Presentation is loading. Please wait.

Presentation is loading. Please wait.

Kyle Wesson, Mark Rothlisberger, and Todd Humphreys

Published byShavonne Ross Modified over 8 years ago

Similar presentations

Presentation on theme: "Kyle Wesson, Mark Rothlisberger, and Todd Humphreys"— Presentation transcript:

1 A Proposed Navigation Message Authentication Implementation for Civil GPS Anti-Spoofing
Kyle Wesson, Mark Rothlisberger, and Todd Humphreys Presentation at ION 2011| September 23, 2011

2 Our Recent Work

3 Outline Introduction: Civil GPS Anti-Spoofing
Security-Enhanced GNSS Signal Authentication Proposed GPS Cryptographic Signal Authentication Strategy Authentication Performance and Experimental Results Conclusions

4 Types of Civil Anti-Spoofing
Cryptographic Navigation Message Authentication Spreading Code Authentication Dual-Receiver Correlation Non-Cryptographic Multi-Antenna Defense Vestigial Signal Defense (VSD) Why navigation message authentication? Offers significant protection against spoofing relative to additional cost and bulk required for implementation Practical and surprisingly effective Suggested by Logan Scott in 2003 Why cryptographic? Does not require additional hardware at receiver Can distinguish authentic from spoofed signal

5 Part I: Security-Enhanced GNSS Signal Authentication

6 Security-Enhanced GNSS Signal Model
Security code : Generalization of binary modulating sequence Either fully encrypted or contains periodic authentication codes Unpredictable to would be spoofer

7 Attacking Security-Enhanced GNSS Signals
Meaconing: Spoofer records and re-broadcasts entire block of RF spectrum containing ensemble of GNSS signals Security Code Estimation and Replay (SCER) Attack: Spoofer estimates unpredictable security code chips from authentic signals on-the-fly

8 What does it take to authenticate a GNSS Signal?
Code Timing Authentication Code Origin Authentication

9 Operational Definition: GNSS Signal Authentication
GNSS signal is declared authentic if: Logical output S has remained low Logical output H1 has remained low, and Output PD has remained above an acceptable threshold

10 Part II: Proposed GPS Cryptographic Signal Authentication Strategy

11 What qualities should cryptographic civil GPS signal authentication have?
Effective: they make it difficult for a spoofer to carry off a successful spoofing attack Practical: they are likely to be implemented and adopted by the GPS community

12 A strategy that meets these requirements:
Navigation Message Authentication (NMA): Forms by making the navigation message periodically unpredictable Applies public-key cryptographic digital signature and verification techniques

13 Public-Key Digital Signatures for GPS
Digital signatures allow messages to be signed and then verified: Elliptic Curve Digital Signature Algorithm (ECDSA) is most appropriate for GPS: It’s standardized It’s efficient to verify signatures It has a short signature length (but not too short!)

14 Where do we put the digital signature?
Civil Navigation (CNAV) Message: Flexible and extensible message format Packet-like structure: Every 12 seconds, broadcast 300-bit packet Message type identification field can identify up to 64 messages of which only 15 are defined

15 CNAV Message

16 CNAV ECDSA Message

17 Signing the CNAV Message
Delivers ECDSA signature every five minutes per channel Delivers 476 unpredictable navigation message bits Offset scheme could lower time-between-authentications

18 Part III: Authentication Performance and Experimental Results

19 Hypothesis Testing on Security Code

20 Challenging Spoofing Attack Scenario
Challenging attack scenario from receiver’s perspective: Spoofer has 3 dB carrier-to-noise ratio advantage over the receiver Received spoofed signals are 1.1 times stronger than the received authentic signals Spoofer has introduce a timing error of 1 microsecond in the receiver False alarm probability for SCER detector is

21 Probability of Detection under Scenario

22 Conclusions GNSS signal authentication is probabilistic
Navigation message authentication is practical and surprisingly effective for civil GPS anti-spoofing CNAV message can be extended to broadcast digital signatures Visit us on the web:

Download ppt "Kyle Wesson, Mark Rothlisberger, and Todd Humphreys"

Similar presentations

Chapter 3 Public Key Cryptography and Message authentication.

Chapter 3 Public Key Cryptography and Message authentication.
A Fast Data Protection Technique for Mobile Agents to Avoid Attacks in Malicious Hosts Jesús Arturo Pérez Díaz Darío Álvarez Gutiérrez Department of Informatics.

A Fast Data Protection Technique for Mobile Agents to Avoid Attacks in Malicious Hosts Jesús Arturo Pérez Díaz Darío Álvarez Gutiérrez Department of Informatics.
Probabilistic Secure Time Transfer: Challenges and Opportunities for a Sub-Millisecond World Kyle D. Wesson, Prof. Todd E. Humphreys, Prof. Brian L. Evans.

Probabilistic Secure Time Transfer: Challenges and Opportunities for a Sub-Millisecond World Kyle D. Wesson, Prof. Todd E. Humphreys, Prof. Brian L. Evans.
Challenges of Practical Civil GNSS Security Todd Humphreys, UT Austin Civil Navigation and Timing Security Splinter Meeting |Portland, Oregon | September.

Challenges of Practical Civil GNSS Security Todd Humphreys, UT Austin Civil Navigation and Timing Security Splinter Meeting |Portland, Oregon | September.
Protecting Civil GPS Receivers

Protecting Civil GPS Receivers
GPS Spoofing & Implications for Telecom Kyle Wesson The University of Texas at Austin Sprint Synchronization Conference | September 18, 2013.

GPS Spoofing & Implications for Telecom Kyle Wesson The University of Texas at Austin Sprint Synchronization Conference | September 18, 2013.
ION GNSS 2011, September 23 rd, Portland, Oregon Improving Security of GNSS Receivers Felix Kneissl University FAF Munich.

ION GNSS 2011, September 23 rd, Portland, Oregon Improving Security of GNSS Receivers Felix Kneissl University FAF Munich.
GNSS Security Todd Humphreys | Aerospace Engineering The University of Texas at Austin GPS World Webinar | September 18, 2014.

GNSS Security Todd Humphreys | Aerospace Engineering The University of Texas at Austin GPS World Webinar | September 18, 2014.
Secure Navigation and Timing Todd Humphreys | Aerospace Engineering The University of Texas at Austin LAAFB GPS Directorate | December 5, 2012.

Secure Navigation and Timing Todd Humphreys | Aerospace Engineering The University of Texas at Austin LAAFB GPS Directorate | December 5, 2012.
Sri Lanka Institute of Information Technology

Sri Lanka Institute of Information Technology
Digital Signatures and Hash Functions. Digital Signatures.

Digital Signatures and Hash Functions. Digital Signatures.
A Novel Finger Assignment Algorithm for RAKE Receivers in CDMA Systems Mohamed Abou-Khousa Department of Electrical and Computer Engineering, Concordia.

A Novel Finger Assignment Algorithm for RAKE Receivers in CDMA Systems Mohamed Abou-Khousa Department of Electrical and Computer Engineering, Concordia.
Packet Leashes: Defense Against Wormhole Attacks Authors: Yih-Chun Hu (CMU), Adrian Perrig (CMU), David Johnson (Rice)

Packet Leashes: Defense Against Wormhole Attacks Authors: Yih-Chun Hu (CMU), Adrian Perrig (CMU), David Johnson (Rice)
Thursday, 3:55pm, room 24 This session will discuss techniques for enhancing the ability of receivers to detect, disregard, and operate through intentional.

Thursday, 3:55pm, room 24 This session will discuss techniques for enhancing the ability of receivers to detect, disregard, and operate through intentional.
Crypto – chapter 16 - noack Introduction to network stcurity Chapter 16 - Stallings.

Crypto – chapter 16 - noack Introduction to network stcurity Chapter 16 - Stallings.
Fifth International Conference on Information

Fifth International Conference on Information
Sec final project A Preposition Secret Sharing Scheme for Message Authentication in Broadcast Networks 90321019 王怡君.

Sec final project A Preposition Secret Sharing Scheme for Message Authentication in Broadcast Networks 王怡君.
14/03/2005 CGSIC Meeting, Prague, Czech Republic Oscar Pozzobon Chris Wullems Prof. Kurt Kubik Security issues in next generation satellite systems.

14/03/2005 CGSIC Meeting, Prague, Czech Republic Oscar Pozzobon Chris Wullems Prof. Kurt Kubik Security issues in next generation satellite systems.
Secure Hashing and DSS Sultan Almuhammadi ICS 454 Principles of Cryptography.

Secure Hashing and DSS Sultan Almuhammadi ICS 454 Principles of Cryptography.
Introduction to Signcryption November 22, 2004. 22/11/2004 Signcryption Public Key (PK) Cryptography Discovering Public Key (PK) cryptography has made.

Introduction to Signcryption November 22, /11/2004 Signcryption Public Key (PK) Cryptography Discovering Public Key (PK) cryptography has made.

Similar presentations

Ads by Google