Cracking the GPS Galileo Satellite 364
Glyn writes "Newswise is reporting the the encryption in the Galileo GPS signal has been broken. The pseudo random number generator used to obscure the information stored in the Galileo GPS signal has been broken. From the article: 'Members of Cornell's Global Positioning System (GPS) Laboratory have cracked the so-called pseudo random number (PRN) codes of Europe's first global navigation satellite, despite efforts to keep the codes secret. That means free access for consumers who use navigation devices -- including handheld receivers and systems installed in vehicles -- that need PRNs to listen to satellites.'"
Galileo != GPS (Score:4, Informative)
Encryption (Score:4, Informative)
Re:Galileo != GPS (Score:5, Informative)
There is: the "American GPS" is named NAVSTAR according to this site [kowoma.de]
much ado about nothing (Score:5, Informative)
Two Interesting Points (Score:5, Informative)
Re:Galileo != GPS (Score:4, Informative)
What about firmware upgrade ? (Score:5, Informative)
First Galileo is only in testing phase, therefore nothing tells you the signal encryption they are using is the definitive one. I would rather think they are testing and they don't care if someone is getting it.
Second have you ever heard of firmware upgrade ? I guess encryption will be updated when the satelites will be in production, and there will not be any problem since it is not being used in any device yet.
Thank you Cornell people for this useless article. Another Cornell box ?
Re:Galileo != GPS (Score:3, Informative)
Re:Amateur Galileo receiver? (Score:5, Informative)
The current sole Galileo system in orbit is a test system. The final systems will be significantly different.
Well, don't forget the third "GPS" (Score:5, Informative)
GLObal NAvigation Satellite System [wikipedia.org]
Started by the Soviets, cont. by the Russian Federation, and now with India on board,it is expected to be fully operational again in 2008. (Like all things expected to be complete in 1991, the money situation made them push it back further than Vista.)
Re:uncrackable encryption (Score:1, Informative)
Imagine... (Score:1, Informative)
So much about the lighthouse bullshit.
Suckers.
Re:uncrackable encryption (Score:3, Informative)
Are you really that clueless? I would not take 512 years to bruteforce a 320 bit key, it would take simply longer than the current age of the universe. Assuming of course that you are required to put a single computer per square centimeter of our planet surface (including oceans) and that you can't use more than one planet. The math is simple: the surface [wikipedia.org] is about 5.1e18 cm^3 and there is about 4.0065e38 keys to try [wikipedia.org] before you get your answer.
With limits on the speed of light you can only do so many operations per second but lets assume all your boxen are 100GHz custom built and that they can try a key per cycle. You'd need about 1.069d11 years to crack the key. Now do your homework and check how old the universe is.
Here is how I computed it:
(let ((keys (* 1.1774 (sqrt (expt 2d0 320))))
(boxen (* 510065600.0 (expt 1000 2) (expt 100 2)))
(cycles (* 100 1d9)))
(/ keys boxen cycles 3600 24 365))
Play with the params and see how excesivly secure a 512 bit key would be.
Re:uncrackable encryption (Score:5, Informative)
There isn't? Proof it!
Seriously, there are ways. The reason most encryption schemes can at least be brute forced is that for any given ciphertext, there are very few possble sensible (non-garbage) plaintexts. So, if you try all possible keys and look at all the resulting plaintexts, the one that is sensible will almost certainly be the original plaintext.
With OTP this won't work as there is a simple proof that for any given ciphertext, every single message of the same lenght is a possible plaintext. So if you have a ciphertext of 1k characters and you try every possible key, you'll end up with every possible text of 1k characters. This includes bits of Shakespeare, Britney Spears porn, texts describing who killed JFK (at least one of which will be amazingly be true
Oh, and since you'll end up with 256^1000 messages of 1k length, you'll need a bigger harddisk
Re:Encryption (Score:5, Informative)
It's not really intended to be security anyway - everyone knows the normal NAVSTAR, WAAS and EGNOS PRNs (you have to in order to use the services) - the PRNs are used to differentiate between individual satellites, which all transmit on the same frequencies. I guess they just decided not to publish the Galileo PRNs until they'd got further into the project.
Re:Never Understood the Logic of Galileo (Score:5, Informative)
You need to check your assumptions.
The EU doesn't mandate GPS/Galileo in anything. The US does.
Galileo is functionally superior. The free precision will be better than with just GPS.
There is no installed base in high precision applications because there is no product on the market. Only the US military has global high precision positioning.
Galileo's normal precision code will be free, just as the base level precision of GPS is free.
Galileo's high precision code will be available commercially, whereas the GPS high precision codes are not available to non-military users.
me-too project [...] A380
The A380 is not a me-too project. Americans only even know that name because it is a real threat to Boeing, who chose not to build a plane of that capacity. It's not someone else's plane, only slightly bigger, either. It's the continuation of Airbus engineering, which is very different from Boeing's.
In other words, we just added an entire China
Unfortunately for you, that "China" you added belongs to foreign investors.
Re:uncrackable encryption (Score:3, Informative)