Shinan Liu,Xiang Cheng,Hanchao Yang,Yuanchao Shu,Xiaoran Weng,Ping Guo,Kexiong (Curtis) Zeng,Gang Wang,Yaling Yang

2021-01-01

Abstract:The GPS has empowered billions of users and various critical infrastructures with its positioning and time services. However, GPS spoofing attacks also become a growing threat to GPS-dependent systems. Existing detection methods either require expensive hardware modifications to current GPS devices or lack the basic robustness against sophisticated attacks, hurting their adoption and usage in practice. In this paper, we propose a novel GPS spoofing detection framework that works with off-the-shelf GPS chipsets. Our basic idea is to rotate a one-side-blocked GPS receiver to derive the angle-of-arrival (AoAs) of received signals and compare them with the GPS constellation (consists of tens of GPS satellites). We first demonstrate the effectiveness of this idea by implementing a smartphone prototype and evaluating it against a real spoofer in various field experiments (in both open air and urban canyon environments). Our method achieves a high accuracy (95%-100%) in 5 seconds. Then we implement an adaptive attack, assuming the attacker becomes aware of our defense method and actively modulates the spoofing signals accordingly. We study this adaptive attack and propose enhancement methods (using the rotation speed as the "secret key") to fortify the defense. Further experiments are conducted to validate the effectiveness of the enhanced defense.

Xiao Chen,Ruidan Luo,Ting Liu,Hong Yuan,Haitao Wu

DOI: https://doi.org/10.3390/rs15051462

IF: 5

2023-03-06

Remote Sensing

Abstract:As the Global Navigation Satellite System (GNSS) is widely used in all walks of life, the signal structure of satellite navigation is open, and the vulnerability to spoofing attacks is also becoming increasingly prominent, which will seriously affect the credibility of navigation, positioning, and timing (PNT) services. Satellite navigation signal authentication technology is an emerging technical means of improving civil signal anti-spoofing on the satellite navigation system side, and it is also an important development direction and research focus of the GNSS. China plans to carry out the design and development of the next-generation Beidou navigation satellite system (BDS), and one of its core goals is to provide more secure and credible PNT services. This paper first expounds on the principles and technical architecture of satellite navigation signal authentication, then clarifies the development history of satellite navigation signal authentication, and finally proposes the BDS authentication service system architecture. It will provide technical support for the construction and development of the follow-up Beidou authentication service.

environmental sciences,imaging science & photographic technology,remote sensing,geosciences, multidisciplinary

Francesco Formaggio,Stefano Tomasin

DOI: https://doi.org/10.48550/arXiv.1802.04513

2018-04-18

Abstract:In order to combat the spoofing of global navigation satellite system (GNSS) signals we propose a novel approach for satellite signal authentication based on information-theoretic security. In particular we superimpose to the navigation signal an authentication signal containing a secret message corrupted by artificial noise (AN), still transmitted by the satellite. We impose the following properties: a) the authentication signal is synchronous with the navigation signal, b) the authentication signal is orthogonal to the navigation signal and c) the secret message is undecodable by the attacker due to the presence of the AN. The legitimate receiver synchronizes with the navigation signal and stores the samples of the authentication signal with the same synchronization. After the transmission of the authentication signal, through a separate public asynchronous authenticated channel (e.g., a secure Internet connection) additional information is made public allowing the receiver to a) decode the secret message, thus overcoming the effects of AN, and b) verify the secret message. We assess the performance of the proposed scheme by the analysis of both the secrecy capacity of the authentication message and the attack success probability, under various attack scenarios. A comparison with existing approaches shows the effectiveness of the proposed scheme.

Signal Processing

Maryam Motallebighomi,Harshad Sathaye,Mridula Singh,Aanjhan Ranganathan

DOI: https://doi.org/10.48550/arXiv.2204.11641

2022-11-02

Abstract:Civilian-GNSS is vulnerable to signal spoofing attacks, and countermeasures based on cryptographic authentication are being proposed to protect against these attacks. Both Galileo and GPS are currently testing broadcast authentication techniques based on the delayed key disclosure to validate the integrity of navigation messages. These authentication mechanisms have proven secure against record now and replay later attacks, as navigation messages become invalid after keys are released. This work analyzes the security guarantees of cryptographically protected GNSS signals and shows the possibility of spoofing a receiver to an arbitrary location without breaking any cryptographic operation. In contrast to prior work, we demonstrate the ability of an attacker to receive signals close to the victim receiver and generate spoofing signals for a different target location without modifying the navigation message contents. Our strategy exploits the essential common reception and transmission time method used to estimate pseudorange in GNSS receivers, thereby rendering any cryptographic authentication useless. We evaluate our attack on a commercial receiver (ublox M9N) and a software-defined GNSS receiver (GNSS-SDR) using a combination of open-source tools, commercial GNSS signal generators, and software-defined radio hardware platforms. Our results show that it is possible to spoof a victim receiver to locations around 4000 km away from the true location without requiring any high-speed communication networks or modifying the message contents. Through this work, we further highlight the fundamental limitations in securing a broadcast signaling-based localization system even if all communications are cryptographically protected.

Cryptography and Security

Yongxin Liu,Jian Wang,Yingjie Chen,Shuteng Niu,Zhihan Lv,Lei Wu,Dahai Liu,Houbing Song

DOI: https://doi.org/10.48550/arXiv.2110.08883

2021-10-18

Abstract:The integration of air and ground smart vehicles is becoming a new paradigm of future transportation. A decent number of smart unmanned vehicles or UAS will be sharing the national airspace for various purposes, such as express delivery, surveillance, etc. However, the proliferation of UAS also brings challenges considering the safe integration of them into the current Air Traffic Management (ATM) systems. Especially when the current Automatic Dependent Surveillance Broadcasting (ADS-B) systems do not have message authentication mechanisms, it can not distinguish whether an authorized UAS is using the corresponding airspace. In this paper, we aim to address these practical challenges in two folds. We first use blockchain to provide a secure authentication platform for flight plan approval and sharing between the existing ATM facilities. We then use the fountain code to encode the authentication payloads and adapt them into the de facto communication protocol of ATM. This maintains backward compatibility and ensures the verification success rate under the noisy broadcasting channel. We simulate the realistic wireless communication scenarios and theoretically prove that our proposed authentication framework is with low latency and highly compatible with existing ATM communication protocols.

Cryptography and Security,Networking and Internet Architecture

Wu Zhijun,Zhang Yuan,Yang Yiming,Wang Peng,Yue Meng

DOI: https://doi.org/10.23919/jcc.ja.2022-0368

2024-06-21

China Communications

Abstract:Due to the lack of authentication mechanism in BeiDou navigation satellite system (BDS), BD-II civil navigation message (BDII-CNAV) are vulnerable to spoofing attack and replay attack. To solve this problem, we present a security authentication protocol, called as BDSec, which is designed by using China's cryptography Shangyong Mima (SM) series algorithms, such as SM2/4/9 and Zu Chongzhi (ZUC) algorithm. In BDSec protocol, both of BDII-CNAV and signature information are encrypted using the SM4 algorithm (Symmetric encryption mechanism). The encrypted result is used as the subject authentication information. BDSec protocol applies SM9 algorithm (Identity-based cryptography mechanism) to protect the integrity of the BDII-CNAV, adopts the SM2 algorithm (Public key cryptosystem) to guarantee the confidentiality of the important session information, and uses the ZUC algorithm (Encryption and integrity algorithm) to verify the integrity of the message authentication serial number and initial information and the information in authentication initialization sub-protocol respectively. The results of the SVO logic reasoning and performance analysis show that BDSec protocol meets security requirements for the dual user identity authentication in BDS and can realize the security authentication of BDII-CNAV.

telecommunications

Jianfeng Li,Hong Li,Fei Wang,Hang Ruan,ZhongXiao Wang,Mingquan Lu

DOI: https://doi.org/10.33012/2018.15587

2018-01-01

Abstract:Global Navigation Satellite System (GNSS) is widely applied to our daily life with its stable service. The GNSS control segment routinely generates navigation message based on a prediction model and the measurements from global monitor stations. Navigation message includes each satellite's clock correction, ephemeris, and almanac which are stable and change by certain rules. The paper analyzes these parameters of Global Positioning System (GPS) and BeiDou System (BDS). Based on different changing rules of parameters, the paper divides all parameters into four categories and briefly discusses their applications in anomaly detection and anti-spoofing. Further, the computed satellite position deviations by ephemerides and almanacs of different time are researched and relevant mathematical model is established. Also, the computed clock deviations are discussed. With the increasing use of GNSS, its vulnerability has caused much concern. In general, there are many spoofing methods. In order to deceive a victim receiver to a predetermined position or time, some spoofers may change navigation message. The above analysis results can be applied to check such spoofing attacks. So two threshold models are established and their advantages and disadvantages are discussed. Combining two threshold models, the paper proposes a method to effectively utilize navigation message for anti-spoofing. Finally, the method is implemented on GPS/BDS receivers and the relevant experimental results show that it is feasible and effective in different deception scenarios where navigation message is tampered.

Nianzu Gu,Fei Xing,Zheng You

DOI: https://doi.org/10.3390/s21206769

IF: 3.9

2021-01-01

Sensors

Abstract:Spoofing attacks are one of the severest threats for global navigation satellite systems (GNSSs). This kind of attack can damage the navigation systems of unmanned air vehicles (UAVs) and other unmanned vehicles (UVs), which are highly dependent on GNSSs. A novel method for GNSS spoofing detection based on a coupled visual/inertial/GNSS positioning algorithm is proposed in this paper. Visual inertial odometry (VIO) has high accuracy for state estimation in the short term and is a good supplement for GNSSs. Coupled VIO/GNSS navigation systems are, unfortunately, also vulnerable when the GNSS is subject to spoofing attacks. The method proposed in this article involves monitoring the deviation between the VIO and GNSS under an optimization framework. A modified Chi-square test triggers the spoofing alarm when the detection factors become abnormal. After spoofing detection, the optimal estimation algorithm is modified to prevent it being deceived by the spoofed GNSS data and to enable it to carry on positioning. The performance of the proposed spoofing detection method is evaluated through a real-world visual/inertial/GNSS dataset and a real GNSS spoofing attack experiment. The results indicate that the proposed method works well even when the deviation caused by spoofing is small, which proves the efficiency of the method.

Lei Wang,Lei Chen,Baiyu Li,Zhe Liu,Zongnan Li,Zukun Lu

DOI: https://doi.org/10.3389/fphy.2024.1425084

IF: 3.718

2024-10-09

Frontiers in Physics

Abstract:The threat of spoofing interference has posed a severe challenge to the security application of Global Navigation Satellite System (GNSS). It is particularly urgent and critical to carry out in-depth defense research on spoofing interference. When combined with the inertial navigation system (INS), the GNSS/INS integrated navigation system offers distinct advantages in the field of anti-spoofing technology research, which has garnered significant attention in recent years. To summarize the current research achievements of GNSS/INS integrated navigation anti-spoofing technology, it is necessary to provide an overview of the three core technical aspects of spoofing attack principles and implementation strategies, spoofing detection, and spoofing mitigation. First, the principles and implementation strategies of spoofing interference attacks are introduced, and different classifications of spoofing interference attacks are given. Then, the performance characteristics and technical points of different spoofing detection and spoofing mitigation methods are compared and analyzed, and the shortcomings and challenges in the current development of GNSS/INS anti-spoofing technology are pointed out. Finally, based on the summary and shortcomings of the existing technology, a prospect for the future development of GNSS/INS integrated navigation anti-spoofing technology is discussed.

physics, multidisciplinary

Chengjie Li,Xiaochao Sun,Zhen Zhang

DOI: https://doi.org/10.1109/access.2021.3104875

IF: 3.9

2021-01-01

IEEE Access

Abstract:In satellite communication systems, satellite power and processing capacities are limited, which means that storage and security are also constrained. Satellite communication channels are extremely vulnerable to hackers and external interference signals. Protecting satellite networks from illegal information access and use can be extremely challenging. In this paper, an architecture composed of satellite and ground equipment is developed that integrates communication network authentication and privacy protection structures. In the proposed scheme, the communication, registration, authentication, and revocation of information are achieved through stages to improve communication security. The satellite forwards the collected information to a ground base station, which has a strong data processing capacity. The ground base station records all the key parameters in the distributed blockchain, and all malicious node certificates are removed from the system. To further enhance data transmission security, the key is transferred using an asymmetric encryption algorithm. To measure the robustness of using the proposed network architecture, under the same attack condition, an invulnerability analysis is performed. After conducting simulation experiments, the results show that the proposed scheme greatly improves communication security and protection.

Yimin Wei,Hong Li,Mingquan Lu

DOI: https://doi.org/10.33012/2019.17012

2019-01-01

Abstract:The integrated navigation system composed of Global Navigation Satellite System (GNSS) and Inertial Navigation system (INS) is widely used in the field of navigation and implementation of non-holonomic constraint (NHC) is also a commonly used method to enhance the positioning accuracy. The positioning performance of INS/GNSS/NHC integrated navigation system is fully researched in recent studies. However, under the increasing threat of GNSS spoofing nowadays, the integrity of INS/GNSS integrated system with and without NHC under GNSS spoofing attack has not been evaluated yet. In the paper, the position domain MDB is utilized as the metric for the evaluation of system integrity under spoofing attack. We develop a convex optimization based method for MDB derivation. The position domain MDB is calculated on a dataset collected during real driving and the integrities of the integrated navigation systems with and without NHC are compared and analyzed based on the derived result.

Francesco Ardizzon,Laura Crosara,Stefano Tomasin,Nicola Laurenti

DOI: https://doi.org/10.1109/TIFS.2024.3381473

2023-04-06

Abstract:Global navigation satellite systems (GNSSs) are implementing security mechanisms: examples are Galileo open service navigation message authentication (OS-NMA) and GPS chips-message robust authentication (CHIMERA). Each of these mechanisms operates in a single band. However, nowadays, even commercial GNSS receivers typically compute the position, velocity, and time (PVT) solution using multiple constellations and signals from multiple bands at once, significantly improving both accuracy and availability. Hence, cross-authentication checks have been proposed, based on the PVT obtained from the mixture of authenticated and non-authenticated signals. In this paper, first, we formalize the models for the cross-authentication checks. Next, we describe, for each check, a spoofing attack to generate a fake signal leading the victim to a target PVT without notice. We analytically relate the degrees of the freedom of the attacker in manipulating the victim's solution to both the employed security checks and the number of open signals that can be tampered with by the attacker. We test the performance of the considered attack strategies on an experimental dataset. Lastly, we show the limits of the PVT-based GNSS cross-authentication checks, where both authenticated and non-authenticated signals are used.

Cryptography and Security,Signal Processing

Jiangyao Song,Ting Liu,Xiao Chen,Zhongwang Wu

DOI: https://doi.org/10.3390/s24020360

IF: 3.9

2024-01-08

Sensors

Abstract:SBAS is mainly used in civil aviation and navigation, and will be applied to autonomous driving in the future. Given the open signal format of the Satellite Based Augmentation System (SBAS), which exposes security threats such as spoofing attacks, the utilization of SBAS navigation message authentication technology can improve the SBAS anti-spoofing ability from the system side. SBAS message authentication technology has become the future direction of SBAS system development. However, during the initial design of SBAS on L1, message authentication technology was not considered, and the addition of authentication messages will lead to further strain on existing message bandwidth resources. Therefore, in response to the issue of insufficient bandwidth resources after adding authentication messages to SBAS L1, a study on message scheduler for SBAS L1 authentication was conducted. A fixed time sequence dynamic message scheduler for incorporating authentication messages was proposed. This scheduler reduces the frequency of broadcasting clock error parameters to mitigate the impact of adding authentication messages. Furthermore, an optimized fixed time sequence dynamic message scheduler based on SBAS clock error messages was introduced. The results show that the message scheduler can not only improve the flexibility of SBAS message broadcasting, but also shorten the update interval of various types of messages under the premise of meeting the maximum update interval requirement. With minimal impact on the maximum message update interval, it improves the integrity, authenticity, and availability of messages. This approach can increase the effective message ratio in SBAS to over 91%, and the optimal solution reduces the initial user positioning time to 26 s.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Muhammad Arshad,Liu Jianwei,Muhammad Khalid,Waqar Khalid,Yue Cao,Fakhri Alam Khan

DOI: https://doi.org/10.1371/journal.pone.0291236

IF: 3.7

2024-03-07

PLoS ONE

Abstract:Space Information Network (SIN) has significant benefits of providing communication anywhere at any time. This feature offers an innovative way for conventional wireless customers to access enhanced internet services by using SIN. However, SIN’s characteristics, such as naked links and maximum signal latency, make it difficult to design efficient security and routing protocols, etc. Similarly, existing SIN authentication techniques can’t satisfy all of the essentials for secure communication, such as privacy leaks or rising authentication latency. The article aims to develop a novel blockchain-based access authentication mechanism for SIN. The proposed scheme uses a blockchain application, which has offered anonymity to mobile users while considering the satellites’ limited processing capacity. The proposed scheme uses a blockchain application, which offers anonymity to mobile users while considering the satellites’ limited processing capacity. The SIN gains the likelihood of far greater computational capacity devices as technology evolves. Since authenticating in SIN, the technique comprises three entities: low Earth orbit, mobile user, and network control centre. The proposed mutual authentication mechanism avoids the requirement of a ground station, resulting in less latency and overhead during mobile user authentication. Finally, the new blockchain-based authentication approach is being evaluated with AVISPA, a formal security tool. The simulation and performance study results illustrate that the proposed technique delivers efficient security characteristics such as low authentication latency, minimal signal overhead and less computational cost with group authentication.

multidisciplinary sciences

Jianfeng Li,Hong Li,Mingquan Lu

DOI: https://doi.org/10.1007/978-981-15-3715-8_61

2020-01-01

Abstract:Global Navigation Satellite System (GNSS) is vulnerable to spoofing attack because of its low power and open civil signal structure. Loran-C system is independent of GNSS and can be used for anti-spoofing. In order to detect, identify the spoofing signals and exclude its influence on position, velocity, and time (PVT) results, the paper proposes the GNSS anti-spoofing method assisted by Loran-C system. When the number of Loran-C signals is relatively less, the difference observations of Loran-C are used to identify whether the GNSS positioning result is right or wrong, and the factors affecting the detection performance are studied. When the Loran-C receiver can provide independent positioning information, all spoofing signals are identified by the clustering algorithm after the consistency detection of GNSS pseudorange observations, Loran-C positioning information and satellite positions. Then if the number of remained GNSS signals after spoofing exclusion is less than 4, the GNSS signals and Loran-C signals are combined to improve the positioning accuracy and the Dilution of Precision (DOP) is used to measure the positioning accuracy. Finally, the feasibility of the proposed method is verified by simulation experiments.

Weiyu Gao,Hong Li,Jianfeng Li,Mingquan Lu

DOI: https://doi.org/10.33012/2020.17721

2020-01-01

Abstract:The Global Navigation Satellite System (GNSS) serves people as an essential precise time synchronization source. However, to provide public services on a global scale, GNSS civil signals need to have open structures. And their power is much lower than thermal noises at the receiver end. These make spoofing a major threat and GNSS timing users are easy to be deceived by a kind of spoofing known as the Time Synchronization Attack (TSA). The real-world damage of TSA is proved by researchers and demands of TSA defense methods emerge. Typical anti-spoofing methods can bring some degrees of security, but they mainly focus on physical parameters that do not affect timing solutions. So attackers always have possibilities to cheat these methods. A more robust way is to directly monitor key timing results, like clock biases and clock drifts. Researchers have come up with several methods of this kind, but their requirements of complex computations and incessant mitigations may bring difficulties to actual usages. To complement these deficiencies, this paper proposes a TSA detection and discrimination method based on the abnormal similarity between signals from different satellites. Specifically, we calculate clock drifts from each satellite signal separately and monitor the correlation values of different clock drifts time-differenced sequences. As TSA signals need to avoid sudden changes in timing results and keep actual position solutions, spoofing is ought to maintain a same changing rate of pseudorange differences among all spoofing-authentic signal pairs. This additional similarity will greatly enlarge the correlation value, thus, TSA is revealed. After detected and discriminated by the proposed method, spoofing affects will be much easier to erase. We achieve this method by monitoring timing results only and requiring few complex computations, so it will be a sufficient complement to off-the-shelf real-world TSA defenses. Our motivations and method effects are verified on an open test-bed.

Bing Li,Mingxuan Zheng,Maode Ma

DOI: https://doi.org/10.1049/2024/6616095

2024-03-12

IET Information Security

Abstract:Named Data Networking (NDN) is a promising network architecture that differs from the traditional TCP/IP network, as it focuses on data rather than the host. A new secure model is required to provide the data-oriented trust instead of the host-oriented trust. This paper proposes a new secure solution in the NDNs named Secure Mechanism supported by Certificateless Digital Signature and Blockchain (CLDS-B). The CLDS-B scheme employs a certificateless digital signature to guarantee the authentication and integrity of data. On the one hand, the key escrow problem has been solved to eliminate the risks of compromised private key generators; on the other hand, the data name has been bound to the public key to prevent the false public key. Moreover, the blockchain is used to manage cryptographic information. Each domain designates an information service entity to join the blockchain so that the consumer could retrieve the cryptographic information public parameter in the local domain if necessary. Furthermore, due to the decentralization of the blockchain, the CLDS-B would be robust to resist the single-node failure. Simulation results show that the CLDS-B scheme outperforms a classic NDN scheme, although it shows slightly inferior to the other secure NDN scheme. The security verification and analysis show that the CLDS-B would resist the key escrow attack. The CLDS-B would be a competitive solution in scenarios with a high-security level.

computer science, information systems, theory & methods

Zhiyuan Chen,Hong Li,Jian Wen,Mingquan Lu

DOI: https://doi.org/10.33012/2020.17200

2020-01-01

Abstract:Since the widespread existence of interference and spoofing, the authentication of position, velocity, and timing (PVT) solution is necessary for a Global Navigation Satellite System (GNSS) receiver. Single-antenna spoofing attack that transmits all the counterfeit signals by a single antenna is a common one. In this case, all the counterfeit signals would experience a common propagation channel which causes the same fading and delay from the spoofer to a receiver. Inspired by the characteristic of such spoofing attack, we propose a PVT solution authentication method based on monitoring the combination of clock bias and drift for moving receivers in the paper. The basic principle of the method is based on the consistency check of clock bias and drift variations between local clock and GNSS timing solution. It can verify the authenticity of PVT solution using not only the clock bias but also the clock drift variations. This allows the Commercial off-the-shelf (COTS) GNSS receivers to obtain better performance.

Li He,Hong Li,Wenyi Li,Mingquan Lu

DOI: https://doi.org/10.33012/2016.13454

2016-01-01

Abstract:Recent years have witnessed the emergence of a new type of threat to the civilian GPS, namely spoofing. Spoofing is a concealed sabotage that coerces victim receiver into providing an erratic position result without any warning. Usually, spoofing is completed by transmitting fake GPS signal at a slightly higher power level to the receiver antenna from nearby. There have been many techniques proposed for detection and mitigation of the spoofing signal. However, these methods often focus on one aspect of characteristics, neglecting the consistency within GPS signals. In this paper, we explore the relationship between the mean carrier to noise ratio value and the angular position of corresponding satellite. This relationship is quite stable for fixed receiver, and forms a spatial pattern. The uniqueness and complexity of this pattern qualifies itself as an adequate fingerprint of the authentic signal, therefore it has the potential for discriminating spoofing signal. We propose a method based on artificial neural network, which could detect the abnormity in this spatial pattern. Some points of implementation and experiment results are presented. At the end, the advantage and potential of this cross-level information fusion framework is discussed in depth.

Guandong Liu,Na Fan,Chase Q Wu,Xiaomin Zou

DOI: https://doi.org/10.3390/s22145361

2022-07-18

Abstract:Vehicular ad-hoc networks (VANETs) aim to provide a comfortable driving experience. Sharing messages in VANETs can help with traffic management, congestion mitigation, and driving safety. However, forged or false messages may undermine the efficiency of VANETs. In this paper, we propose a security scheme based on blockchain technology, where two types of blockchain are constructed based on roadside units (RSUs) and Certificate Authorities (CAs), respectively. The proposed security scheme has multifold goals to identify malicious nodes and detect forged messages based on multiple factors, such as reputation of sender nodes, and time and distance effectiveness of messages. In addition, an incentive mechanism is introduced on the RSU blockchain to encourage RSUs to adopt active behaviors. Extensive simulations show that the proposed scheme exhibits superior performances to existing methods in detecting forged messages and identifying malicious nodes. Meanwhile, it provides privacy protection and improves the efficiency of vehicular networks.