 5):
3.3.1. Physical and MAC layer vulnerabilities
Many potential vulnerabilities are due to the complex nature of
UAV to GCS communication network, e.g., the authors in Hooper et al.
(2016) have presented three attacks that effect commercial UAVs based
on Wi-Fi. These include (1) DoS attack, (2) Buffer overflow (3) ARP
cache poisoning. Yet, their results indicate a lot of security issues to
GCS network. Besides, selection of adequate wireless communication
technologies depends on specific mission requirements, such as oper-
ating frequency, category, and transmission range, etc. Still, this does
not ensure success of flight due to consideration for security issues
in these technologies. Thus, it remains undecided, regarding which
wireless communication technology offers the highest level of security
for UAV.
The UAV network works in the ad hoc fashion, known as FANETs.
FANETs have unique characteristics like computational power for rout-
ing data and latency. These UAV networks consist of dynamic topology
posing critical threats. Research work in He et al. (2017) has in-
vestigated common security threats to UAVs aided public security
networks. The authors found if complexity of UAV networks increases,
the vulnerabilities and attacks also increase, targeting at communi-
cation modules and sensor inputs. Moreover, vulnerabilities in UAV
communication like blocking or intercepting the communication link
among FCs and GCS, can cause a DoS attack. To avoid this, it is required
to develop cryptographic algorithms for FANTEs, taking such charac-
teristics into consideration (Chriki et al., 2019). Next, the adversary
can disorder UAVs network directly or indirectly. By sending malicious
traffic directly through GCS or thorough UAV indirectly. Adversaries
continuously threaten the GCS with either centralized or decentralized
architecture. In these architectures, GCS shows a single point of failure
and security of complete UAV network relies on the security of GCS.
Although, security frameworks have been implemented for GCS,
the adversary can still disrupt the flight mission by compromising
flying UAVs (Tsao et al., 2022). In some cases, the mission can be
considered as success even one or more UAVs get compromised. In
civilian application, operators need minimum uncompromised UAVs
for accomplishing missions, as shown in Fig. 7.
In the centralized architecture, the attacker has to target the UAVs.
For this the attacker sends malicious traffic to a particular number
of UAVs. The attacker does this in a way that the minimum number
of uncompromised UAVs necessary for successful completion of the
mission is not satisfied. As a result, the attacker causes failure to flight
mission through disruption of whole UAVs network.
Moreover, in case of decentralized UAVs network architecture, the
attackers need to compromise only a specific UAV for failure of flight
mission, as shown in Fig. 8. Besides, in case of single backbone UAVs
network, attackers just send malicious traffic to backbone UAV, because
backbone UAV serves like a gateway among GCS and other UAVs. The
whole network is disturbed when the backbone UAV is compromised.
Hence, the weakest link is constituted by single backbone UAV in the
UAVs network. In this architecture, the security of the whole network
depends on single backbone UAV, security level of GCS, and commu-
nication link between them. Yet, if UAVs are same in size, shape and
color, it becomes a bit for difficult attackers to identify the backbone

10
H.J. Hadi et al. Journal of Network and Computer Applications 213 (2023) 103607

Table 5
Communication level vulnerabilities, existing countermeasures, and their limitations.
Ref Network and Transport Countermeasure Limitation
Layer
Deligne (2012) Attacks on Communication Developing a high-level architecture protective against Need to implement and maintain a balance
Protocols attack, with the ability of pliability and reliability. between security and performance of trade-offs.
Security services can be provided by embedding into a
hardware module. Encryption and IDS
methods utilization’s are important tools for protection.
Emerging technologies like Blockchain provide security
against attacks.

He et al. (2017) Eavesdropping Implementing highly secure encryption approaches and IDS Time delays due to computation overheads.
DoS/DDoS solutions can be a fruitful tool to guard against these attacks. Limited routing protocols provide security feathers.
Blackhole Secure routing protocols also enhance security. Performance dent of GCS to UAV communication.
Flooding Attackers change the pattern to compromise
Wormhole signature-based-IDS. False positives and false
Forwarding attacks negatives defeat anomaly-based IDS.

Fig. 8. Single backbone in a decentralized architecture.

Fig. 7. Centralized architecture.

UAV. In more than one backbone UAV architecture, backbone UAVs

and GCS of every swarm are especially critical to the success of mission.
Although, the backbone UAV gets compromised but mission might
be completed. It can be observed from Fig. 9, that attackers must
compromise the GCS or four backbone UAVs for disrupting complete
UAVs network. Further, advanced architecture of UAVs network is by
mixing UAVs, as shown in Fig. 10. In this architecture, securing the
network of backbone UAV is equally important as the whole network
security, because the threats are prone to increase of complexity and
number of UAVs.
Additionally, the UAV protocols for routing are vulnerable because
of limited resources, dynamic topology, and lack of encryption in
wireless links (Maxa et al., 2017). In such situations, attackers take
advantage of such constraints for performing numerous routing attacks
at network level. The attacker may disclose sensitive data in UAV
network which does not have security mechanisms.
Adversaries can leak routing and topology information as well as
UAV location by using eavesdropping techniques (Maxa et al., 2017).
Fig. 9. Swarm of UAVs in a decentralized architecture.
Therefore, without considering authentication and integrity, routing
protocols of UAVs are prone to attacks, like route-cache poisoning (Wu
et al., 2007), where the attackers add incorrect routing information into
UAV cache.

11
H.J. Hadi et al.
Fig. 10. Mixed UAVs in a decentralized architecture.
4. Emerging defence technologies for UAVs
No doubt, UAVs have brought different benefits including commer-
cial and personal benefits. Yet, there are many security, privacy and
safety drawbacks (Kafi et al., 2013) through which cyber criminals
can use to invade the safety and privacy of individuals as well as
the general public. Moreover, many attributes of UAVs are used in
attacks including unauthorized inspections and high-level operations.
Similarly, images taken by these UAVs might be used to carry out
illegal activities like scamming. Therefore, UAVs should not be used for
capturing images and for recording the videos of individuals without
their consent (Peterson, 2010). Currently, majority of UAVs are Wi-
Fi enabled for broadcasting the captured videos to smart devices,
attackers easily access Wi-Fi with weak password and interfere with
the communication (Jones and Kovacich, 2015). Thus, UAVs also pose
serious threats to public.
Similarly, attackers may use unauthorized UAVs for destroying
authorized UAVs with the help of physical collisions. The unauthorized
and authorized UAVs run into each other frequently, so it is important
to prevent any collision among them.
Furthermore, different algorithms are proposed in literature for
preventing collision among UAVs, e.g., using Sense and Avoid (SAA)
algorithm (Zeitlin et al., 2006) to sense UAV and referring to the
hurdles placed by an attacker. Barfield has presented another model
for sense and avoid. In this method, he proposed an independent
collision prevention system that could protect UAVs from accidents.
Also, many algorithms aiming for collision avoidance have been de-
signed. These algorithms have helped in accomplishing some crucial
challenges including Individual Collision Avoidance (ACA) and Group
Collision Avoidance (GCA) (Sharma et al., 2020). Yang et al. (2014)
have presented another method in 2014, this is based on a 3D path
organization for UAV that comprises of tracking down a collision-
free path. Moreover, Ueno and Higuchi (2011) have given a novel
algorithm that is capable of correctly locating the objects in UAVs
vicinity. Authors in Brandt and Colton (2010), have argued that UAVs
are more appropriate for operating indoors. This is because of their
flexibility as well as well controlled operations in confined and small
areas. In Israelsen et al. (2014), presented an algorithm to manually
control UAVs by applying automated obstacle collision avoidance.
Avoiding UAVs’ collisions is also crucial to secure communication
among UAVs and GCS. To secure this communication, different security
12
Journal of Network and Computer Applications 213 (2023) 103607
protocols were proposed. The nature of UAVs’ application decides the
use of these security protocols, while there are three main categories of
UAVs security protocols. The first is secure communication. The second
is security of the physical layer and the third is intrusion detection
system. Fig. 11 shows the emerging defence technologies for UAVs.
4.1. Secure communication in UAVs
UAVs can observe a wider area without taking any aid from a
network. While in flight, UAVs continuously exchange sensitive infor-
mation by communicating with GCS, many new challenges are created
by the exchange of information due to dynamic topology. Since UAVs
are often used to transmit data from any node to GCS, attackers can
attack the transmitted data in different ways. In maximum military
application, important information is transmitted between authorized
users via wireless communication channels (Khan et al., 2020). As these
communication channels are insecure mediums, so it is easy to steal
information by launching cyber-attacks, like confidentiality attacks,
integrity attacks and availability attacks. To protect the information
from attackers, numerous security protocols are being used.
These security protocols help in securing the transmission and in
authentication of users, for example, symmetric protocols for UAV
security and asymmetric protocols for security. These two types of
protocols are used for securing communication among UAVs and GCS.
Whereas, a private key is used for encrypting and decrypting data
in symmetric cryptography security protocols while asymmetric cryp-
tography protocols use pair keys (one public and one private). In
these protocols, data encryption is done through a public key while
decryption is done through private key. Asymmetric and symmetric
protocols are scribed in the following sections and after that lightweight
authentication protocols that are also discussed.
4.1.1. Symmetric cryptography protocols
These days, cryptographic protocols are used for ensuring confi-
dentiality, integrity, and availability. Particularly, symmetric crypto-
graphic protocols are being used for protecting sensitive data like text,
audio, video and images. While in these protocols, sender and receiver
both share the same key for encryption and decryption. For example,
One Time Pad (OTP) is used frequently for securing transmission. For
this purpose, OTP needs to have the same size of data. When an
image containing pixels of 𝑁 rows and M columns is transmitted, key
should be same as the size of the image (Atoev et al., 2019). The OTP
encryption is also applied to increase security of Micro Air Vehicle link
(MAV link) (Atoev et al., 2019).
Further, decryption and encryption methods are used for securing
the data transmission. Here many commands are used to control UAVs,
like start, and takeoff commands. Whereas all commands are given
in a bit format which can be shown by 0 to 1. In addition, a long
text, secured by using encryption, is created with the combination
of these bits. With OTP encryption, this mechanism also has some
disadvantages, for example, the size of key and data should be equal.
In order to send large data, it is necessary to share a key at the receiver
side. Therefore, key sharing is a problem because it consumes most
of the bandwidth. Also, since the key might be used for once due to
authorization risk, a new key for each transmission is required (Atoev
et al., 2019).
Other than this, an algorithm in Atoev et al. (2019) can be improved
by implementing robust transformation mechanisms like discrete cosine
transformations and discrete wavelet. This type of transformation is
faster than transforms performed on actual message directly (Ma et al.,
2016). Likewise, a Chaotic Lorenz system presented in Kirichenko
(2015) can encrypt, decrypt those actual and transformed messages
with long term unpredictability. This Chaotic Lorenz may generate
higher randomness with minimum differences in seed values.
In the Chaotic Lorenz system, UAVs collect data from cameras,
sensors and later pass data to the Lorenz encoder. However, no direct
H.J. Hadi et al.
Fig. 11. Emerging defence technologies for UAVs.
encryption is applied to plain messages, Instead all information is
changed into bits and later encrypted. Following encryption, UAVs
send encrypted information towards a receiver. While the receiver
then decrypts information by reversing the Lorenz system. This en-
cryption algorithm lies in the category of symmetric protocol. This
protocol (Kirichenko, 2015) also has some drawbacks, e.g., no data
scrambling mechanism is present in this system, whereas the security of
encryption algorithms relies on both diffusion and confusion (Shannon,
1949).
4.1.2. Asymmetric cryptography protocols
Asymmetric protocols for security use two separate keys including
one public and one private key. These keys are used for encryption
and decryption of data by sender and receiver, respectively. While
the confidentiality of a public key is not very important since the
information encrypted through a public key cannot be decrypted using
the same key. So, there is always a need for a private key to decrypt
data. For this, the author has proposed a mechanism in Wesson et al.
(2014), for checking the originality of the data. This protocol verifies
whether data is sent by the original GCS or eavesdroppers. This protocol
falls into the category of asymmetric protocols, where asymmetric
protocols are used for ensuring the integrity of data being transmit-
ted among different devices or sensors. With the help of X.509, the
length of generated signatures has become shorter. Thus, this made the
authentication process faster. Another scheme presented in Pan et al.
(2012), verifies signatures once the data is received by receiver. Here,
the verification process is executed by UAV (after receiving the data
from GCS) to confirm confidentiality before executing the last action.
For verification, a 164 bits hash is created through SHA-1 Algorithm on
sender sides. This hash is encrypted through a public key before it is
sent to the other side. While, the private key is utilized for decrypting
the hash on receiving side. Later, the hash is calculated by receiver for
the original message. Finally, both hashes are compared by the receiver
to check the originality of message.
Moreover, security of Automatic Dependent Surveillance Broadcast
(ADS-B) can be enhanced by asymmetric protocols (Wesson et al.,
2014). However, ADS-B, being a protocol for air traffic surveillance, is
insecure. As it is used for detecting the other surrounding UAVs. ADS-B
has some disadvantages like it lacks built-in mechanisms for security.
Next, Wesson et al. (2014) have investigated either an asymmetric
protocol can increase security in ADS-B or not. For this purpose, they
have evaluated the existing security protocols based on their ability to
ensure security of ADS-B. Then after evaluation, they have contended
that key elliptic curve computerized signature is more practical.
13
Journal of Network and Computer Applications 213 (2023) 103607
Furthermore, application of asymmetric cryptography through ADS-
B is costly as well as time consuming, because different keys are
provided for encrypting and decrypting the actual text. The commu-
nication security protocols may also be used for ensuring data integrity
being transmitted. Diffie as well as Hellman presented a protocol for
key exchange between the sender and receiver (Bresson et al., 2007) a
few decades ago. However, both parties have no prior information that
keys sent over the communication channel are shared by authorized
person or not.
Additionally, in Sahingoz (2013) authors have proposed a protocol
for exchanging public keys. In this protocol, keys are exchanged by
UAVs sensor nodes, and communication between nodes starts after
authenticating the surrounding nodes. In this framework, sensor nodes
are actual communication parties. Here, one sensor sends a message
encrypted with a public key, and another sensor decrypts message
using a private key and random numbers generated by the sensor itself.
While, the other party transmits an encrypted message using public
key. The cipher message is then decrypted by the first party through
a private key as well as random number. If both parties have the same
messages, then the sensor is considered as an original entity and will
be allowed to continue communication.
developed trust-based security protocol to secure UAVs (Valentin-
Alexandru et al., 2019). In this protocol, sensors of UAVs are assigned
with trust values to check accuracy and correctness of data. This
methodology has three modules: (1) direct determination of trust value,
(2) indirect determination of trust value and (3) final determination of
trust value calculated by UAVs. Here, each sensor determines its own
trust value. If an attacker places a sensor, that sensor can also produce
trust value, but UAV will determine the ultimate trust value. For this,
trust values saved in the UAV log file will be compared with those
received by a UAV. If the result of comparison is a negative trust value,
then sensors are not trustworthy, thus UAV will not take more data
from sensors and attacker will not have any access to UAV. Contrary to
this, a positive trust value indicates that sensors are trustworthy, UAV
can take further communications with sensors. While zero trust value
shows that more information is required to determine whether sensors
can be trusted.
Yoon et al. (2017), have implemented a protocol that can verify
whether information received by UAVs, is transferred from an attacker
or original GCS. In this scheme, a UAV sends randomly encrypted mes-
sage to GCS and the data received by GCS is decrypted. For decryption
GCS use a private key and then encrypts again using a public key.
Finally, the data is sent to UAV where it is compared to values stored
in UAV log file. If the verification is successful, the UAV can take off. If
H.J. Hadi et al.
verification fails, this tells that UAV attackers are trying to get control
over UAV. Hence, no further communication between sender (GCS) and
receiver (UAV) will take place. In this mechanism, only random text
encryption and comparison are used for checking if the UAV is hijacked
or secure. This scheme provides authentication of data. Yet, in case
of larger data transmission for UAV authentication, high bandwidth,
processing time and cost are required. Therefore, instead of whole text
encryption, a small hash can be used to overcome these issues.
Steinmann et al. (2016) have developed a significant negotiation
framework for providing security and confidentiality to data stored
in UAV chip. The major theme is to develop a scheme that changes
random keys continuously. For example, One-Time PAD technique can
be used to encrypt data because in this technique, the size of original
message and key are the same. In this method, if one key is explored,
then whole message can be revealed easily. Therefore, random keys
generation can increase the security of original message and keys. In
this mechanism, the sender sends a message to the receiver along with
a hash code after encrypting with a public key. The receiver uses a
private key for data decryption, calculates value of hash, and later
compares both received as well as calculated hashes. If both hash codes
match, then it ensures the integrity of the message and authentication
is implemented through this message, but it is not good for keeping
keys a secret.
4.2. Lightweight authentication protocols for UAV
Lightweight encryption protocols, belong to another class of secu-
rity protocols used to hide confidential information from intruders.
Also, these lightweight protocols can help to reduce the information
encoding time. Lightweight protocols do not take much memory which
permits UAVs to perform faster. A lightweight protocol is implemented
in Driscoll (2018), which is more suitable for switching context fre-
quently, in a highly multi-task environment. Next, in Wang et al.
(2021) developed a blockchain-based solid routing scheme for Un-
armed Arial System (UAS) networking. In this algorithm, lightweight
blockchain is used like a bargaining chip for strengthening routing
of UAS, using 5G cellular technology. This algorithm is not the same
as traditional algorithms for routing, because it can easily identify
spiteful UAS, reduce attack intensity and avoid the attackers. Moreover,
the proposed algorithm is intended to secure UAS and expand the
deployment of swarm UAS network over a wider range. For minimizing
effects of cyber-attacks sessions keys known by both participating
parties should be used for data encoding.
Conversely, it is difficult to get required abilities for both encoding
and session keys with low-cost IoT integration, due to limited perfor-
mance. Demeri et al. (2020) have implemented an integrated secure
data transfer mechanism by using low-cost arial policy that integrates
numerous cryptographic accelerators. In this method, the components
are combined through moldable Application Programming Interference
(API), hardware and software design yielded costless UAVs. yet, with
recent advancements in wireless communication systems as well as
electronic devices, great relaxation is being offered to the public by
UAVs.
The UAV security is getting higher attention due to emerging secu-
rity issues, financial as well as strategic information, and significance
associated with UAV applications. For providing privacy and security
to communicating parties, lightweight protocol for authentication is
proposed in Pu and Li (2020). This protocol offers safe communication
between the GCS and UAVs. This framework has also used Packet cap-
ture (PCAP) for ensuring secure communication between both parties.
The prime idea behind PCAP is, UAV as well as a GCS using seed values
from chaotic maps. These value can shuffle actual message randomly
based on chaotic sequence (Pu and Li, 2020).
Additionally, the concept of lightweight along with data security
is discussed by literature (Haque and Chowdhury, 2017). Another, a
novel framework was developed for achieving the desired task. Here,
14
Journal of Network and Computer Applications 213 (2023) 103607
to make the system lightweight, selective encryption is performed.
In this algorithm, other than cryptographic method, watermarking is
also used for increasing data confidentiality and integrity. The rea-
son behind using specific encryption is to offer stabilization among
UAVs within limited resources. However, selective encryption has an
advantage, particularly in the case of real-time application where quick
processing is necessary. To point out authentication problems and data
insecurity, a two-step lightweight correlative authentication protocol
is implemented in Alladi et al. (2020b,a). In this method, a Software
Defined Network (SDN) is assisted with the UAV network in necessary
spying areas.
Besides, evidence for security of the protocol is also provided
to highlight security features. For UAVs, Smart IoD assisted frame-
work is proposed in Deebak and Al-Turjman (2020), which collects
required information independently, to reduced computational cost
through Lightweight Privacy-Preserving Scheme (L-PPS) (Deebak and
Al-Turjman, 2020). This scheme provides robustness among IoD devices
along with a proper authentication time. Due to of limited resources
and substantial risk around UAV, attackers can perform numerous at-
tacks including confidentiality, wireless and Man-in-the-Middle (MitM)
attacks. To protect UAVs from these attacks, authentication is necessary
to implement prior to start of UAV communication. It is also crucial
that implemented authentication mechanism guarantees that original
UAVs is prime concern of UAVs network security. Table 6 presents a
comparison among security protocols for intrusion detection and secure
communication in UAVs.
Furthermore, standardized authentication mechanism have an user-
name and a password which makes private key less secure. Hence, the
RSA certification needs long-lasting keys that cannot fulfill lightweight
demand in UAVs infrastructure. Another, lightweight recognition mode
for authentication based on Elliptic Curve Cryptography (ECC) is de-
veloped in Teng et al. (2019). It has three phases: (1) initiation of
ECC certification, (2) identity authentication and (3) verification of key
compatibility. The authors have mentioned that phase one and phase
two completely match the two-way authentication. While the third
phase validates consistency of verification keys. Contrary to traditional
modes of authentication in a UAV network, the method proposed
in Teng et al. (2019) depends upon short keys as well as reduced
computing workload. In Barka et al. (2018), Barka et al. proposed
lightweight communication technique for aerial Named Data Network-
ing (NDN). This technique can assist NDN security, also has 80%
prediction accuracy. This technique has reduced end-to-end pause to
lower than a second in the worst conditions.
However, the lightweight security protocols suit UAVs well, because
UAVs have small batteries and limited memory. A lightweight security
protocol is presented by Srinivas et al. (2019), known as tempo-
ral Credential-Based Anonymous Lightweight Authentication Scheme
(TCALAS) for IoD networks. The scheme proposed in Srinivas et al.
(2019) can work in condition only where there is a single flying zone.
Further, the exploration provided in Ali et al. (2020) indicates, the
scheme proposed by Srinivas et al. (2019) does not prove to be efficient
for availability and traceability attacks.
In Ali et al. (2020), an upgraded version of TCALAS scheme, uT-
CALAS is provided by Ali et al. (2020). This method provides security
against different attacks including availability and traceability attacks.
It increases extendibility and can work in numerous areas, where
more different flying zones are available. Besides it has successfully
achieved fast computation for authentication by only taking 2.29 ms
to accomplish the whole authentication process.
4.3. Security of UAV physical layer
One frequently adopted performance measure in security of physical
layer is rate of secrecy at which data is transmitted securely (Li et al.,
2014), but conventional encryption protocols are vulnerable due to
key distribution as well as longer processing time. The examination
H.J. Hadi et al. Journal of Network and Computer Applications 213 (2023) 103607

Table 6
Comparison of various protocols used in UAVs.
Classification
Symmetric Security protocols
Asymmetric security protocol
Lightweight authentication protocols
Method
One time PAD communication links
Information security Protocols
Information authentication
Inspection of cryptography in Automatic
Dependent Surveillance-Broadcast
Public key sharing
Trust-based security protocols
Authentication scheme
Convex optimization method
Blockchain-based
Authentication using public key
Packet capture
SDN-based authentication
Feature
Secure information due to large key size
Randomness
Computationally faster due to short hash
length
Elliptic curve digital signature algorithm
is feasible
Authentication of the received
commands from the GS
Verify whether sensors placed in UAV
network are trusted or not
Protects data even after hijacking the
UAV by the hacker
Decreases eavesdropping effects.
Maintains 5G cellular network
Use of moldable and extensible API
Physical unclonable function
Combine of security and SDN
Limitation
Extra bandwidth is necessary for sharing
the secret key
Lack of confusion part makes the system
insecure
encrypted form of Hash, attacker may
try to perform
eavesdropping attack to retrieve the
original hash
Costly and time inefficient
Select only one random number for
public key, An attacker can
easily judge the key
Packet can be Fabricated
Costly and time inefficient
Costly and time inefficient
Different than traditional algorithms
Slower than traditional authentication
technique
less dimensional chaotic map is used
Costly and time inefficient

of physical layer properties can make transmission secure, besides the
security of physical layer is useful to get maximum secrecy rate for
transmitted data over UAVs network. The physical layer security is
crucial for all communication devices and security controls of UAV.
Unlike traditional approaches of cryptographic security, Physical
layer security (PLS) benefits from the attributes of cellular channels
like interference, fading, noise for boosting signals reception at re-
ceiver end and reducing the quality of signals for eavesdroppers (Yang
et al., 2015). Moreover, PLS can be ensured with incorporation of
cryptographic protocols. There are numerous cryptographic protocols
presented in literature. These protocols provide a significant security
level, but unfortunately there is no protocol that can provide ideal
security. Hence, PLS is getting more attention.
Additionally, to maximize secrecy rate and increase security of
UAV communication, many works have been proposed on PLS (Choi
et al., 2014; Li et al., 2019a; Zeng et al., 2016). In recent years,
static relay-based systems for communication have gained importance
for improving existing PLS algorithms. A novel framework relying on
a technique, called UAV empowered mobile relay, is considered as
valuable technology. Authors have developed an upgraded version of
PLS algorithm based on UAV enabled mobile relying (Wang et al.,
2017). For improving communication system security, buffer aided
mobile based relay is implemented that permits quick and independent
data arrival.
4.4. Intrusion detection system
4.4.1. Machine learning based IDS
Digital machines can perform multiple tasks depending on user
instructions. In these machines, for the automation of tasks, different
mechanisms and techniques are used, like, Machine Learning (ML),
Neural Networks, and deep learning are used commonly. There are two
phases in ML algorithms including training and testing. In training, the
model is trained with the help of data to predict future events depend-
ing on training. The testing phase is used to measure the accuracy of the
model with the help of different strategies. Also, these ML techniques
can also be applied to UAVs to detect intrusion.
Moreover, a novel algorithm was presented in Lu et al. (2020).
This algorithm is based on deep reinforcement as well as weighted
least square (Ra et al., 2008). Authors in Bejiga et al. (2017) have
proposed a method, It is used to calculate jamming signal’s using
convolutional neural network (CNN). In this algorithm, UAV receives
values of weights and that from GCS. After that, Bit Error Rate (BER) is
used to select a relay power element. If learning parameter has a greater
value as compared to relay power, then a random relay is selected
by the device. If it is greater than zero, UAV uses reinforcement and
randomly selected values to send a message. The error rate can be
increased due to randomly selected relay power with above features,
this algorithms may prevent communication and UAV from jamming
attacks, but it might be expensive when the error rate is high.
Besides, a technique for attack detection is presented in Hoang
et al. (2019). In this technique, K-mean clustering and Support Vector
Machine (SVM) are used. Such algorithms have the ability to learn
from available data and then make a decision for future samples.
The proposed technique has two phases. The first phase involves both
parties to send signals to a UAV and in the second phase, UAVs transmit
the same signals to third party to detect deviation. When the third
party takes the signals, creation of a dataset is required to classify the
output using ML algorithms. Here, signals are received by a third party
continuously and mean as well as standard deviation is found for each
signal (see Table 7).
Consequently, standard deviation as well as mean become two
separate feature points in dataset. Common types of attacks detected
by UAV MLIDS are shown in Fig. 12.
Once the model training is completed the third party gets the new
sample, it is given to ML algorithms, where the labels (as Attacked
and Not attacked) are assigned according to the calculated values. For
increasing the accuracy of model, there should be more features in ML
data set and this ensures that there is no event declassified. Lastly, the
accuracy of the model is compromised because only two features are
used .
On the contrary, maximum approaches are focused on ML algo-
rithms for addressing vulnerabilities, and the most secure as well as
trusted process among them is data analytic. Yet, it is not true in each
case (Chen and Chen, 2019) because such techniques have not received
much attention from research communities. The security in big data
analytic is necessary, because it must deal with sample amounts of sen-
sitive data. This data requires guaranteed confidentiality, availability,

15
H.J. Hadi et al. Journal of Network and Computer Applications 213 (2023) 103607

Table 7
Machine learning scheme for UAV intrusion detection system.
Ref Attacks on UAV Machine Learning approaches Algorithm
Hoang et al. (2019) Eavesdropping Man in the middle attack Unsupervised One-class SVM K-means clustering
Xiao et al. (2018) Jamming Supervised Hill climbing
Xiao et al. (2017) Jamming, Spoofing, Eavesdropping Reinforcement learning Deep q-learning
Liu et al. (2019a) GPS spoofing Supervised learning K-nearest neighbors
Panice et al. (2017) GPS spoofing Supervised learning SVM
Arthur (2019) Jamming and Spoofing Reinforcement learning SVM, Deep Q-learning
Liu et al. (2019b) Eavesdropping attack Reinforcement learning Dyna-Q-based
Sedjelmaci et al. (2017) Black hole, Jamming, Gray hole Supervised learning SVM
Vanitha and Ganapathi (2020) Multiple type of attacks Hybrid approach SVM,KNN, K-mean clustering
Lu et al. (2017) Jamming and Spoofing Reinforcement learning Deep q-networks
Manesh et al. (2019) GPS spoofing Semi-supervised KD-trees
Mitchell and Chen (2013) Different attacks Supervised learning Feed forward neural network
Eavesdropping Reinforcement learning Deep Q-networks
Min et al. (2018) Interception of malicious UAVs. Reinforcement Learning Deep Q Learning
Jamming Supervised learning SVM, K-NN
Feng et al. (2020) GPS spoofing Supervised learning Genetic algorithm, SVM
Li et al. (2019b) Jamming Reinforcement learning Reinforcement learning
Lin et al. (2019) Jamming Reinforcement learning Deep Q learning
Challita et al. (2019) Cyber–physical attacks Ai neural network Artificial neural networks
Abbaspour et al. (2016b) Fault data injection Neural network Neural network
Sheng et al. (2018) Multiple type of attacks Unsupervised Ant-colony clustering
Lu et al. (2020) Jamming Neural network Deep conventional neural network

data analytics (Darwish and Bakar, 2018). Some studies have been con-
ducted for approximation algorithms’ integration based on ML (Bangui
et al., 2020). For example, data approximation for detecting continuous
jamming attacks.

4.4.4. Machine learning based IDS datasets

These datasets have a significant role in validation of ML based IDS.
Currently, numerous intrusion detection datasets are available over the
internet (Anon, 2018). However, there is a need for creating many
other IDS datasets in UAV research for exploring recent attacks over
IDS. Mostly, research work used KDD CUP dataset (Anon, 1999) for
validating IDS models. In these works, other realistic datasets like CIC-
IDS-2018 (Anon, 2018) are not considered. While, it is necessary to
investigate and learn the features of these attacks for building a reliable
IDS model. It is significant to use multiple datasets for evaluating ML
based IDS, this will be useful for reinforcement learning models and
estimating learning impact for numerous attacks in real-time scenarios.
Thus, new dataset is required that might be paramount to train and
validate credibility of IDS for UAV environments.

4.4.5. Training data security

Fig. 12. Types of attacks detected by UAV MLIDS.
and integrity. Hence, data-driven security needs particular attention to
support advances of AI based transport systems in a better way.
4.4.2. Challenges of machine learning based intrusion detection
An important asset for IDS is big data, because it is effective to
protect against known as well as unknown attacks, so as to help
identify abnormal nodes. Still, there are some critical data issues that
need consideration to address, e.g., challenges relevant to UAVs data
affecting security in UAV communication are identified.
4.4.3. Intensive data computation
No doubt, the advances in ML techniques have helped in intrusion
detection and prevention. However, challenges of UAV data augmen-
tation are still not well addressed. As stated by Intel, each day, 4
terabytes of data will be generated by UAV and more time will be
required for big data analytics. For protecting communication in UAV
networks, lightweight ML based IDS are highly recommended for re-
ducing computation time, the data approximation might be a solution.
Moreover, this can be done by choosing highly valuable data for big
In the future, there will be potential but unknown vulnerabilities
due to an increase in smart applications, therefore IDS and Intrusion
Prevention System (IPS) must be more reliable for mitigating attacks.
Yet, single IDS cannot detect all types of attacks because of limited
information related to unknown attacks. For this, a collaborative IDS
can be a solution to detect all attacks efficiently and effectively. On
the contrary, this collaboration also has certain risks, because expertise
shared by each IDS is based on results of classification as reliable
feedback. Other collaborators may use this to choose whether to give
an alarm or not, still an attacker can hack and alter the training data
as well as modify the classifier’s function for launching other threats.
Besides, these threats can immediately impact the accuracy of detection
in IDS as well as collaborators. In Chen and Chen (2019), authors have
particularly highlighted the significance of data security, they have also
discussed how attackers might use ML classifiers for decrypting UAV
messages. There is still need to develop new techniques for ensuring
confidentiality of the shared attacks in collaborative IDS.
4.4.6. Fairness and trust
A classical IDS is deployed in a cloud as it has sample computation
resources. Yet, lightweight IDS may need deployment in a distributed
environment. There is need to timely minimize network problem and

16
H.J. Hadi et al.
protect against malicious attacks. For this distributed models like feder-
ated learning, deep learning, and reinforcement learning have attracted
researchers’ attention. For instance, deep learning models can achieve
prediction with high accuracy. Unfortunately, these models mostly do
not display how internal features are extracted because these models
assume that all their predictions are reliable, without any explanation
regarding the reliability of outcomes. Therefore, it is still a question that
how these models can explain transparently the prediction results. Like-
wise, what might be a typical form of such explanations for ensuring
fairness and trust of IDS in UAVs?
4.5. Signature based intrusion detection
For making devices intelligent, instructions must be given to these
devices and rules should be defined in rule-based tasks, so devices act
depending on these rules. While in UAVs, different rules are stored in
the chips and levels for rule acceptance are created. A novel IDS is pro-
posed based on rules of behavior for minimizing false-negative predic-
tions (Sedjelmaci et al., 2017). Seven attacks related to integrity, con-
fidentiality, and availability were discussed in this detection method.
When any of these attacks is detected, the UAV takes defensive action
as below:
• Firstly, when a UAV successfully reaches a secure location, it turns
on weapons for defending against attacks.
• Secondly, an action is taken when there is difference in sensor
reading taken from trusted nodes.
• Thirdly, the proper action is taken when good recommendations
are received for misbehaving UAVs. Similarly, it is required when
unrighteous recommendations are received for trusted nodes.
• Fourthly, when landing gear is deployed by a UAV in an inappro-
priate location, the indicator is used for handling it.
• Fifthly, when a UAV begins to send data to unauthorized party,
the indicator is activated.
• Sixthly, when a UAV uses countermeasures without investigating
an attack the attack indicator is activated.
• The seventh attack occurs when more trust is used by UAV to
cross the restricted altitude.
The Last two attacks correspond to availability attacks, and a de-
fence phase is initiated by UAV defence for protection against these
attacks. No doubt, IDS can be used for the detection of deviation in
a network. Thus, IDS undoes the impact of attacks to prevent UAV
from hazards, therefore, in UAV network IDS is the main mechanism
for detection of malicious attacks as well as for protection from these
attacks.
Intrusion detection along with ejection of malicious node was ad-
dressed in Sedjelmaci et al. (2016). For more accurate detection of
intrusion, a technique based on Bayesian model was given in Xu
et al. (2020). It focuses on the detection of internal intruders and the
ejection of nodes which might be harmful for the network. Initially,
different nodes activate the system intrusion detection mode. For this,
misbehave rate (MR) is calculated by IDS for neighbor UAV which
is in the network. If the threshold value is lower than MR, then IDS
begins monitoring of neighbor nodes and detection system is activated,
otherwise no task is performed by IDS. The MR of a node is computed
by intrusion ejection system, when the threshold value is lower than
MR, node is declared as malicious and rejected from network.
Further, hybrid approach for anomaly estimation inside UAV net-
works based on both spectral traffic analysis and a reliable con-
troller/observer (Condomines et al., 2019). The suggested hybrid so-
lution considers a quantitative signature of the data exchanged in the
network. The discrepancies are utilized to choose the most accurate
model for a precise assessment of that irregular traffic,by looking at the
resulting signatures. The second step is to robust observation based on
the observer or controller. Modern IDS systems that deal with vulner-
abilities and assaults in networked UAV situations have been reviewed
17
Journal of Network and Computer Applications 213 (2023) 103607
by authors in Choudhary et al. (2018). According to information-
gathering sources, deployment tactics, detection strategies, detection
stages, IDS acknowledgment, and intrusion kinds, they categorized
the existing IDS mechanisms. The potential software and hardware-
based assaults on the UAV power devices were briefly examined. The
researchers have only suggested developing IDSs to protect the flight
control system from such onboard attacks; however, there has not been
any implementation or discussion of such a system or the necessary
parameters (Rahman et al., 2020b) .
Moreover, the misbehavior of node might be temporary due to some
environmental condition like rain, fog and extreme temperature etc.
There is risk for higher false positive rate due to immediate ejection
of node. Table 8 presents a signature based schemes for UAV’s IDS.
There are four significant factors that were used for analysis of these
techniques. These are True Positive (TP), False Positive (FP), True
Negative (TN) and False Negative (FN). These factors can be used
for finding statistical parameters like precision, accuracy, F-Score, and
recall.
The accuracy tells the numbers of predictions made correctly by
a model and correct predictions mean higher accuracy. The following
method can be used to calculate accuracy:
𝑁𝑜. 𝑜𝑓 𝑐𝑜𝑟𝑟𝑒𝑐𝑡 𝑝𝑟𝑒𝑑𝑖𝑐𝑡𝑖𝑜𝑛𝑠
𝐴𝑐𝑐𝑢𝑟𝑎𝑐𝑦 = . (1)
𝑇 𝑜𝑡𝑎𝑙 𝑛𝑢𝑚𝑏𝑒𝑟 𝑜𝑓 𝑃 𝑟𝑒𝑑𝑖𝑐𝑡𝑖𝑜𝑛𝑠
The next parameter Precision can be calculated by ratio between
sum of true positive, true negative and true positive. A better model
shows high precision. Precision is calculated as below:
𝑇𝑃
𝑃 𝑟𝑒𝑐𝑖𝑠𝑖𝑜𝑛 = . (2)
𝑇𝑃 + 𝐹𝑃
Another parameter is Recall. It is the sensitivity of a system. It is
calculated as below:
𝑇𝑃
𝑅𝑒𝑐𝑎𝑙𝑙 = . (3)
𝑇𝑃 + 𝐹𝑁
The final parameter is the F-Score, where Recall and Precision are
used in calculation. It is weighted average of Precision and Recall. The
F-Score lies between 0 and 1. 1 tells that Recall and Precision are
perfect. While 0 shows that either Recall or Precision is 0. F1-Score
is calculated as:
( )
(𝑅𝑒𝑐𝑎𝑙𝑙)−1 + (𝑃 𝑟𝑒𝑐𝑖𝑠𝑖𝑜𝑛)−1 𝑅𝑒𝑐𝑎𝑙𝑙 × 𝑃 𝑟𝑒𝑐𝑖𝑠𝑖𝑜𝑛
𝐹 1 − 𝑆𝑐𝑜𝑟𝑒 = =2 ×
2 𝑅𝑒𝑐𝑎𝑙𝑙 + 𝑃 𝑟𝑒𝑐𝑖𝑠𝑖𝑜𝑛
(4)
5. Blockchain application in UAV networks
At present, blockchain technology is emerging to solve increasing
problems related to UAVs network. This section reviews the state-of-
the-art in UAVs having deployment of numerous versions of blockchain
as shown in Fig. 13. Blockchain in UAVs is deployed for exploiting
many benefits like transparency, immutability, auditability, and trace-
ability. Latest applications of blockchain enabled UAVs for networks
are presented in Table 9.
Cybersecurity works as an inclusive aim to deploy blockchain tech-
nology in UAVs networks. Certainly, the feature of immutability in
this technology makes it perfect to ensure accountability of attackers.
Many existing works related to deployment of blockchain in UAVs are
motivated by cybersecurity needs. These needs include availability,
integrity, non-repudiation, authentication, and confidentiality. Though,
most of the existing solutions address all these aspects simultaneously,
but we group them based on a dominant one. Since, confidentiality
is the protection of information from unauthorized users. Therefore,
UAVs networks are also prone to confidentiality attacks. In Wu et al.
(2021), Wu et al. have described different scenarios where blockchain
helps to ensure UAV network privacy. They have proposed a tamper-
proof and blockchain oriented ID management system developed for
authentication and authorization of UAVs, according to requirements
H.J. Hadi et al. Journal of Network and Computer Applications 213 (2023) 103607

Table 8
Signature based schemes for UAV’s intrusion detection system.

IDS type Used method Benefits Drawback

Signature Based IDS Intrusion detection method (Lu et al., Prediction and Detection of reduced More rules mean higher process time.
2020) false-negative defends UAVs from false this will result in the delay of the
information being injected decision taken by the UAV.

Signature Based IDS
Intrusion Detection and evil node
(Sedjelmaci et al., 2016)
If nodes are rejected immediately based
on misbehavior there is a risk of
increased false positive rate
Instead of immediate ejection of nodes,
more rounds are required. Once a
number of rounds are complete average
will be taken for the final decision of
ejection regarding malicious nodes.

Signature Based IDS Hybrid IDS (Condomines et al., 2019) Hybrid experimental system to take Statistical signature.
advantage of the low cost of a
simulation while still obtaining the
accuracy of a real protocol stack

Signature Based IDS
Hybrid IDS (Rahman et al., 2020b)
Machine learning and Signature based More rules mean higher process time.
intrusion detection systems implement, it
can deal with malicious data/control
commands initiated due to hardware
attacks

Fig. 13. Blockchain based UAVs network.

of Federal Aviation authority (FIA). They grasped the potentiality of
Distributed Ledger Technology (DLT) for preserving privacy of tra-
jectory information related to UAVs. They have also stated that ho-
momorphic obfuscations strategies and asymmetric encryption devised
in blockchain might be used for improving confidentiality of UAV
networks.
Next, data integrity is significant for ensuring that data transferred
is not modified or altered by an attacker. Islam and Shin (2019)
have developed the architecture for preserving integrity of information
transferred among Mobile Edge Computing (MEC) servers, devices, and
IoT (Internet of Things) devices. They have used UAVs as reliable relays
for ensuring integrity of information before transferring it to MEC
servers. This framework has an encryption mechanism, to refine general
integrity of transmitted data and lessens direct requests to MEC servers.
On contrary, in Singh et al. (2020) used blockchain for improving
the integrity of the data broadcasted among IoD environment and
UAVs. This mechanism efficiently chooses miner node by applying a
Boltzmann machine. One more application requiring higher integrity of
data is power plant surveillance. In Kanade (2021), Kanade et al. pre-
sented a safe power plant surveillance system using UAV swarms. They
have employed Distributed Ledger Technology (DLT) for preserving
integrity of data sensed by a UAV. To decrease the cost of computation,
transactions are allowed just in case of higher-risk signals.
Another research (Khan et al., 2022) work has presented a coop-
erative strategy based on the blockchain hyperledger fabric and the
B-Drone genetic algorithm for fog node management. This method
secures the gathering, planning, optimization, processing, management,
and preservation of drone-based data in the fog node. The use of
the hash-encryption (SHA-256) algorithm ensures the privacy of each
transaction between a drone and a fog node before exchange.
Federated Learning (FL) for UAV networks supporting B5G com-
munications with BC (blockchain) support is discussed in this sur-
vey (Saraswat et al., 2022). The technical advancement specifics con-
cerning architectures, protocols, and concepts are offered. When com-
bined with BC, it guarantees a reliable FL ecology. The core principle
of upcoming 6G or B5G networks, as well as their ability to support
massive UAV networks, are also discussed in this survey. Also, it
is concluded that the unification of FL and BC would be a better
and more reliable solution. However, in order to meet the objective
of a complete integration for UAV enabled applications, 6G com-
munication channels must still be the energy-efficient and reliable
answers for UAV networks. To offer communication services over the
UAV network with dynamic, flexible, and on-the fly decision capabili-
ties, blockchain-enabled UAV software may be used. For safe network
administration and communication among UAVs, authors suggest a
blockchain-enabled softwarization architecture (Kumari et al., 2020).

18
H.J. Hadi et al.
Table 9
Latest application on blockchain enabled UAVs networks.
Ref CIA Triad
Wu et al. (2021) Confidentiality
Qian et al. (2020) Confidentiality
Xiao et al. (2021) Confidentiality
Alkadi et al. (2021) Confidentiality
Lv et al. (2021) Confidentiality
Khan et al. (2022) Confidentiality
Islam and Shin (2019) Integrity
Singh et al. (2020) Integrity
Gupta et al. (2021) Integrity
Saraswat et al. (2022) Integrity
Kanade (2021) Integrity
Yazdinejad et al. (2020) Availability
Kapitonov et al. (2019) Availability
Kumari et al. (2020) Availability
Barka et al. (2019) Non-repudiation
Ossamah (2020) Non-repudiation
They provided a softwarization architecture for the 5G-TI UAV network
based on the blockchain. The authors have claimed that for its effective
functioning, the 5G-TI permits a reduction in communication delay.
However, they did not provide any experimental to prove the claim.
Hence, there is a need to test this system in a real-time scenario. Other-
wise, the security and privacy issues in UAVs still remain a challenge.
The study suggested a blockchain-based drone communication archi-
tecture that would support 5G and AI to reduce security and privacy
concerns (Gupta et al., 2021). Though this technique helps to minimize
security issues, but it cannot solve the problem completely due to
the following reasons: The suggested system 26 uses the Ethereum
blockchain, open to the public and available to all users. Therefore,
gathering and storing data in the blockchain offers security and en-
hances UAV communication performance, but the sensitive information
of the users is also accessible. Thus, the threat of privacy and data
integrity is still present. Using public-key cryptography, the information
on a blockchain network is securely encrypted (digital signatures).
However, public key encryption can be broken using the emerging
technology known as quantum computing. Therefore, it is necessary
to create a blockchain network that is quantum secure.
In addition, validation of block is given to humans for reducing
computational costs. An important concern in airspace is to maintain
availability of service for UAVs, because blockchain is decentralized in
nature and resistant to a single-point-of failure (Agrawal et al., 2018).
All presented blockchain-oriented UAV Traffic Management (UTM)
architectures are decentralized without having exceptionally low or no
central authority. A decentralized system is proposed for authenticating
and registering UAVs in Yazdinejad et al. (2020). In this architecture,
a reliable ground-based UAV controller agent is assigned for managing
authentication in a predefined perimeter. In this work, the availability
of authentication is maintained by permitting neighbor UAV-controller
to replace a failing one. In context of UTM, researchers of Kapitonov
et al. (2019) gave a blockchain architecture by implementing Robo-
nomic protocol for providing security among communication nodes.
They have argued that this architecture solves issues of latency found in
de-centralized systems. This mechanism is assisted with smart contrasts
that give immutability and transparency. Therefore, this architecture
is implemented through decentralized interplanetary file system and
ethereum.
5.1. Existing and proposed reference architecture of blockchain application
in UAV network
In this section we have presents existing architecture based on
blockchain application in UAV network. After that we have analyzed
these proposed architecture and then identify a hybrid solution ar-
chitecture based on ML and blockchain better. In a recent research
19
Journal of Network and Computer Applications 213 (2023) 103607
Blockchain application
ID management system
Privacy of collected content
Privacy of collected content
Privacy of collected content
Privacy of collected content
Privacy of collected content
Overall integrity is improved by used encryption mechanism
Deep Boltzmann machine
Integrity is improved by used encryption mechanism
Using federated learning for providing security between communicating nodes.
used DLT for preserving integrity of plant information sensed by a UAV
Proposed decentralized zone-based system
Implemented rhobonomic protocol for providing security between communicating
nodes.
Implemented blockchain-based protocol for providing security between
communicating nodes.
Trusted blockchain-based
Digital fingerprint
work (Allouch et al., 2021), authors have implemented Unmanned
Traffic Management (UTM). The UMT Chain is a flimsy hyperledger
fabric-based blockchain safety solution for low-altitude UTM. UAVs
are made to operate within the limitations of available computational
and storage power. UAVs may be targeted by jamming, hijacking, and
GPS spoofing. To determine the performance of the suggested solution
two factors were used. The first is the delay in transaction, calculated
by multiplying system threshold with confirmation Transection time
and subtracting it from submission transaction time. While the second
element (delay for read) is calculated by subtracting response time from
submission transaction time. The experimental evaluation of the system
indicated that the peer’s average and highest CPU usage, respectively,
are 7.32% and 11.34%. Additionally, the peer’s average and extreme
memory use are separately 81.4 MB and 95.5 MB. The assembly node’s
typical CPU and memory consumption were recorded as 75.2 MB and
7.53%, respectively.
As technology has advanced, the data control and aggravation
difficulties in UAVs have also increased. Another solution based on
blockchain technology (BCT) for improving security and privacy of de-
vice data is presented in Ch et al. (2020). In this solution, fundamental
data aboutvalidity, dependability, and reactions of the UAV is saved in
a cloud platform. This platform uses SHA and Pentatope-based Elliptic
Curve Cryptography to safeguard the privacy of data. The information
is stored on a public blockchain built on Ethereum to support seamless
BCT transactions. An IoT-based application is used to test the proposed
methodology in a fictitious automotive monitoring system. The results
reveal that blockchain enhances the latency and processing time, which
increases overall time consumption. This is because there is now more
latency and processing time owing to involvement of the blockchain.
This has led to an increase in data control and aggravation concerns in
UAVs.
A hybrid ML blockchain paradigm has been proposed in one of
the most recent research works (Abualsauod, 2022). A built-in UAV-
Network Simulator with Python as the implementation language is
chosen for the suggested hybrid solution for instilling security for IoT
services, FlyNetSim. The suggested methodology is evaluated against
many criteria, including latency, system utility and processing speed,
with the overall accuracy of attack detection. On a centralized server,
UAVs typically process the data using sophisticated machine learning
techniques. Data can be transferred to and stored in UAVs using all
types of conservative cyber attacks. UAVs rely on intelligent systems
using machine learning techniques to make judgements in the ab-
sence of people, despite their considerable effect. The system improves
reliability with the use of a hybrid technique.
H.J. Hadi et al.
5.2. Solution taxonomy
In contrast to merely protecting data integrity alone, the dynamics
of new services and technologies requirements in 5G present significant
difficulties related to security and privacy. Recently, blockchain-based
solutions for UAV security have drawn greater attention to address
these new 5G challenges (Puthal et al., 2018). In addition to main-
taining secure UAV networks, blockchain-based technologies can be
used to assure the effective launch of 5G services. Immutability, de-
centralization, and transparency are essential security elements that
satisfy the increased service requirements in the 5G and B5G future.
Blockchain is quickly replacing other security measures as the most
popular technology for addressing new security issues. Moreover, it
has the potential to change the 5G communication landscape (Nguyen
et al., 2020). The blockchain network uses public key cryptography
for secure functioning of blockchain. The integrity of data kept on
the blockchain is less vulnerable thanks to blockchain technology. The
execution of threats to integrity and availability can be significantly
impacted when blockchain technology is applied to every UAV in the
network. Since each UAV maintains a copy of the blockchain, it will
choose its own route independently of other UAVs across the network.
Further, different ML and blockchain based solutions available to
secure UAVs have been analyzed in Khan et al. (2021). Numerous tests
and experiments have been conducted to determine the potential ap-
plications of machine learning and blockchain technologies to enhance
UAVs security. Although the blockchain is a relatively new technology
for decentralized UAVs and security, however, MLtechniques play a
crucial role in intelligently boosting UAV security. The overall reliabil-
ity towards the security and quality of information can be increased by
adopting the hybrid blockchain model with ML. The obtained results
in the study show that ML in conjunction with blockchain can serve
the purpose of secure and reliable data communication for a number
of UAV application areas. Such models can support a variety of appli-
cations, especially in healthcare and other sectors where security and
quality cannot be compromised (Newaz et al., 2021).
5.3. Open issues and challenges cause by blockchain application in UAVS
Both UAV network and blockchain interoperability are under devel-
opment with great efforts. This section describes challenges as well as
research opportunities to guide future work. The following are major
challenges:
5.3.1. Selection of cross-blockchain technology
Peer-to-peer (P2P) networks are decentralized in nature, offer huge
benefits and mitigate considerable security risks, but it is still vulner-
able to nearly 51% attacks (Saad et al., 2019). This is particularly
terrifying in UAVs, where UAVs may leave and join freely (Wu et al.,
2021). The more availability of inexpensive UAVs can facilitate these
attacks. To solve this problem, Dasu et al. (2018) proposed a hybrid
model of traffic management. In this model, a centralized authority
manages parts of airspace, while others are tackled by block-chain
based decentralized management. They have given a unique method
for preventing DoS attacks, by taking some fees from airspace users de-
pending on the local demand. This can also restrict almost 51% attacks
because it makes it difficult for attackers to join UAV with multiple
UAVs at a time. One more way for improving security of blockchain
was proposed in Kim (2019, 2021). Here, blockchain governance game
was developed for dealing with attackers trying to get control over
blockchain with addition of more illegal nodes (Kim et al., 2019).
20
Journal of Network and Computer Applications 213 (2023) 103607
5.3.2. Absence of third party management
Despite it is decentralized nature, the P2P network offers huge ben-
efits and mitigates considerable security risks, but are still vulnerable
to nearly 51% attacks (Saad et al., 2019). This is particularly terri-
fying for UAVs, where UAVs may leave and join without centralized
management (Su et al., 2020). To solve this problem, authors in Dasu
et al. (2018), proposed a hybrid model of traffic management. In this
model, a centralized authority manages parts of airspace, while others
are tackled by block-chain based decentralized management. They have
also given a unique method for preventing DoS attacks by taking some
fees from airspace users, on the local demand. This can also limit up
to 51% attacks by restricting attackers to join UAV with multiple UAVs
simultaneously. One more way for improving security of the blockchain
was proposed by Kim (Kim et al., 2019). Here, a blockchain governance
game was developed for dealing with attackers, trying to get control
over blockchain with addition of more illegal nodes. However, one
should focus on trust issues and associated communication overheads.
5.3.3. Limited storage and computational resources
It is a key hurdle when it comes to using blockchain in UAV network
as stated in Mehta et al. (2020), Wu et al. (2021). Especially, the
most recent mechanisms are power consuming due to their design.
A large memory is required to keep the copy of blockchain UAV
board, therefore focus has shifted to enhance. computational power and
capacity of UAVs with minimum of power consumption. Still, a game-
changing proposal is required, to benefit from lightweight consensus
mechanism (Su et al., 2020), because the trust and communication
overheads are still concerned.
5.3.4. Compatibility of blockchain ledgers
After review of literature, it is noticed the blockchain from each
research works are incompatible. The work in Rahman et al. (2021)
emphasized on permissioned blockchain for ensuring authentication of
miners. However, there can be security vulnerabilities if permissionless
architecture is used by other ledgers in cross-blockchain. This can de-
crease the security level provided by permissioned blockchain. Hence,
certain blockchain can be used either as private or public, permission-
less or permissioned. If combined, levels of security of a whole system
would be based on the least-protected component. One more issue that
needs research is either integrating numerous blockchain ledgers will
create new vulnerabilities in a system or not.
6. Challenges and future direction for research
There are numerous research areas that lack proper investigation
and solutions. As there are many entities such as UAV, gateway, plane
etc, therefore, key management and authentication have high complex-
ity. This can help to generate more secure and trustworthy UAVs in
future. The innovative solutions should be restricted with specific needs
and limitations, for example, unwavering quality and intricacy etc.
The mobility of UAV is with certain regulation and under hierarchical
management, therefore, the threaten can be created by prediction of
mobility or investigate the backdoor of weak network entity in man-
agement chain. This section provides some probable future solutions
for security of UAVs.
6.1. Connectivity insecurity
There are two frequently used methods for connecting UAVs to GCS.
The first is connecting through Wi-Fi and the second is through radio
signals. No doubt, wired connections are more secure as compared to
wireless, but former methods cannot be used due to range restrictions,
for this reason wireless connections are mostly used. Security of these
wireless connections can be increased through encryption (Kriz and
Gabrlik, 2015) and watermarking methods (Marcinak and Mobasseri).
The novel solution can be proposed by combining watermarking and
H.J. Hadi et al.
cryptography in a single protocol, because watermarked text can re-
tain itself. Thus, it can be assumed that if password is hacked, the
cracked password might be used by attackers before applying reverse
watermarking.
6.2. Authentication drawback in UAVs
Authentication is the most important, in UAV networks, because
most of the time eavesdroppers use false information for hijacking
UAVs. It is also crucial for identifying right signals but still a big
challenge and researchers are trying to tackle this problem. Although,
there are numerous authentication protocol, still there is a necessity to
improve, e.g., one way is to use single random numbers but these can
be predicted with a bruit force attack. Instead of using these numbers
a chaotic map can be used with a key to generate multiple random
numbers (Marcinak and Mobasseri; Cheng et al., 2012; Rosalie et al.,
2018, 2016; Sun et al., 2020). Yet, low dimensional chaotic is not good,
but a high dimensional map can solve this problem (Gohari et al.,
2019).
6.3. Intrusion detection systems (IDS) in UAVs
Real-time network traffic analysis is needed to find intrusions
against UAVs while they are in flight. To achieve this, deploying
an IDS for UAVs enables the detection of many intrusion classes,
including signal alteration, routing attacks, malware, and message
forging attacks (Choudhary et al., 2018). Additionally, the creation of
frameworks for detecting anomalies that indicate malicious behavior
is crucial for identifying attack patterns (Moosbrugger et al., 2017).
Also, using honeypots and honeynets in addition to IDS can assist to
protect the flying mission from hostile actors (Franco et al., 2021). On
the other hand, ML have been applied to predict known/unknown event
with already learnt data. To increase the accuracy of these algorithms,
features must be relevant, e.g., prediction results cannot be correct
if the features in the dataset are irrelevant. For improving ML based
IDS techniques, there is a need to include deep learning. This will
help to make predictions more accurately. More number of features
for intrusion detection can increase model accuracy.
6.4. UAVs digital forensic
If a security incident happens in a flight, there is need of forensic
analysts for compromised UAVs, but they cannot collect evidence from
UAVs that lack logging capabilities (Altawy and Youssef, 2016). More
precisely, sensitive data like onboard flight information and flight
trajectories are saved in volatile Random-Access Memory (RAM) of
Flight Controller (FC). Consequently, making the process of recovery
more challenging. Additionally, model creation is most the significant
for providing UAVs with forensic analysis (Al-Dhaqm et al., 2021).
Still, even with stronger forensic techniques, surprisingly current anti-
forensic strategies could thwart forensic analysis process (Atkinson
et al., 2021). On the other hand, mitigation strategies normally consider
adopting a forensic-by-design technique, which combines forensics re-
quirements with design of UAVs systems (Ab Rahman et al., 2016).
Forensic analysis of UAVs is inadequately investigated in the area of
UAV security. At present forensics models do not have proper stan-
dardization and unification to enclose a wider domain of commercial
UAVs, here is key problem with UAVs forensics where attackers could
compromise UAVs.
Likewise, a number of other researchers have put forth various
strategies for using forensic techniques to defend against sophisticated
and complicated attacks. The forensic approach is being highlighted
because, with time, attack types and goals become more sophisticated
and challenging to recognize (Salamh et al., 2021). The attacker and
the attack’s methodology can be detected through forensics. The type
of attack may be identified to prevent any further incidents, and the
relevant countermeasures can be applied to avoid such incidents in
future. Moreover, the process of UAVs digital forensic can be divided
into three main steps (see Table 10).
21
Journal of Network and Computer Applications 213 (2023) 103607
Table 10
UAV forensic process steps.
Steps Details
Preparation • Chain of command identification
• Identification of any fingerprint or identity of UAV
• Use of offensive method to track down the owner with the
help of date, time, location, and identity recorded on the
UAVs
Examination • Assessment and inspection of data available on a UAV like
video, audio and pictures etc.
• Identifying methods as well as ports used for
communication
Analysis and After extraction from a UAV all the information is compiled
reporting and analyzed to find the culprit
6.5. Secure UAVs communication
Our study shows that there is a need for developing more realistic
communication protocols, secure and reliable communication among
numerous components and UAVs systems. Security of UAVs communi-
cation channels with achievement of high network throughput is still
challenging. Also, authentication of UAV can secure communication
links, reply to attacks, and prevent impersonation (Rodrigues et al.,
2019). The Development of UAVs access policies like authentication
schemes and authorization is still a challenging topic (Yaacoub et al.,
2020). In fact, authenticated UAVs should not be a part of flight or
collect transferred data from other UAVs in a network. On the contrary,
in case of multi-UAVs, use of a particular network model for UAVs like
FANETs (Bekmezci et al., 2013) permits multi-UAVs operations. Even
so, FANETs are vulnerable to numerous attacks, therefor implemen-
tation of secure communications in multi-UAVs remain a challenging
research topic. Numerous FANETs protocols for routing are presented
in literature (Arafat and Moh, 2019), but they cannot meet the privacy
and security requirements completely and demand more research in
this domain (Maxa et al., 2017).
6.6. Realistic implementations
The development and deployment of UAVs need an emphasis on
exchange between performance and security. From a security perspec-
tive, we must consider privacy and security requirements of UAVs
systems. Besides, we should consider computation costs, storage over-
head, and energy from a performance point of view. The development
of lightweight security protocols or authentication mechanism for UAVs
includes use of cryptographic primordial. Still, these implementations
may consume high energy and more computation cost. Hence, bal-
ancing these two aspects as well as finding strategic solutions is a
major research topic. Present security solutions operate under specified
software and hardware settings, so when proposing a real-time imple-
mentation, deployment challenges in numerous UAVs systems must be
considered. It must be emphasized that imitating UAVs’ cyber-attack
scenarios could demonstrate flexibility of current security solutions
against such attacks prior to their deployment. Likewise, present sim-
ulation environments, to analyze UAVs security, are limited (Javaid
et al., 2013), so this topic needs further research.
6.7. Privacy preservation
Combining UAVs with national airspace has increased privacy is-
sues, causing leakage of secret information gathered by UAVs, and
transfer it to third party. In such situation, it is necessary to safeguard
the privacy of exchanged data. Currently, numerous privacy preser-
vation techniques have been proposed by researchers. For example,
the mitigation privacy attacks comprises of using privacy increasing
H.J. Hadi et al.
technologies for preserving data of consumers. Specifically, numerous
privacy techniques and secure computation maintain privacy of users,
and allow coordination of data among UAVs with privacy ensured.
More examples include using homo-morphic encryption for performing
computational operations on encrypted data (Acar et al., 2018) as well
as Zero Knowledge Proof (ZPF) for validating data without disclosure.
Further, Privacy issues are prevalent, due to the simplicity with
which anyone can obtain UAVs with high-definition cameras and other
devices. Within their private property, people can readily be seen or
recorded without their knowledge. UAVs have given rise to numerous
safety, security, and privacy concerns, according to Canadian Public
Safety (CPS) (Abro et al., 2022). Without their permission, persons have
been photographed or recorded resulting in being blackmailed and
other illegal actions. To help control UAV operations, legal regulations
related to flying through buildings, hovering at window level, or taking
private images or films without permission should be implemented.
6.8. Secure data aggregation
The wide use of UAVs in numerous applications domains have
increased quantity of gathered and shared data. The gathered data
is normally aggregated for efficient use of resources but its data ag-
gregation process requires protection against malicious entities. The
deployment of these aggregation mechanisms should take into account
encryption schemes for providing confidentiality, to ensure a secure
exchange of data among GCS and UAVs. Additionally, providing secure
and efficient data aggregation techniques for UAVs will minimize the
communication cost and energy with grantee of confidentiality. Still,
developing such techniques remains a continuous challenge.
6.9. AI for UAVs
Future research direction further involves the exploration and im-
plementation of Edge AI for securing UAVs. The overlap between edge
computing and UAV systems allows UAVs (fitted with edge servers) to
either function as users themselves and offload duties to edge servers,
or to offer edge computing services for terrestrial user devices (McEnroe
et al., 2022). The other concept, which uses the conventional cloud
computing approach, includes distributing the jobs between UAVs as
well as a distant central computer. Contrarily, edge computing makes
these computing services accessible to end users (UAVs) at the network
edge, preventing the requirement for data to travel far distances to
distant centralized servers (Ansari et al., 2020).
6.10. Emerging technologies
Recently, for securing UAVs, emerging technologies are being used
extensively. These technologies include Blockchain technology, Artifi-
cial Intelligence, Fog Computing and SDN (Hassija et al., 2021; Syed
et al., 2021). Blockchain technology has distributed architecture that
adds extra security layer for communication. It uses smart contracts
with hash functions for storing data as chains of blocks. Therefore, it
becomes difficult for attackers to tamper with the communication of
UAVs. The main applications of blockchain in UAV communication suf-
fer real-time deployment when it comes to highly mobile UAV (Kumari
et al., 2020).
Furthermore, the real-time application of Blockchain for securing
UAVs is yet ongoing research area. The Introduction of AI technology
like ML algorithms has shown great benefits for security-oriented appli-
cations, like privacy leakage and protection of UAVs from attacks. Nu-
merous ML security mechanisms have been presented in literature for
addressing security issues, e.g., DoS attacks and UAV detection (Yang
et al., 2019). Currently, federated learning methods are replacing ML
algorithms, as these techniques have shown best results, e.g., using
UAVs authentication model relying on Radio Frequency features of
UAVs in IoT networks (Yazdinejad et al., 2021).
22
Journal of Network and Computer Applications 213 (2023) 103607
In addition, there is still a need for UAV dataset to train models,
like malware dataset, network traffic dataset, etc. Some models may
fail when it comes to detection of UAVs’ cyber-attacks (Hassija et al.,
2021). Next, SDN enables UAV security communications and provides
a programmable network as well as dynamic flow control for numerous
security functions, thus can secure UAVs network from cyber-attacks.
The main disadvantage of this technology is high-end-to-end delay in
the case of non-delay-tolerant applications. However, the link in control
plane and data plane can be attacked, and integrating UAVs in smart
cities requires processing as well as large amount of stored data, for
this fog computing may help to store and process data.
Fog computing provides secure communication among fog layer and
UAVs with low latency and high stability, but existing fog architecture
is not modified for UAVs model. Thus, adopting this architecture may
enhance time for data processing, particularly in Multi UAV networks.
More diverse technologies may emerge to be incorporated in next
generation of UAVs (Nayyar et al., 2020). Hence, further research is
needed in the domain of emerging technologies for securing UAVs in
civil applications.
7. Conclusion
In this paper, we have broadly surveyed privacy and security issues
of UAVs by dividing them into three classes: software, hardware and
communication. A systematic review of the common vulnerabilities,
specifically linked to each class was also provided. We have thoroughly
discussed passive and active attacks from adversaries for compromising
privacy and security of UAVs. A detailed description of mitigation tech-
niques and countermeasures for protecting UAVs was presented. The
solution architecture part also includes a discussion about emerging
technologies like blockchain etc. In several applications, blockchain
technology appears to provide intriguing advantages. It has been sug-
gested to use a variety of cross-blockchain interoperability techniques
to increase scalability while preserving decentralization, transparency,
and immutability. We outlined the difficulties involved in setting up a
network of blockchains to simultaneously enable various UAV network
operations. Cost, availability of data centers, and interoperability be-
tween various blockchain ledgers are a few of these difficulties. Briefly,
due to increased use of UAVs in civil airspace, privacy and security
issues have become a very crucial stuff of national security. Thus,
collaboration among academia, industry and law enforcement is needed
to develop new frameworks, regulations and standards of security. In
short, this survey provides a worthy reference for researchers to learn
about designing and developing secure UAVs architectures.
Declaration of competing interest
The authors declare the following financial interests/personal rela-
tionships which may be considered as potential competing interests:
Yue Cao reports financial support was provided by Wuhan University.
Data availability
The data that has been used is confidential.
Acknowledgments
The work is supported in part by the Guangdong Basic and Applied
Basic Research Foundation (2022B1515120067); Wuhan Knowledge
Innovation Program (2022010801010117).
H.J. Hadi et al.
References
Ab Rahman, N.H., Glisson, W.B., Yang, Y., Choo, K.-K.R., 2016. Forensic-by-design
framework for cyber-physical cloud systems. IEEE Cloud Comput. 3 (1), 50–59.
Abbaspour, A., Yen, K.K., Noei, S., Sargolzaei, P.c.s., 2016a. Detection of fault data
injection attack on uav using adaptive neural network. 95, pp. 193–200.
Abbaspour, A., Yen, K.K., Noei, S., Sargolzaei, A., 2016b. Detection of fault data
injection attack on uav using adaptive neural network. Procedia Comput. Sci. 95,
193–200.
AbdAllah, E.G., Hassanein, Surveys, I.C., Tutorials, 2015. A survey of security attacks
in information-centric networking. 17, (3), pp. 1441–1454.
Abro, G.E.M., Zulkifli, S.A.B., Masood, R.J., Asirvadam, V.S., Laouti, A., 2022. Com-
prehensive review of UAV detection, security, and communication advancements
to prevent threats. Drones 6 (10), 284.
Abualsauod, E.H., 2022. A hybrid blockchain method in internet of things for privacy
and security in unmanned aerial vehicles network. Comput. Electr. Eng. 99, 107847.
Acar, A., Hidayet, A., Selcuk, U.A., Conti, M., 2018. A survey on homomorphic
encryption schemes: Theory and implementation. ACM Comput. Surv. (Csur) 51
(4), 1–35.
Agrawal, R., Verma, P., Sonanis, R., Goel, U., de, A., kondaveeti, s.a., shekhar, s., 2018.
Continuous security in IoT using Blockchain. In: IEEE International Conference on
Acoustics, Speech and Signal Processing. ICASSP, pp. 6423–6427.
Al-Dhaqm, A., Ikuesan, R.A., Kebande, V.R., Razak, S., Ghabban, F.M., 2021. Research
challenges and opportunities in drone forensics models. Electronics 10 (13), 1519.
Ali, Z., Chaudhry, S.A., Ramzan, M.S., Al-Turjman, F., 2020. Securing smart city
surveillance: A lightweight authentication mechanism for unmanned vehicles. IEEE
Access 8, 43711–43724.
Alkadi, R., Alnuaimi, N., Shoufan, A., Yeun, C., 2021. Blockchain interoperability in
UAV networks: state-of-the-art and open issues. arXiv preprint arXiv:2111.09529.
Alladi, T., Chamola, V., Kumar, N., et al., 2020b. PARTH: A two-stage lightweight
mutual authentication protocol for UAV surveillance networks. Comput. Commun.
160, 81–90.
Alladi, T., Chamola, V., Sahu, N., Guizani, M., 2020a. Applications of blockchain in
unmanned aerial vehicles: A review. Veh. Commun. 23, 100249.
Allouch, A., Cheikhrouhou, O., Koubâa, A., Toumi, K., Khalgui, M., Nguyen Gia, T.,
2021. Utm-chain: blockchain-based secure unmanned traffic management for
internet of drones. Sensors 21 (9), 3049.
Altawy, R., Youssef, A.M., 2016. Security, privacy, and safety aspects of civilian drones:
A survey. ACM Trans. Cyber-Phys. Syst. 1 (2), 1–25.
Alwateer, M., Loke, S.W., Zuchowicz, A., 2019. Drone services: issues in drones for
location-based services from human-drone interaction to information processing. J.
Locat. Based Serv. 13 (2), 94–127.
Anon, 1999. KDD cup 1999 data. [Online] http://kdd.ics.uci.edu/databases/kddcup99/
kddcup99.html. (Accessed 16 December 2021).
Anon, 2018. CIC-IDS-2018. [Online] http://www.unb.ca/cic/datasets/ids-2018.html.
(Accessed 15 December 2021).
Anon, 2021. Global anti-drone markets 2021–2026 - increasing terrorism and illicit
activities through Drones & amp; rising investment by governments.
Ansari, M.S., Alsamhi, S.H., Qiao, Y., Ye, Y., Lee, B., 2020. Security of distributed in-
telligence in edge computing: Threats and countermeasures. In: The Cloud-to-Thing
Continuum. Palgrave Macmillan, Cham, pp. 95–122.
Arafat, M.Y., Moh, S., 2019. Routing protocols for unmanned aerial vehicle networks:
A survey. IEEE Access 7, 99694–99720.
Arthur, M.P., Detecting signal spoofing and jamming attacks in UAV networks using a
lightweight IDS. In: 2019 International Conference on Computer, Information and
Telecommunication Systems. CITS, IEEE, pp. 1–5.
Arthur, M.P., 2019. Detecting signal spoofing and jamming attacks in UAV networks us-
ing a lightweight IDS. In: 2019 International Conference on Computer, Information
and Telecommunication Systems. CITS, IEEE, pp. 1–5.
Atkinson, S., Carr, G., Shaw, C., Zargari, S., 2021. Drone forensics: The impact and
challenges. In: Digital Forensic Investigation of Internet of Things (IoT) Devices.
Springer, pp. 65–124.
Atoev, S., Kwon, O.-J., Kim, C.-Y., Lee, S.-H., Choi, Y.-R., Kwon, K.-R., 2019. The secure
UAV communication link based on OTP encryption technique. In: 2019 Eleventh
International Conference on Ubiquitous and Future Networks. ICUFN, IEEE, pp.
1–3.
Bangui, H., Ge, M., Buhnova, B., 2020. Improving big data clustering for jamming
detection in smart mobility. In: IFIP International Conference on ICT Systems
Security and Privacy Protection. Springer, pp. 78–91.
Barka, E., Kerrache, C.A., Benkraouda, H., Shuaib, K., Ahmad, F., Kurugollu, F., 2019.
Towards a trusted unmanned aerial system using blockchain for the protection of
critical infrastructure. Trans. Emerg. Telecommun. Technol. e3706.
Barka, E., Kerrache, C.A., Hussain, R., Lagraa, N., Lakas, A., Bouk, S.H., 2018. A trusted
lightweight communication strategy for flying named data networking. Sensors 18
(8), 2683.
Bejiga, M.B., Zeggada, A., Nouffidj, A., Melgani, F., 2017. A convolutional neural
network approach for assisting avalanche search and rescue operations with UAV
imagery. Remote Sens. 9 (2), 100.
Bekmezci, I., Sahingoz, O.K., Temel, Ş., 2013. Flying ad-hoc networks (FANETs): A
survey. Ad Hoc Netw. 11 (3), 1254–1270.
23
Journal of Network and Computer Applications 213 (2023) 103607
Bhunia, S., Tehranipoor, M., 2018. The Hardware Trojan War: Attacks, Myths, and
Defenses. Springer.
Boccadoro, P., Striccoli, D., Grieco, L.A., 2021. An extensive survey on the Internet of
Drones. Ad Hoc Netw. 122, 102600.
Brandt, A.M., Colton, M.B., 2010. Haptic collision avoidance for a remotely operated
quadrotor uav in indoor environments. In: 2010 IEEE International Conference on
Systems, Man and Cybernetics. IEEE, pp. 2724–2731.
Bresson, E., Chevassut, O., Pointcheval, D., 2007. Provably secure authenticated group
Diffie-Hellman key exchange. ACM Trans. Inf. Syst. Secur. 10 (3), 10–es.
Casals, S.G., Owezarski, P., Descargues, G., 2013. Generic and autonomous system
for airborne networks cyber-threat detection. In: 2013 IEEE/AIAA 32nd Digital
Avionics Systems Conference. DASC, IEEE, pp. 4A4–1.
Ch, R., Srivastava, G., Gadekallu, T.R., Maddikunta, P.K.R., Bhattacharya, S., 2020.
Security and privacy of UAV data using blockchain technology. J. Inf. Secur. Appl.
55, 102670.
Challita, U., Ferdowsi, A., Chen, M., Saad, W., 2019. Machine learning for wireless
connectivity and security of cellular-connected UAVs. IEEE Wirel. Commun. 26
(1), 28–35.
Chen, X.-C., Chen, Y.-J., 2019. A machine learning based attack in UAV communication
networks. In: 2019 IEEE 90th Vehicular Technology Conference. VTC2019-Fall,
IEEE, pp. 1–2.
Cheng, Z., Tang, Y.X., Liu, Y.L., 2012. 3-D path planning for UAV based on chaos
particle swarm optimization. In: Applied Mechanics and Materials. Vol. 232, Trans
Tech Publ, pp. 625–630.
Choi, D.H., Kim, S.H., Sung, D.K., 2014. Energy-efficient maneuvering and commu-
nication of a single UAV-based relay. IEEE Trans. Aerosp. Electron. Syst. 50 (3),
2320–2327.
Choudhary, G., Sharma, V., You, I., Yim, K., Chen, R., Cho, J.-H., 2018. Intrusion
detection systems for networked unmanned aerial vehicles: a survey. In: 2018 14th
International Wireless Communications & Mobile Computing Conference. IWCMC,
IEEE, pp. 560–565.
Chriki, A., Touati, H., Snoussi, H., Kamoun, F., 2019. FANET: Communication, mobility
models and security issues. Comput. Netw. 163, 106877.
Condomines, J.-P., Zhang, R., Larrieu, N., 2019. Network intrusion detection system
for UAV ad-hoc communication: From methodology design to real test validation.
Ad Hoc Netw. 90, 101759.
Darwish, T.S., Bakar, K.A., 2018. Fog based intelligent transportation big data analytics
in the internet of vehicles environment: motivations, architecture, challenges, and
critical issues. IEEE Access 6, 15679–15701.
Dasu, T., Kanza, Y., Srivastava, D., 2018. Geofences in the sky: herding drones with
blockchains and 5G. In: Proceedings of the 26th ACM SIGSPATIAL International
Conference on Advances in Geographic Information Systems. pp. 73–76.
Deebak, B.D., Al-Turjman, F., 2020. A smart lightweight privacy preservation scheme
for IoT-based UAV communication systems. Comput. Commun. 162, 102–117.
Deligne, E., 2012. ARDrone corruption. J. Comput. Virol. 8 (1), 15–27.
Demeri, A., Diehl, W., Salman, A., 2020. Saddle: Secure aerial data delivery with
lightweight encryption. In: Science and Information Conference. Springer, pp.
204–223.
Driscoll, K., 2018. Lightweight crypto for lightweight unmanned arial systems. In: 2018
Integrated Communications, Navigation, Surveillance Conference. ICNS, IEEE, pp.
1–15.
Feng, Z., Guan, N., Lv, M., Liu, W., Deng, Q., Liu, X., Yi, W., 2020. Efficient drone
hijacking detection using two-step GA-XGBoost. J. Syst. Archit. 103, 101694.
Fotouhi, A., Qiang, H., Ding, M., Hassan, M., Giordano, L.G., Garcia-Rodriguez, A.,
Yuan, J., 2019. Survey on UAV cellular communications: Practical aspects, stan-
dardization advancements, regulation, and security challenges. IEEE Commun. Surv.
Tutor. 21 (4), 3417–3442.
Franco, J., Aris, A., Canberk, B., Uluagac, A.S., 2021. A survey of honeypots and
honeynets for internet of things, industrial internet of things, and cyber-physical
systems. IEEE Commun. Surv. Tutor. 23 (4), 2351–2383.
Gohari, P.S., Mohammadi, H., Taghvaei, S., 2019. Using chaotic maps for 3D boundary
surveillance by quadrotor robot. Appl. Soft Comput. 76, 68–77.
Gupta, R., Kumari, A., Tanwar, S., 2021. Fusion of blockchain and artificial intelli-
gence for secure drone networking underlying 5G communications. Trans. Emerg.
Telecommun. Technol. 32 (1), e4176.
Hannah, J., Mills, R., Dill, R., 2020. Traffic collision avoidance system: threat actor
model and attack taxonomy. In: 2020 New Trends in Civil Aviation. NTCA, IEEE,
pp. 17–26.
Haque, M.S., Chowdhury, M.U., 2017. A new cyber security framework towards
secure data communication for unmanned aerial vehicle (uav). In: International
Conference on Security and Privacy in Communication Systems. Springer, pp.
113–122.
Hassija, V., Chamola, V., Agrawal, A., Goyal, A., Luong, N.C., Niyato, D.,
Yu, F.R., Guizani, M., 2021. Fast, reliable, and secure drone communication: A
comprehensive survey. IEEE Commun. Surv. Tutor.
Hayat, S., Yanmaz, E., Muzaffar, R., 2016. Survey on unmanned aerial vehicle networks
for civil applications: A communications viewpoint. IEEE Commun. Surv. Tutor. 18
(4), 2624–2661.
He, D., Chan, S., Guizani, M., 2017. Drone-assisted public safety networks: The security
aspect. IEEE Commun. Mag. 55 (8), 218–223.
H.J. Hadi et al.
He, D., Yang, G., Li, H., Chan, S., Cheng, Y., Guizani, N., 2020. An effective
countermeasure against UAV swarm attack. IEEE Netw. 35 (1), 380–385.
Hentati, A.I., Fourati, L.C., 2020. Comprehensive survey of UAVs communication
networks. Comput. Stand. Interfaces 72, 103451.
Hoang, T.M., Nguyen, N.M., Duong, T.Q., 2019. Detection of eavesdropping attack
in UAV-aided wireless systems: Unsupervised learning with one-class SVM and
k-means clustering. IEEE Wirel. Commun. Lett. 9 (2), 139–142.
Hodgkins, K., 2015. Anti-drone shoulder rifle lets police take control of UAVs with
radio pulses.(2015).
Hooper, M., Tian, Y., Zhou, R., Cao, B., Lauf, A.P., Watkins, L., Robinson, W.H.,
Alexis, W., 2016. Securing commercial wifi-based uavs from common security
attacks. In: MILCOM 2016–2016 IEEE Military Communications Conference. IEEE,
pp. 1213–1218.
Huda, S.A., Moh, S., 2022. Survey on computation offloading in UAV-enabled mobile
edge computing. J. Netw. Comput. Appl. 103341.
Islam, A., Shin, S.Y., 2019. BUAV: A blockchain based secure UAV-assisted data
acquisition scheme in Internet of Things. J. Commun. Netw. 21 (5), 491–502.
Israelsen, J., Beall, M., Bareiss, D., Stuart, D., Keeney, E., van den Berg, J., 2014.
Automatic collision avoidance for manually tele-operated unmanned aerial vehicles.
In: 2014 IEEE International Conference on Robotics and Automation. ICRA, IEEE,
pp. 6638–6643.
Javaid, A.Y., Sun, W., Alam, M., 2013. UAVSim: A simulation testbed for unmanned
aerial vehicle network cyber security analysis. In: 2013 IEEE Globecom Workshops.
GC Wkshps, IEEE, pp. 1432–1436.
Jones, A., Kovacich, G.L., 2015. Global Information Warfare: The New Digital
Battlefield. CRC Press.
Kafi, M.A., Challal, Y., Djenouri, D., Doudou, M., Bouabdallah, A., Badache, N., 2013.
A study of wireless sensor networks for urban traffic monitoring: applications and
architectures. Procedia Comput. Sci. 19, 617–626.
Kanade, V.A., 2021. Securing drone-based ad hoc network using blockchain. In: 2021
International Conference on Artificial Intelligence and Smart Systems. ICAIS, IEEE,
pp. 1314–1318.
Kapitonov, A., Berman, I., Manaenko, V., Rzhevskiy, V., Bulatov, V., Zenkin, A., 2019.
Robonomics as a blockchain-based platform for unmanned traffic management of
mobile vehicles. In: 2019 Workshop on Research, Education and Development of
Unmanned Aerial Systems. RED UAS, IEEE, pp. 9–17.
Khan, N.A., Brohi, S.N., Jhanjhi, N., 2020. UAV’s applications, architecture, security
issues and attack scenarios: a survey. In: Intelligent Computing and Innovation on
Data Science. Springer, pp. 753–760.
Khan, A.A., Khan, M.M., Khan, K.M., Arshad, J., Ahmad, F., 2021. A blockchain-based
decentralized machine learning framework for collaborative intrusion detection
within UAVs. Comput. Netw. 196, 108217.
Khan, A.A., Laghari, A.A., Gadekallu, T.R., Shaikh, Z.A., Javed, A.R., Rashid, M., Es-
trela, V.V., Mikhaylov, A., 2022. A drone-based data management and optimization
using metaheuristic algorithms and blockchain smart contracts in a secure fog
environment. Comput. Electr. Eng. 102, 108234.
Kim, S.-K., 2019. The trailer of strategic alliance for blockchain governance game. arXiv
preprint arXiv:1903.11172.
Kim, S.-K.A., 2021. Enhanced IoV security network by using blockchain governance
game. Mathematics 9 (2), 109.
Kim, S.-K., Yeun, C.Y., Damiani, E., Al-Hammadi, Y., Lo, N.-W., 2019. New blockchain
adoptation for automotive security by using systematic innovation. In: 2019 IEEE
Transportation Electrification Conference and Expo, Asia-Pacific. ITEC Asia-Pacific,
IEEE, pp. 1–4.
Kirichenko, V., 2015. Information security of communication channel with UAV.
Electron. Control Syst. (3), 23–27.
Krishna, C.L., Murphy, R.R., 2017. A review on cybersecurity vulnerabilities for
unmanned aerial vehicles. In: 2017 IEEE International Symposium on Safety,
Security and Rescue Robotics. SSRR, IEEE, pp. 194–199.
Kriz, V., Gabrlik, P., 2015. Uranuslink-communication protocol for uav with small
overhead and encryption ability. IFAC-PapersOnLine 48 (4), 474–479.
Kumari, A., Gupta, R., Tanwar, S., Kumar, N., 2020. A taxonomy of blockchain-enabled
softwarization for secure UAV network. Comput. Commun. 161, 304–323.
Lee, J., Ryu, S., Kim, H.J., 2020. Stable flight of a flapping-wing micro air vehicle
under wind disturbance. IEEE Robot. Autom. Lett. 5 (4), 5685–5692.
Li, J., Kamin, S., Zheng, G., Neubrech, F., Zhang, S., Liu, N., 2018. Addressable
metasurfaces for dynamic holography and optical information encryption. Sci. Adv.
4 (6), eaar6768.
Li, Z., Lu, Y., Shi, Y., Wang, Z., Qiao, W., Liu, Y., 2019b. A dyna-q-based solution for
uav networks against smart jamming attacks. Symmetry 11 (5), 617.
Li, K., Voicu, R.C., Kanhere, S.S., Ni, W., Tovar, E., 2019a. Energy efficient legitimate
wireless surveillance of UAV communications. IEEE Trans. Veh. Technol. 68 (3),
2283–2293.
Li, Q., Yang, Y., Ma, W.-K., Lin, M., Ge, J., Lin, J., 2014. Robust cooperative beam-
forming and artificial noise design for physical-layer secrecy in AF multi-antenna
multi-relay networks. IEEE Trans. Signal Process. 63 (1), 206–220.
Lin, Z., Lu, X., Dai, C., Sheng, G., Xiao, L., 2019. Reinforcement learning based UAV
trajectory and power control against jamming. In: International Conference on
Machine Learning for Cyber Security. Springer, pp. 336–347.
24
Journal of Network and Computer Applications 213 (2023) 103607
Liu, J., Yang, W., Xu, S., Liu, J., Zhang, Q., 2019b. Q-learning based UAV secure
communication in presence of multiple UAV active eavesdroppers. In: 2019
11th International Conference on Wireless Communications and Signal Processing.
WCSP, IEEE, pp. 1–6.
Liu, G., Zhang, R., Wang, C., Liu, L., 2019a. Synchronization-free gps spoofing detection
with crowdsourced air traffic control data. In: 2019 20th IEEE International
Conference on Mobile Data Management. MDM, IEEE, pp. 260–268.
Lu, X., Xiao, L., Dai, C., Dai, H., 2020. UAV-aided cellular communications with deep
reinforcement learning against jamming. IEEE Wirel. Commun. 27 (4), 48–53.
Lu, X., Xu, D., Xiao, L., Wang, L., Zhuang, W., 2017. Anti-jamming communication game
for UAV-aided VANETs. In: GLOBECOM 2017-2017 IEEE Global Communications
Conference. IEEE, pp. 1–6.
Lv, Z., Qiao, L., Hossain, M.S., Choi, B.J., 2021. Analysis of using blockchain to protect
the privacy of drone big data. IEEE Netw. 35 (1), 44–49.
Ma, Y., Wu, X., Yu, G., Xu, Y., Wang, Y., 2016. Pedestrian detection and tracking from
low-resolution unmanned aerial vehicle thermal imagery. Sensors 16 (4), 446.
Manesh, M.R., Kenney, J., Hu, W.C., Devabhaktuni, V.K., Kaabouch, N., 2019. Detection
of GPS spoofing attacks on unmanned aerial systems. In: 2019 16th IEEE Annual
Consumer Communications & Networking Conference. CCNC, IEEE, pp. 1–6.
Marcinak, M.P., Mobasseri, B.G., Digital video watermarking for metadata embedding
in UAV video. In: MILCOM 2005-2005 IEEE Military Communications Conference,
Vols. 3–5. IEEE, p. 1637.
Maxa, J.-A., Mahmoud, M.S.B., Larrieu, N., 2017. Survey on UAANET routing protocols
and network security challenges. Adhoc Sensor Wirel. Netw. 37.
McEnroe, P., Wang, S., Liyanage, M., 2022. A survey on the convergence of edge
computing and AI for UAVs: Opportunities and challenges. IEEE Internet Things
J.
Mehta, P., Gupta, R., Tanwar, S., 2020. Blockchain envisioned UAV networks:
Challenges, solutions, and comparisons. Comput. Commun. 151, 518–538.
Min, M., Xiao, L., Xu, D., Huang, L., Peng, M., 2018. Learning-based defense against
malicious unmanned aerial vehicles. In: 2018 IEEE 87th Vehicular Technology
Conference (VTC Spring). IEEE, pp. 1–5.
Mishra, D., Natalizio, E., 2020. A survey on cellular-connected UAVs: Design challenges,
enabling 5G/B5G innovations, and experimental advancements. Comput. Netw.
182, 107451.
Mitchell, R., Chen, R., 2013. Adaptive intrusion detection of malicious unmanned air
vehicles using behavior rule specifications. IEEE Trans. Syst. Man Cybern. A 44
(5), 593–604.
Moosbrugger, P., Rozier, K.Y., Schumann, J., 2017. R2U2: monitoring and diagnosis
of security threats for unmanned aerial systems. Form. Methods Syst. Des. 51 (1),
31–61.
Nassi, B., Bitton, R., Masuoka, R., Shabtai, A., Elovici, Y., 2021. SoK: Security and
privacy in the age of commercial drones. In: 2021 IEEE Symposium on Security
and Privacy. SP, IEEE, pp. 1434–1451.
Nassi, B., Shabtai, A., Masuoka, R., Elovici, Y., 2019. Sok-security and privacy in the
age of drones: threats, challenges, solution mechanisms, and scientific gaps. arXiv
preprint arXiv:1903.05155.
Nayyar, A., Nguyen, B.-L., Nguyen, N.G., 2020. The internet of drone things (IoDT):
future envision of smart drones. In: First International Conference on Sustainable
Technologies for Computational Intelligence. Springer, pp. 563–580.
Newaz, A.I., Sikder, A.K., Rahman, M.A., Uluagac, A.S., 2021. A survey on security and
privacy issues in modern healthcare systems: Attacks and defenses. ACM Trans.
Comput. Healthc. 2 (3), 1–44.
Nguyen, D.C., Pathirana, P.N., Ding, M., Seneviratne, A., 2020. Blockchain for 5G and
beyond networks: A state of the art survey. J. Netw. Comput. Appl. 166, 102693.
Noor, F., Khan, M.A., Al-Zahrani, A., Ullah, I., Al-Dhlan, K.A., 2020. A review on
communications perspective of flying ad-hoc networks: key enabling wireless
technologies, applications, challenges and open research topics. Drones 4 (4), 65.
Ossamah, A., 2020. Blockchain as a solution to drone cybersecurity. In: 2020 IEEE 6th
World Forum on Internet of Things. WF-IoT, IEEE, pp. 1–9.
Oz, H., Aris, A., Levi, A., Uluagac, A.S., 2021. A survey on ransomware: Evolution,
taxonomy, and defense solutions. ACM Comput. Surv.
Paganini, P., 2015. A hacker developed maldrone, the first malware for drones. https:
//securityaffairs.co/wordpress/32767/hacking/maldrone-malware-fordrones.html.
Pan, W.-J., Feng, Z.-L., Wang, Y., 2012. ADS-B data authentication based on ECC and
X. 509 certificate. J. Electron. Sci. Technol. 10 (1), 51–55.
Panice, G., Luongo, S., Gigante, G., Pascarella, D., Di Benedetto, C., Vozella, A.,
Pescapè, A., 2017. A SVM-based detection approach for GPS spoofing attacks to
UAV. In: 2017 23rd International Conference on Automation and Computing. ICAC,
IEEE, pp. 1–11.
Peterson, P.A., 2010. Cryptkeeper: Improving security with encrypted RAM. In: 2010
IEEE International Conference on Technologies for Homeland Security. HST, IEEE,
pp. 120–126.
Pu, C., Li, Y., 2020. Lightweight authentication protocol for unmanned aerial vehicles
using physical unclonable function and chaotic system. In: 2020 IEEE International
Symposium on Local and Metropolitan Area Networks. LANMAN, IEEE, pp. 1–6.
Puthal, D., Malik, N., Mohanty, S.P., Kougianos, E., Das, G., 2018. Everything you
wanted to know about the blockchain: Its promise, components, processes, and
problems. IEEE Consum. Electron. Mag. 7 (4), 6–14.
H.J. Hadi et al.
Qian, Y., Jiang, Y., Hu, L., Hossain, M.S., Alrashoud, M., Al-Hammadi, M., 2020.
Blockchain-based privacy-aware content caching in cognitive internet of vehicles.
IEEE Netw. 34 (2), 46–51.
Ra, W.-S., Whang, I.-H., Park, J.B., 2008. Robust weighted least squares range estimator
for UAV applications. In: 2008 SICE Annual Conference. IEEE, pp. 251–255.
Rahman, M.S., Khalil, I., Atiquzzaman, M., 2021. Blockchain-powered policy enforce-
ment for ensuring flight compliance in drone-based service systems. IEEE Netw. 35
(1), 116–123.
Rahman, M.A., Rahman, M.T., Kisacikoglu, M., Akkaya, K., 2020a. Intrusion detection
systems-enabled power electronics for unmanned aerial vehicles. In: 2020 IEEE
CyberPELS (CyberPELS). IEEE, pp. 1–5.
Rahman, M.A., Rahman, M.T., Kisacikoglu, M., Akkaya, K., 2020b. Intrusion detection
systems-enabled power electronics for unmanned aerial vehicles. In: 2020 IEEE
CyberPELS (CyberPELS). IEEE, pp. 1–5.
Rodrigues, M., Amaro, J., Osório, F.S., RLJC, B.K., 2019. Authentication methods for
uav communication. In: 2019 IEEE Symposium on Computers and Communications.
ISCC, IEEE, pp. 1210–1215.
Rondon, L.P., Babun, L., Aris, A., Akkaya, K., Uluagac, A.S., 2022. Survey on enterprise
Internet-of-Things systems (E-IoT): A security perspective. Ad Hoc Netw. 125,
102728.
Rosalie, M., Danoy, G., Chaumette, S., Bouvry, P., 2016. From random process to
chaotic behavior in swarms of UAVs. In: Proceedings of the 6th ACM Symposium
on Development and Analysis of Intelligent Vehicular Networks and Applications.
pp. 9–15.
Rosalie, M., Danoy, G., Chaumette, S., Bouvry, P., 2018. Chaos-enhanced mobility
models for multilevel swarms of UAVs. Swarm Evol. Comput. 41, 36–48.
Saad, M., Spaulding, J., Njilla, L., Kamhoua, C.A., Nyang, D., Mohaisen, A., 2019.
Overview of attack surfaces in blockchain. Blockchain Distrib. Syst. Secur. 51–66.
Sahingoz, O.K., 2013. Multi-level dynamic key management for scalable wireless sensor
networks with UAV. In: Ubiquitous Information Technologies and Applications.
Springer, pp. 11–19.
Salamh, F.E., Karabiyik, U., Rogers, M.K., Matson, E.T., 2021. A comparative uav
forensic analysis: Static and live digital evidence traceability challenges. Drones
5 (2), 42.
Saraswat, D., Verma, A., Bhattacharya, P., Tanwar, S., Sharma, G., Bokoro, P.N.,
Sharma, R., 2022. Blockchain-based federated learning in UAVs beyond 5G
networks: a solution taxonomy and future directions. IEEE Access 10, 33154–33182.
Sedjelmaci, H., Senouci, S.M., Ansari, N., 2016. Intrusion detection and ejection
framework against lethal attacks in UAV-aided networks: A Bayesian game-theoretic
methodology. IEEE Trans. Intell. Transp. Syst. 18 (5), 1143–1153.
Sedjelmaci, H., Senouci, S.M., Ansari, N., 2017. A hierarchical detection and response
system to enhance security against lethal cyber-attacks in UAV networks. IEEE
Trans. Syst. Man Cybern. A 48 (9), 1594–1606.
Shafique, A., Mehmood, A., Elhadef, M., 2021. Survey of security protocols and
vulnerabilities in unmanned aerial vehicles. IEEE Access 9, 46927–46948.
Shakhatreh, H., Sawalmeh, A.H., Al-Fuqaha, A., Dou, Z., Almaita, E., Khalil, I.,
Othman, N.S., Khreishah, A., Guizani, M., 2019. Unmanned aerial vehicles (UAVs):
A survey on civil applications and key research challenges. IEEE Access 7,
48572–48634.
Shannon, C.E., 1949. Communication theory of secrecy systems. Bell Syst. Tech. J. 28
(4), 656–715.
Sharma, A., Vanjani, P., Paliwal, N., Basnayaka, C.M.W., Jayakody, D.N.K., Wang, H.-C.,
Muthuchidambaranathan, P., 2020. Communication and networking technologies
for UAVs: A survey. J. Netw. Comput. Appl. 102739.
Sheng, G., Min, M., Xiao, L., Liu, S., 2018. Reinforcement learning-based control for
unmanned aerial vehicles. J. Commun. Inf. Netw. 3 (3), 39–48.
Singh, M., Aujla, G.S., Bali, R.S., 2020. A deep learning-based blockchain mechanism
for secure Internet of drones environment. IEEE Trans. Intell. Transp. Syst.
Srinivas, J., Das, A.K., Kumar, N., Rodrigues, J.J., 2019. TCALAS: Temporal credential-
based anonymous lightweight authentication scheme for Internet of drones
environment. IEEE Trans. Veh. Technol. 68 (7), 6903–6916.
Steinmann, J.A., Babiceanu, R.F., Seker, R., 2016. Uas security: Encryption key
negotiation for partitioned data. In: 2016 Integrated Communications Navigation
and Surveillance. ICNS, IEEE, pp. 1E4–1.
Su, Z., Wang, Y., Xu, Q., Zhang, N., 2020. LVBS: Lightweight vehicular blockchain for
secure data sharing in disaster rescue. IEEE Trans. Dependable Secure Comput.
Sun, J., Wang, W., Kou, L., Lin, Y., Zhang, L., Da, Q., Chen, L., 2020. A data
authentication scheme for UAV ad hoc network communication. J. Supercomput.
76 (6), 4041–4056.
Syed, F., Gupta, S.K., Hamood Alsamhi, S., Rashid, M., Liu, X., 2021. A survey
on recent optimal techniques for securing unmanned aerial vehicles applications.
Trans. Emerg. Telecommun. Technol. 32 (7), e4133.
Teng, L., Jianfeng, M., Pengbin, F., Yue, M., Xindi, M., Jiawei, Z., Gao, C., Di, L.,
2019. Lightweight security authentication mechanism towards uav networks. In:
2019 International Conference on Networking and Network Applications. NaNA,
IEEE, pp. 379–384.
Tlili, F., Fourati, L.C., Ayed, S., Ouni, B., 2022. Investigation on vulnerabilities, threats
and attacks prohibiting UAVs charging and depleting UAVs batteries: Assessments
& countermeasures. Ad Hoc Netw. 129, 102805.
25
Journal of Network and Computer Applications 213 (2023) 103607
Tsao, K.-Y., Girdler, T., Vassilakis, V.G., 2022. A survey of cyber security threats and
solutions for UAV communications and flying ad-hoc networks. Ad Hoc Netw.
102894.
Ueno, S., Higuchi, T., 2011. Collision avoidance law using information amount. In:
Numerical Analysis-Theory and Application. IntechOpen.
Valentin-Alexandru, V., Ion, B., Victor-Valeriu, P., 2019. Energy efficient trust-based
security mechanism for wireless sensors and unmanned aerial vehicles. In: 2019
11th International Conference on Electronics, Computers and Artificial Intelligence.
ECAI, IEEE, pp. 1–6.
Vanitha, N., Ganapathi, P., 2020. Traffic analysis of UAV networks using enhanced deep
feed forward neural networks (EDFFNN). In: Handbook of Research on Machine and
Deep Learning Applications for Cyber Security. IGI Global, pp. 219–244.
Wang, Q., Chen, Z., Mei, W., Fang, J., 2017. Improving physical layer security using
UAV-enabled mobile relaying. IEEE Wirel. Commun. Lett. 6 (3), 310–313.
Wang, J., Liu, Y., Niu, S., Song, H., 2021. Lightweight blockchain assisted secure routing
of swarm UAS networking. Comput. Commun. 165, 131–140.
Wang, H., Zhao, H., Zhang, J., Ma, D., Li, J., Wei, J., 2019. Survey on unmanned aerial
vehicle networks: A cyber physical system perspective. IEEE Commun. Surv. Tutor.
22 (2), 1027–1070.
Wesson, K.D., Humphreys, T.E., Evans, B.L., 2014. Can cryptography secure next
generation air traffic surveillance? IEEE Secur. Priv. Mag.
Wu, B., Chen, J., Wu, J., Cardei, M., 2007. A survey of attacks and countermeasures
in mobile ad hoc networks. In: Wireless Network Security. Springer, pp. 103–135.
Wu, Y., Dai, H.-N., Wang, H., Choo, K.-K.R., 2021. Blockchain-based privacy
preservation for 5g-enabled drone communications. IEEE Netw. 35 (1), 50–56.
Xiao, W., Li, M., Alzahrani, B., Alotaibi, R., Barnawi, A., Ai, Q., 2021. A blockchain-
based secure crowd monitoring system using UAV swarm. IEEE Netw. 35 (1),
108–115.
Xiao, L., Lu, X., Xu, D., Tang, Y., Wang, L., Zhuang, W., 2018. UAV relay in VANETs
against smart jamming with reinforcement learning. IEEE Trans. Veh. Technol. 67
(5), 4087–4097.
Xiao, L., Xie, C., Min, M., Zhuang, W., 2017. User-centric view of unmanned aerial
vehicle transmission against smart attacks. IEEE Trans. Veh. Technol. 67 (4),
3420–3430.
Xu, J., Deng, Z., Song, Q., Chi, Q., Wu, T., Huang, Y., Liu, D., Gao, M., 2020. Multi-
UAV counter-game model based on uncertain information. Appl. Math. Comput.
366, 124684.
Yaacoub, J.-P., Noura, H., Salman, O., Chehab, A., 2020. Security analysis of drones
systems: Attacks, limitations, and recommendations. Internet Things 11, 100218.
Yang, B., Matson, E.T., Smith, A.H., Dietz, J.E., Gallagher, J.C., 2019. UAV detection
system with multiple acoustic nodes using machine learning models. In: 2019 Third
IEEE International Conference on Robotic Computing. IRC, IEEE, pp. 493–498.
Yang, L., Qi, J., Xiao, J., Yong, X., 2014. A literature review of UAV 3D path planning.
In: Proceeding of the 11th World Congress on Intelligent Control and Automation.
IEEE, pp. 2376–2381.
Yang, N., Wang, L., Geraci, G., Elkashlan, M., Yuan, J., Di Renzo, M., 2015. Safe-
guarding 5G wireless communication networks using physical layer security. IEEE
Commun. Mag. 53 (4), 20–27.
Yasin, J.N., Mohamed, S.A., Haghbayan, M.-H., Heikkonen, J., Tenhunen, H.,
Plosila, J., 2020. Unmanned aerial vehicles (uavs): Collision avoidance systems
and approaches. IEEE Access 8, 105139–105155.
Yazdinejad, A., Parizi, R.M., Dehghantanha, A., Karimipour, H., 2021. Federated
learning for drone authentication. Ad Hoc Netw. 120, 102574.
Yazdinejad, A., Parizi, R.M., Dehghantanha, A., Karimipour, H., Srivastava, G., Aled-
hari, M., 2020. Enabling drones in the internet of things with decentralized
blockchain-based security. IEEE Internet Things J. 8 (8), 6406–6415.
Yoon, K., Park, D., Yim, Y., Kim, K., Yang, S.K., Robinson, M., 2017. Security
authentication system using encrypted channel on uav network. In: 2017 First IEEE
International Conference on Robotic Computing. IRC, IEEE, pp. 393–398.
Zeitlin, A., Lacher, A., Kuchar, J., Drumm, A., 2006. Collision Avoidance for Unmanned
Aircraft: Proving the Safety Case. Report, MITRE CORP MCLEAN VA.
Zeng, Y., Zhang, R., Lim, T.J., 2016. Throughput maximization for UAV-enabled mobile
relaying systems. IEEE Trans. Commun. 64 (12), 4983–4996.
Zhi, Y., Fu, Z., Sun, X., Yu, J., 2020. Security and privacy issues of UAV: a survey.
Mob. Netw. Appl. 25 (1), 95–101.
Hassan Jalil Hadi received M.S Information Security degree
from Riphah International University, Islamabad, Pakistan.
He is currently pursuing the Ph.D. degree in Cyberspace
Security at the School of Cyber Science and Engineering,
Wuhan University in China. He is a cyber-security analyst
performing threat detection, monitoring, mitigation and au-
dit on industry proven standards for CS challenges at Cyber
Reconnaissance and combat (CRC) Lab, National Center for
Cyber Security, Islamabad Pakistan. His research interest
includes, IoT security, Digital Forensic, Edge Computing and
Botnet.
H.J. Hadi et al.
Yue Cao received his Ph.D. degree from the Institute for
Communication Systems (ICS) formerly known as Centre for
Communication Systems Research, at University of Surrey,
Guildford, UK in 2013. Further to his Ph.D. study, he
had conducted research fellow at University of Surrey,
and academic faculty at Northumbria University, Lancaster
University, UK and Beihang University, China; and he is
currently the Professor at School of Cyber Science and En-
gineering, Wuhan University, China. His research interests
focus on Intelligent Transport Systems, including E-Mobility,
V2X, Edge Computing.
Khaleeq Un Nisa received the B.S Software Engineering
degree from Fatima Jinnah Women University, Rawalpindi,
Pakistan. She has received MS Software Engineering degree
from Riphah International University, Islamabad, Pakistan.
She is Currently working in Cyber Reconnaissance Combat
Lab, Pakistan. Her research interest includes, IoT security,
Network security and quality testing.
26
Journal of Network and Computer Applications 213 (2023) 103607
Abdul Majid Jami is currently a Master Student of Cy-
berSpace Security at the School of Cyber Science and
Engineering, Wuhan University in China. He obtained his BS
in Information Technology from Arid University, Pakistan
and his research interest in Malware Analysis, UAV Security,
Intrusion Detection and Digital Forensics.
Qiang Ni received the B.Sc., M.Sc., and Ph.D. degrees in
engineering from the Huazhong University of Science and
Technology, Wuhan, China. He is currently a Professor
and the Head of the InfoLab21, Communication Systems
Research Group, School of Computing and Communications,
Lancaster University, Lancaster, U.K. His research interests
include future generation communications and networking
systems, including green communications, cloud systems,
cognitive radio network systems, heterogeneous networks,
5G and SDN, the IoT, and big data analytics.