Presentation is loading. Please wait.

Presentation is loading. Please wait.

14/03/2005 CGSIC Meeting, Prague, Czech Republic Oscar Pozzobon Chris Wullems Prof. Kurt Kubik Security issues in next generation satellite systems.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "14/03/2005 CGSIC Meeting, Prague, Czech Republic Oscar Pozzobon Chris Wullems Prof. Kurt Kubik Security issues in next generation satellite systems."— Presentation transcript:

1 14/03/2005 CGSIC Meeting, Prague, Czech Republic Oscar Pozzobon Chris Wullems Prof. Kurt Kubik Security issues in next generation satellite systems

2 CGSIC Meeting, Prague, Czech Republic Introduction GPS security issues today GNSS security issues in integration scenarios Need for trust quantification methods for civil uses Levels of security obtainable using proposed signal authentication methods  Level of protection  Performance

3 CGSIC Meeting, Prague, Czech Republic Qascom Background R&D on trusted locations systems R&D on trusted GNSS receivers  NavSec Consortium Vulnerability assessment of critical infrastructures that rely on GNSS

4 CGSIC Meeting, Prague, Czech Republic GNSS Security Policy June 2004, US-Europe Agreement on GNSS Cooperation and Security December 8, presidential policy on Space- Based Positioning, Navigation, and Time (PNT) December 10, GPS and GLONASS cooperation GLONASS-M : Russia and India launching and modernizing GLONASS.

5 CGSIC Meeting, Prague, Czech Republic Civil GNSS Security Today Non Intentional Integrity monitoring systems Intentional Jamming Spoofing Jamming detection / mitigation / localization techniques Signal authentication techniques

6 CGSIC Meeting, Prague, Czech Republic Future Civil GNSS Security Issues Complexity of Integration with different signals and different security mechanisms (e.g. GPS + Galileo SoL) Difficult for GPS user to quantify the total trust Need for security metrics

7 CGSIC Meeting, Prague, Czech Republic Security Metrics What security level is needed? what security level can be achieved? Non intentional Integrity monitoring systems Intentional Jamming Spoofing Jamming detection / Mitigation / localization techniques Signal Authentication Techniques

8 CGSIC Meeting, Prague, Czech Republic Integrity / Authenticity Performance Requirements for Critical Application Time-to-alarm for SoL Integrity (non-intentional effects) Time-to-alarm for malicious attacks? (Spoofing) 3 levels of security for GNSS: No Security Level 1: NMA (Navigation Message Authentication) Level 2: SCE (Spreading Code Encryption)

9 CGSIC Meeting, Prague, Czech Republic Level 1: NMA (Navigation Message Authentication)  Certified receiver is able to authenticate verify integrity of NAV messages using signature.  Authentication NAV messages are created on the ground and transmitted to the satellites for broadcast. What is NMA?  A Navigation Authentication Message include a digital signature authenticating the other navigation messages (ephemeris, almanac data, etc) Source: The Galilei Project: GALILEO Design Consolidation, 2003

10 CGSIC Meeting, Prague, Czech Republic Level 1: NMA (Navigation Message Authentication) What does NMA protect against?  Protects against navigation message spoofing Authenticates navigation messages (ephemeris, almanac data, etc) from satellites preventing a spoofer from generating navigation messages  Significantly increases complexity of spoofing Messages could be theoretically acquired by a receiver and replayed over a simulated signal in order to spoof the Galileo signal - would require functionality not commonly found in commercial signal simulators, and would require operation to be performed within very small time window Attack cost vs Attack outcome

11 CGSIC Meeting, Prague, Czech Republic Level 1: NMA (Navigation Message Authentication) Performance of NMA  Time-to-alarm of authentication/integrity failure? Depending on signal data rates and ANM repetition rate GPS L2C – 25bps  Minimum Authentication time = 1,6 minutes with cert obtained in 5,6 minutes*  More realistic scenario = approx 5 minutes, longer cert collection time Galileo E1-L1-E2 – 125bps / E5a – 25bps / E5b – 125bps  Potentially better performance (unknown NAV message structure / only projected data rates) NMA performance characteristics may be outside time-to- alarm requirements Suitable for dangerous goods tracking, but not for time- critical applications * Based on ECCDSA 160bit / CNAV message structure (ICD-GPS-200C) with 48 second frame message sequencing

12 CGSIC Meeting, Prague, Czech Republic Level 2: SCE (Spreading Code Encryption) What is SCE?  CDMA code is kept secret and can only be derived using a symmetric key  Symmetric keys can be distributed using PKI and asymmetric encryption techniques  GPS P(Y) code uses declassified black keying infrastructure for key distribution

13 CGSIC Meeting, Prague, Czech Republic Level 2: SCE (Spreading Code Encryption) What does it protect against?  Protects against signal spoofing and navigation data spoofing  Users without key are denied access; Spoofed signal acquisition is virtually impossible as CDMA code is unknown to an attacker  Time-to-alarm requirements of are easily met for both intentional and non-intentional integrity failures

14 CGSIC Meeting, Prague, Czech Republic Level 2: SCE (Spreading Code Encryption) Proposed usage in Galileo  Commercial Service (CS)  Public Regulated Service (PRS)  Implementation is unknown – expected to be similar to US black-key infrastructure

15 CGSIC Meeting, Prague, Czech Republic Conclusions Current civil GNSS security do not prevent spoofing There is a need for signal authentication to prevent malicious attacks such as spoofing  It appears as though L2C will not provide NMA or SCE  Galileo proposals for SoL indicate NMA may be included  NMA alone may not provide the required performance for SoL time-to-alarm  CS and SoL provide different quality of service guarantees Civil signal authentication is a challenge for next generation satellite systems Need for metrics to quantify security of complex integrated systems

16 Oscar Pozzobon o.pozzobon@qascom.com Chris Wullems c.wullems@qascom.com Questions?

Download ppt "14/03/2005 CGSIC Meeting, Prague, Czech Republic Oscar Pozzobon Chris Wullems Prof. Kurt Kubik Security issues in next generation satellite systems."

Similar presentations

GPS Security in the Military Past, Present, and Future.

GPS Security in the Military Past, Present, and Future.
FAA’s Plan for the Future Use of GPS Briefed By: Kanwaljit S. Sandhoo (MITRE/CAASD) 8th European CGSIC/IISC Meeting, Prague December 2-3, 1999.

FAA’s Plan for the Future Use of GPS Briefed By: Kanwaljit S. Sandhoo (MITRE/CAASD) 8th European CGSIC/IISC Meeting, Prague December 2-3, 1999.
Challenges of Practical Civil GNSS Security Todd Humphreys, UT Austin Civil Navigation and Timing Security Splinter Meeting |Portland, Oregon | September.

Challenges of Practical Civil GNSS Security Todd Humphreys, UT Austin Civil Navigation and Timing Security Splinter Meeting |Portland, Oregon | September.
Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Europe’s Quest for Satellite Navigation: The Structure of EGNOS and Galileo Dominic De Mello April 24, 2006.

Europe’s Quest for Satellite Navigation: The Structure of EGNOS and Galileo Dominic De Mello April 24, 2006.
ION GNSS 2011, September 23 rd, Portland, Oregon Improving Security of GNSS Receivers Felix Kneissl University FAF Munich.

ION GNSS 2011, September 23 rd, Portland, Oregon Improving Security of GNSS Receivers Felix Kneissl University FAF Munich.
Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, 2010. ICWCSC 2010. International.

Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, ICWCSC International.
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.

Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.

6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.
Certificateless encryption and its infrastructures Dr. Alexander W. Dent Information Security Group Royal Holloway, University of London.

Certificateless encryption and its infrastructures Dr. Alexander W. Dent Information Security Group Royal Holloway, University of London.
Spring 2002CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2002CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
GPS - Global Positioning System Presented By Brindha Narayanan.

GPS - Global Positioning System Presented By Brindha Narayanan.
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
GPS and other GNSS signals GPS signals and receiver technology MM10 Darius Plausinaitis

GPS and other GNSS signals GPS signals and receiver technology MM10 Darius Plausinaitis
Information Security of Embedded Systems 3.2.2010: Algorithms and Measures Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer FIRST.

Information Security of Embedded Systems : Algorithms and Measures Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer FIRST.
Absolute Receiver Autonomous Integrity Monitoring (ARAIM)

Absolute Receiver Autonomous Integrity Monitoring (ARAIM)
Distance-decreasing attack in GPS Final Presentation Horacio Arze Prof. Jean-Pierre Hubaux Assistant: Marcin Poturalski January 2009 Security and Cooperation.

Distance-decreasing attack in GPS Final Presentation Horacio Arze Prof. Jean-Pierre Hubaux Assistant: Marcin Poturalski January 2009 Security and Cooperation.
Stephen S. Yau CSE465 & CSE591, Fall 2006 1 Information Assurance (IA) & Security Overview Concepts Security principles & strategies Techniques Guidelines,

Stephen S. Yau CSE465 & CSE591, Fall Information Assurance (IA) & Security Overview Concepts Security principles & strategies Techniques Guidelines,
Applied Cryptography for Network Security

Applied Cryptography for Network Security
Dr Alejandra Flores-Mosri Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the.

Dr Alejandra Flores-Mosri Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the.

Similar presentations

Ads by Google