Frederick Rawlins,Richard Baker,Ivan Martinovic

DOI: https://doi.org/10.48550/arXiv.2204.13514

2022-04-28

Abstract:Satellites in Geostationary Orbit (GEO) provide a number of commercial, government, and military services around the world, offering everything from surveillance and monitoring to video calls and internet access. However a dramatic lowering of the cost-per-kilogram to space has led to a recent explosion in real and planned constellations in Low Earth Orbit (LEO) of smaller satellites. These constellations are managed remotely and it is important to consider a scenario in which an attacker gains control over the constituent satellites. In this paper we aim to understand what damage this attacker could cause, using the satellites to generate interference. To ground our analysis, we simulate a number of existing and planned LEO constellations against an example GEO constellation, and evaluate the relative effectiveness of each. Our model shows that with conservative power estimates, both current and planned constellations could disrupt GEO satellite services at every groundstation considered, with effectiveness varying considerably between locations. We analyse different patterns of interference, how they reflect the structures of the constellations creating them, and how effective they might be against a number of legitimate services. We found that real-time usage (e.g. calls, streaming) would be most affected, with 3 constellation designs able to generate thousands of outages of 30 seconds or longer over the course of the day across all groundstations.

Cryptography and Security

Yaoying Zhang,Qian Wu,Zeqi Lai,Yangtao Deng,Hewu Li,Yuanjie Li,Jun Liu

DOI: https://doi.org/10.1109/IWQoS57198.2023.10188709

2023-01-01

Abstract:Entering the “NewSpace” era, satellite Internet constellation (SIC) is expanding rapidly. However, while operating a large number of broadband satellites in free space enables great opportunities for ubiquitous and low-latency Internet services, it also involves new threats that were previously ignored to the energy-limited satellite systems. In this paper, we investigate the feasibility and impact of a new class of real risk in emerging SICs: energy drain attack. To this end, we play the role of an attacker and propose Starmelt,an energy drain attack mechanism that persistently injects malicious traffic that goes through the victim satellite from various geo-distributed locations, preventing the victim from hibernating and overusing the satellite battery to cut its lifetime. Further, we design a series of techniques to: (i) handle the path ambiguity challenge caused by various access selection and routing schemes to guarantee that the deliberately crafted traffic can precisely pass through the victim; (ii) leverage the tail energy consumption characteristics to reduce the detectability as well as the traffic cost of an attack. Extensive simulations based on real constellation knowledge demonstrate that Starmeltcan substantially increase on-board energy consumption, reducing up to 76% lifetime of the victim satellite under various power models and traffic patterns.

Shuaijie Li,Chaojie Zhang,Chengli Zhao,Chengyi Xia

DOI: https://doi.org/10.1063/5.0194027

2024-03-01

Abstract:Low earth orbit (LEO) satellite constellations have emerged as a promising architecture integrated with ground networks, which can offer high-speed Internet services to global users. However, the security challenges faced by satellite networks are increasing, with the potential for a few satellite failures to trigger cascading failures and network outages. Therefore, enhancing the robustness of the network in the face of cascading failures is of utmost importance. This paper aims to explore the robustness of LEO satellite networks when encountering cascading failures and then proposes a modeling method based on virtual nodes and load capacity. In addition, considering that the ground station layout and the number of connected satellites together determine the structure of the final LEO satellite network, we here propose an improved ground station establishment method that is more suitable for the current network model. Finally, the robustness of the LEO satellite networks is deeply studied under two different attacks and cost constraints. Simulations of LEO satellite networks with different topologies show that the maximum load attacks have a destructive impact on the network, which can be mitigated by adjusting the topology and parameters to ensure normal network operation. The current model and related results provide practical insights into the protection of LEO satellite networks, which can mitigate cascading risks and enhance the robustness of LEO systems.

Yikun Wang,Hewu Li,Zeqi Lai,Jihao Li

DOI: https://doi.org/10.1109/iwqos61813.2024.10682867

2024-01-01

Abstract:In recent years, the rapid proliferation of satellite Internet constellations (SICs) operating in low-earth orbit (LEO) has attracted attention due to their charming merits. Despite the potential of LEO satellite networks, the security aspects of their operation have largely been neglected.Composed by a large number of satellites, these mega-constellation networks are considered to be performant and resilient. In this paper, however, we challenge this intuitive notion by proposing STARMAZE, an impactful ring-based attack which could lead to severe consequences such as network service disruption or causing routing detours. Unlike other existing attack methods, STARMAZE removes the extra assumptions of specific routing algorithms and has the periodicity which contribute to lower-cost yet long-lasting launch of attack. Simultaneously, we also introduce the concept of intentional gaps to emphasize our consideration of real-world attacks, where attackers may not always succeed in precisely targeting all links. Comprehensive evaluations, grounded in practical constellation insights, show that impairing just 2.5% of Inter-Satellite Links (ISLs) can markedly amplify the average propagation delay of chosen long-distance communication pairs by over 63%. Moreover, during more than 47% of the observation time, the value can even reach over 312%.

Xiaojian Wang,Ruozhou Yu,Dejun Yang,Guoliang Xue

2024-09-17

Abstract:Low Earth Orbit (LEO) Earth Observation (EO) satellites have changed the way we monitor Earth. Acting like moving cameras, EO satellites are formed in constellations with different missions and priorities, and capture vast data that needs to be transmitted to the ground for processing. However, EO satellites have very limited downlink communication capability, limited by transmission bandwidth, number and location of ground stations, and small transmission windows due to high velocity satellite movement. To optimize resource utilization, EO constellations are expected to share communication spectrum and ground stations for maximum communication efficiency. In this paper, we investigate a new attack surface exposed by resource competition in EO constellations, targeting the delay or drop of Earth monitoring data using legitimate EO services. Specifically, an attacker can inject high-priority requests to temporarily preempt low-priority data transmission windows. Furthermore, we show that by utilizing predictable satellite dynamics, an attacker can intelligently target critical data from low-priority satellites, either delaying its delivery or irreversibly dropping the data. We formulate two attacks, the data delay attack and the data overflow attack, design algorithms to assist attackers in devising attack strategies, and analyze their feasibility or optimality in typical scenarios. We then conduct trace-driven simulations using real-world satellite images and orbit data to evaluate the success probability of launching these attacks under realistic satellite communication settings. We also discuss possible defenses against these attacks.

Networking and Internet Architecture,Cryptography and Security,Emerging Technologies

Yan Lei,Yongjun Xu,Chongwen Huang,Chau Yuen,Haijun Zhang

DOI: https://doi.org/10.1109/tvt.2023.3321179

IF: 6.8

2024-01-01

IEEE Transactions on Vehicular Technology

Abstract:Compared with terrestrial communication, satellite communication has played a crucial role in 6G communication as a result of wide-area coverage characteristics. Among them, beamforming scheduling and information security are critical research issues to improve system transmission performance. However, in geostationary earth orbit (GEO)-based satellite communication systems, owing to the wide-area coverage, ground users are susceptible to inter-beam interference caused by multibeam antennas at the satellite, and the information received by terrestrial users may be eavesdropped by air or terrestrial eavesdroppers. To this end, in this paper, we propose a new robust security transmission strategy by combining beamforming and artificial noise (AN) techniques. Specifically, based on the actual satellite communication network scenario, the uncertain channel models are formulated as bounded uncertainty sets by considering the impact of imperfect channel state information of both legitimate and wiretap channels. Then, we build a boundedconstrained beamforming optimization to maximize the sum rate of legitimate users, while guaranteeing the constraints of total transmit power on the satellite and the minimum security rate of each legitimate user. Since the original problem is non-convex and mathematically intractable, we jointly exploit the successive convex approximation, Taylor series expansion, S-Procedure, and the semi-definite relaxation approach, with which the original problem can be transformed into a tractable one with a series of linear matrix inequality constraints. Furthermore, we propose an iterative algorithm to obtain the optimal beamforming and AN vectors. Finally, simulation results show that, compared with the existing algorithms, the proposed algorithm has better security and robustness.

Zeqi Lai,Yangtao Deng,Hewu Li,Qian Wu,Qi Zhang

DOI: https://doi.org/10.1109/mnet.2023.3337141

IF: 10.294

2024-01-01

IEEE Network

Abstract:As an innovative paradigm for the next-generation 6G communication, integrated space and terrestrial networks (ISTNs) synthesize emerging satellite mega-constellations and existing terrestrial network infrastructures, promising to provide ubiquitous and high-speed Internet services for global users. However, as satellites are operated in the open and uncontrolled space environment, future ISTNs are vulnerable to various attacks. Towards a secure and reliable ISTN for pervasive Internet services globally, we carry out our study in three steps. First, we conduct an in-depth analysis of the unique characteristics and new vulnerabilities of emerging ISTNs. Second, we envision space digital twin (SDT), a novel technology that can facilitate secure and reliable satellite Internet with the ability to conduct multi-dimensional security assessment, identify various vulnerabilities, and evaluate the effectiveness of countermeasures accordingly. With SDT techniques, an ISTN operator/researcher can flexibly build a virtual ISTN environment (VIE), which duplicates the network architecture, protocols, behaviors as well as security threats and vulnerabilities of a real ISTN, for security assessment and countermeasures evaluation. Finally, we conclude the key challenges of realizing the full capability of SDT, and accordingly outline a list of corresponding new directions for future research.

Roy Peled,Eran Aizikovich,Edan Habler,Yuval Elovici,Asaf Shabtai

2023-12-03

Abstract:Satellite systems are facing an ever-increasing amount of cybersecurity threats as their role in communications, navigation, and other services expands. Recent papers have examined attacks targeting satellites and space systems; however, they did not comprehensively analyze the threats to satellites and systematically identify adversarial techniques across the attack lifecycle. This paper presents a comprehensive taxonomy of adversarial tactics, techniques, and procedures explicitly targeting LEO satellites. First, we analyze the space ecosystem including the ground, space, Communication, and user segments, highlighting their architectures, functions, and vulnerabilities. Then, we examine the threat landscape, including adversary types, and capabilities, and survey historical and recent attacks such as jamming, spoofing, and supply chain. Finally, we propose a novel extension of the MITRE ATT&CK framework to categorize satellite attack techniques across the adversary lifecycle from reconnaissance to impact. The taxonomy is demonstrated by modeling high-profile incidents, including the Viasat attack that disrupted Ukraine's communications. The taxonomy provides the foundation for the development of defenses against emerging cyber risks to space assets. The proposed threat model will advance research in the space domain and contribute to the security of the space domain against sophisticated attacks.

Cryptography and Security

Lixin Liu,Yuanjie Li,Hewu Li,Jiabo Yang,Wei Liu,Jingyi Lan,Yufeng Wang,Jiarui Li,Jianping Wu,Qian Wu,Jun Liu,Zeqi Lai

DOI: https://doi.org/10.1145/3686138.3686140

2024-07-30

Abstract:The emergent Direct-to-cell Low Earth Orbit (LEO) satellites promise to eliminate cellular coverage dead zones by enabling direct network access to our regular phones and IoTs everywhere on Earth via 4G, 5G, and beyond. However, their large-scale deployment can be impeded by scarce orbital slots in space, a lack of licensed cellular spectrums, and prohibitive capital costs for satellite deployment and operation. This article explores how to enable multi-tenant direct-to-cell LEO satellites as a cost-effective win-win solution for satellite operators, mobile operators, and users. We demonstrate that the state-of-the-art cellular networks' stateful hop-by-hop session-based architecture restricts the LEO satellite multi-tenancy. To remove this technical barrier, we propose MOSAIC [1], an alternative scheme to shift from the hop-by-hop session-based cellular service to pay-as-you-go satellite self-service. MOSAIC lets mobile operators supply their users with one-time digitally signed tokens as "coins" to pay for local satellite access on demand. Any satellite operator's authentic satellite can accept these tokens to serve this user without pre-establishing sessions or contacting mobile operators. Akin to cloud computing, this paradigm lets satellite operators flexibly lease their satellites to more mobile operators or higher revenues and return on investment, and allows mobile operators and users to enjoy competitive satellites for complementary coverage and cost optimizations. Our evaluations with the real satellite data and commodity 3GPP NTN protocol stack validate MOSAIC's scalability and performance advantages compared to the state-of-the-art.

Lixin Liu,Wei Liu,Yuanjie Li,Hewu Li

DOI: https://doi.org/10.1109/mic.2024.3359773

IF: 2.68

2024-01-01

IEEE Internet Computing

Abstract:Cellular networks from space, powered by recent technological advances in satellite mega-constellations, promise to expand operators’ service areas to anywhere on Earth for commercial revenues and social goods. While existing 5G has attempted to support satellites via its non-terrestrial network (NTN) enhancements, its hop-by-hop stateful session-based network architecture impedes this progress due to various functionality, scalability, reliability, and security concerns under the mega-constellation’s extreme mobility in the harsh outer space. This article investigates these issues and explores how to remove this architectural barrier for 6G and beyond from space. We propose a user-centric design that shifts from the hop-by-hop session-based to stateless on-demand cellular service. We discuss how this paradigm shift can stabilize the cellular function inter-networking under extreme satellite mobility, refactor in-orbit cellular functions to be stateless with local user equipment’s assistance, and foster efficient use of satellites for low capital costs and large-scale deployments.

computer science, software engineering

Anna Talgat,Ruibo Wang,Mustafa A. Kishk,Mohamed-Slim Alouini

DOI: https://doi.org/10.1109/jiot.2024.3436621

IF: 10.6

2024-10-12

IEEE Internet of Things Journal

Abstract:The extensive deployment of low earth orbit (LEO) satellites introduces significant security challenges for communication security issues in Internet of Things (IoT) networks. With the rising number of satellites potentially acting as eavesdroppers, integrating physical-layer security (PLS) into satellite communications has become increasingly critical. However, these studies are facing challenges, such as dealing with dynamic topology difficulties, limitations in interference analysis, and the high complexity of performance evaluation. To address these challenges, for the first time, we investigate the PLS strategies in satellite communications using the stochastic geometry (SG) analytical framework. We consider the uplink communication scenario in an LEO-enabled IoT network, where the multitier satellites from different operators, respectively, serve as the legitimate receivers and eavesdroppers. In this scenario, we derive low-complexity analytical expressions for the security performance metrics, namely availability probability, successful communication probability, and secure communication probability. By introducing the power allocation parameters, we incorporate the artificial noise (AN) technique, which is an important PLS strategy, into this the analytical framework, and evaluate the gains it brings to secure transmission. In addition to the AN technique, we also analyse the impact of constellation configuration, physical-layer parameters, and network layer parameters on the aforementioned metrics.

computer science, information systems,telecommunications,engineering, electrical & electronic

Anna Talgat,Ruibo Wang,Mustafa A. Kishk,Mohamed-Slim Alouini

2024-07-05

Abstract:The extensive deployment of Low Earth Orbit (LEO) satellites introduces significant security challenges for communication security issues in Internet of Things (IoT) networks. With the rising number of satellites potentially acting as eavesdroppers, integrating Physical Layer Security (PLS) into satellite communications has become increasingly critical. However, these studies are facing challenges such as dealing with dynamic topology difficulties, limitations in interference analysis, and the high complexity of performance evaluation. To address these challenges, for the first time, we investigate PLS strategies in satellite communications using the Stochastic Geometry (SG) analytical framework. We consider the uplink communication scenario in an LEO-enabled IoT network, where multi-tier satellites from different operators respectively serve as legitimate receivers and eavesdroppers. In this scenario, we derive low-complexity analytical expressions for the security performance metrics, namely availability probability, successful communication probability, and secure communication probability. By introducing the power allocation parameters, we incorporate the Artificial Noise (AN) technique, which is an important PLS strategy, into this analytical framework and evaluate the gains it brings to secure transmission. In addition to the AN technique, we also analyze the impact of constellation configuration, physical layer parameters, and network layer parameters on the aforementioned metrics.

Networking and Internet Architecture

Pietro Tedeschi,Savio Sciancalepore,Roberto Di Pietro

DOI: https://doi.org/10.1016/j.comnet.2022.109246

IF: 5.493

2022-10-24

Computer Networks

Abstract:Satellite-based Communication (SATCOM) systems are gaining renewed momentum in Industry and Academia, thanks to innovative services introduced by leading tech companies and the promising impact they can deliver towards the global connectivity objective tackled by early 6G initiatives. On the one hand, the emergence of new manufacturing processes and radio technologies promises to reduce service costs while guaranteeing outstanding communication latency, available bandwidth, flexibility, and coverage range. On the other hand, cybersecurity techniques and solutions applied in SATCOM links should be updated to reflect the substantial advancements in attacker capabilities characterizing the last two decades. However, business urgency and opportunities are leading operators towards challenging system trade-offs, resulting in an increased attack surface and a general relaxation of the available security services.In this paper, we tackle the cited problems and present a comprehensive survey on the link-layer security threats, solutions, and challenges faced when deploying and operating SATCOM systems. Specifically, we classify the literature on security for SATCOM systems into two main branches, i.e., physical-layer security and cryptography schemes. Then, we further identify specific research domains for each of the identified branches, focusing on dedicated security issues, including, e.g., physical-layer confidentiality, anti-jamming schemes, anti-spoofing strategies, and quantum-based key distribution schemes. For each of the above domains, we highlight the most essential techniques, peculiarities, advantages, disadvantages, lessons learned, and future directions. Finally, we also identify emerging research topics whose additional investigation by Academia and Industry could further attract researchers and investors, ultimately unleashing the full potential behind ubiquitous satellite communications.

computer science, information systems,telecommunications,engineering, electrical & electronic, hardware & architecture

Yimei Chen,Yuanjie Li,Hewu Li,Lixin Liu,Li Ouyang,Jiabo Yang,Junyi Li,Jianping Wu,Qian Wu,Jun Liu,Zeqi Lai

2024-06-10

Abstract:Low Earth Orbit (LEO) satellite mega-constellations aim to enable high-speed Internet for numerous users anywhere on Earth. To safeguard their network infrastructure in congested outer space, they perform automatic orbital maneuvers to avoid collisions with external debris and satellites. However, our control-theoretic analysis and empirical validation using Starlink's space situational awareness datasets discover that, these safety-oriented maneuvers themselves can threaten safety and networking via cascaded collision avoidance inside the mega-constellation. This domino effect forces a dilemma between long-term LEO network lifetime and short-term LEO network capacity. Its root cause is that, the decades-old local pairwise maneuver paradigm for standalone satellites is inherently unstable if scaled out to recent mega-constellation networks. We thus propose an alternative bilateral maneuver control that stabilizes self-driving mega-constellations for concurrent network lifetime and capacity boosts. Our operational trace-driven emulation shows a 8$\times$ network lifetime extension in Starlink without limiting its network capacity.

Networking and Internet Architecture

Yongpeng Shi,Jiadai Wang,Yijie Xun,Jiajia Liu

DOI: https://doi.org/10.23919/JCC.fa.2022-0855.202307

2023-07-01

China Communications

Abstract:The ultra-dense low earth orbit (LEO) integrated satellite-terrestrial networks (UDLEO-ISTN) can bring lots of benefits in terms of wide coverage, high capacity, and strong robustness. Meanwhile, the broadcasting and open natures of satellite links also reveal many challenges for transmission security protection, especially for eavesdropping defence. How to efficiently take advantage of the LEO satellite's density and ensure the secure communication by leveraging physical layer security with the cooperation of jammers deserves further investigation. To our knowledge, using satellites as jammers in UDLEO-ISTN is still a new problem since existing works mainly focused on this issue only from the aspect of terrestrial networks. To this end, we study in this paper the cooperative secrecy communication problem in UDLEO-ISTN by utilizing several satellites to send jamming signal to the eavesdroppers. An iterative scheme is proposed as our solution to maximize the system secrecy energy efficiency (SEE) via jointly optimizing transmit power allocation and user association. Extensive experiment results verify that our designed optimization scheme can significantly enhance the system SEE and achieve the optimal power allocation and user association strategies.

Computer Science,Engineering

Yuanjie Li,Hewu Li,Wei Liu,Lixin Liu,Wei Zhao,Yimei Chen,Jianping Wu,Qian Wu,Jun Liu,Zeqi Lai,Han Qiu

DOI: https://doi.org/10.1145/3570361.3592519

2023-01-01

Abstract:Low-earth-orbit (LEO) satellite mega-constellations, such as SpaceX Starlink, are under rocket-fast deployments and promise broadband Internet to remote areas that terrestrial networks cannot reach. For mission safety and sustainable uses of space, Starlink has adopted a proprietary onboard autonomous driving system for its extremely mobile LEO satellites. This paper demystifies and diagnoses its impacts on the LEO mega-constellation and satellite networks. We design a domain-specific method to characterize key components in Starlink's autonomous driving from various public space situational awareness datasets, including continuous orbit maintenance, collision avoidance, and maneuvers between orbital shells. Our analysis shows that, these operations have mixed impacts on the stability and performance of the entire mega-constellation, inter-satellite links, topology, and upper-layer network functions. To this end, we investigate and empirically assess the potential of networking-autonomous driving co-designs for the upcoming satellite networks.

Vincent Lenders,Franklyn Sciberras,Martin Strohmeier,Johannes Willbold

DOI: https://doi.org/10.1109/AERO58975.2024.10521192

2024-03-02

Abstract:The security of satellite and space systems has become a pressing concern in recent years as various high-profile incidents involving satellite-based internet access have been observed in the context of the war in Ukraine. An increase in threat level is partly due to a) rapid advancements in affordable software-defined communications equipment, which have made it easier for attackers to gain communication capabilities with orbital assets and b) the increasing adoption of commercial off-the-shelf hardware and software components in spacecraft enhancing affordability and exposing potential vulnerabilities more easily. A recent study revealed that satellite software typically lacks sufficient protection against unauthorized access. However, it remains unclear how this inherent lack of security is critical to other satellites in orbit as no public work exists on cybersecurity reconnaissance. Hence, to date, identifying non-standard commands and assessing potential vulnerabilities are deemed challenging steps for attackers to perform.In light of this current state, this paper analyzes how attackers may conduct reconnaissance on satellites’ capabilities without targeting the ground segment. We develop strategies that attackers may employ to evaluate satellites’ capabilities using a satellite implementation that adheres to the ECSS-standardized Telecommand on top of a CCSDS protocol stack. Our considered strategies encompass enumeration methods to identify the subset of the standard implemented, including non-standardized functionalities. Additionally, we present strategies to analyze implementation-specific aspects of CCSDS’ Space Data Link Security (SDLS) Protocol, which serves as the primary security protocol within the CCSDS protocol family. Our strategies test the potential for timing side channels, fault-message-based enumeration, and payload length enumeration testing. To evaluate the effectiveness of our strategies, we apply them to a real-world satellite and measure their success rate.

Engineering,Political Science,Computer Science

David Koisser,Richard Mitev,Marco Chilese,Ahmad-Reza Sadeghi

2023-07-27

Abstract:Satellite Internet plays an increasingly important role in geopolitical conflicts. This notion was affirmed in the Ukrainian conflict escalating at the beginning of 2022, with the large-scale deployment of the Starlink satellite Internet service which consequently demonstrated the strategic importance of a free flow of information. Aside from military use, many citizens publish sensitive information on social media platforms to influence the public narrative. However, the use of satellite communication has proven to be dangerous, as the signals can be monitored by other satellites and used to triangulate the source on the ground. Unfortunately, the targeted killings of journalists have shown this threat to be effective. While the increasing deployment of satellite Internet systems gives citizens an unprecedented mouthpiece in conflicts, protecting them against localization is an unaddressed problem. To address this threat, we present AnonSat, a novel scheme to protect satellite Internet users from triangulation. AnonSat works with cheap off-the-shelf devices, leveraging long-range wireless communication to span a local network among satellite base stations. This allows rerouting users' communication to other satellite base stations, some distance away from each user, thus, preventing their localization. AnonSat is designed for easy deployment and usability, which we demonstrate with a prototype implementation. Our large-scale network simulations using real-world data sets show the effectiveness of AnonSat in various practical settings.

Cryptography and Security

Qinglei Kong,Xiaodong Qu,Songnian Zhang,Feng Yin,Rongxing Lu,Bo Chen

DOI: https://doi.org/10.1109/tsc.2023.3322432

IF: 11.019

2023-01-01

IEEE Transactions on Services Computing

Abstract:The low Earth orbit (LEO) satellite edge computing paradigm provides remote sites with flexible, reliable, and scalable edge computing capabilities. Characterized by the orbital motion patterns and harsh space environments, the LEO satellite edge computing faces unique security challenges in terms of the secure collaboration of multiple satellites and the intellectual property protection of models. Under the unique space environment and security demands, we propose a secure satellite edge computing framework in this paper. By taking a remote electricity line outage identification use case as an example, our framework first achieves the secure delegation of the line outage identification task among multiple satellites, which is realized through a secure query $(\mathsf {SQuery})$ scheme to check the availability of the target time slot. Meanwhile, we also design a SHE-enabled secure inner-product encryption ($\mathsf {SSIPE}$) protocol, to achieve the secure multinomial logistic regression (MLR) based line outage identification on-orbit. To reduce the complexity brought by the computationally intensive homomorphic multiplication between two ciphertexts, we further grasp the idea and design a “divide-and-conquer” based secure query ($\mathsf {DSQuery}$) scheme, which converts this homomorphic multiplication operation between ciphertexts into the homomorphic addition operation. As far as we know, this is the first scheme investigating the secure task delegation among different satellites on-orbit. Besides, detailed security analyses are performed to demonstrate the security properties of confidentiality and authentication. In performance evaluations, we test and compare the computational and communication overhead of our scheme and other straightforward schemes. Simulation results show that the $\mathsf {DSQuery}$ scheme greatly reduces the computational cost, which saves the stringent on-orbit computation resources of LEO satellites.

computer science, information systems, software engineering

Simon Erni,Martin Kotuliak,Patrick Leu,Marc Roeschlin,Srdjan Capkun

DOI: https://doi.org/10.1145/3495243.3560525

2022-09-08

Abstract:In cellular networks, attacks on the communication link between a mobile device and the core network significantly impact privacy and availability. Up until now, fake base stations have been required to execute such attacks. Since they require a continuously high output power to attract victims, they are limited in range and can be easily detected both by operators and dedicated apps on users' smartphones. This paper introduces AdaptOver - a MITM attack system designed for cellular networks, specifically for LTE and 5G-NSA. AdaptOver allows an adversary to decode, overshadow (replace) and inject arbitrary messages over the air in either direction between the network and the mobile device. Using overshadowing, AdaptOver can cause a persistent ($\geq$ 12h) DoS or a privacy leak by triggering a UE to transmit its persistent identifier (IMSI) in plain text. These attacks can be launched against all users within a cell or specifically target a victim based on its phone number. We implement AdaptOver using a software-defined radio and a low-cost amplification setup. We demonstrate the effects and practicality of the attacks on a live operational LTE and 5G-NSA network with a wide range of smartphones. Our experiments show that AdaptOver can launch an attack on a victim more than 3.8km away from the attacker. Given its practicability and efficiency, AdaptOver shows that existing countermeasures that are focused on fake base stations are no longer sufficient, marking a paradigm shift for designing security mechanisms in cellular networks.

Cryptography and Security