Slashdot is powered by your submissions, so send in your scoop

 


Forgot your password?
Close
typodupeerror
×
Security

Work Proceeds on Mitigation Strategies for Global Navigation Satellite System Jamming/Spoofing (eetimes.com) 29

Posted by EditorDavid from the kick-out-the-jammers dept.
Long-time Slashdot reader DesertNomad summarizes a report from EE Times: It's been known for a long time that the various Global Navigation Satellite System (GNSS) systems are easily jammed; the more "interesting" problem is the potential to spoof a GNSS signal and by spoofing use that to cause GNSS receivers to determine incorrect positions. The challenge lies in the observation that the navigation messages can be constructed by bad actors on the ground. Work going on for several years now has been to provide crypto signatures that have the potential to authenticate valid transmissions. Current commercial receivers can't take advantage of that, so there may be industry-wide needs to update the receiver devices.
"The vulnerability of the global positioning system, or GPS, is widely acknowledged..." reports EE Times: Spoofing creates all kinds of havoc. For example, it can be used to hijack autonomous vehicles and send them on alternate routes. Spoofing can alter the routes recorded by vehicle monitors, or break geofences used to guard operational areas. It also poses a risk to critical infrastructure, including power, telecommunication and transportation systems. Jan van Hees, business development and marketing director for GNSS receiver maker Septentrio, provided these analogies: "Jamming involves making so much noise that the [satellite signal] disappears. Spoofing is like a phishing attack on the signal."

The U.S. Coast Guard has recently tracked a growing number of high-profile incidents involving GPS interference. For example, the loss of GPS reception in Israeli ports in 2019 left GPS-guided autonomous cranes inoperable, collateral damage from the Syrian civil war. In 2016, more than 20 ships off the Crimean peninsula were thought to be the victim of a GPS spoofing attack which shifted the ships' positions on electronic chart displays to land.
The article recommends real-world auditing, testing, and risk assessment, adding that one pending fix is signal encryption "including a framework called open service navigation message authentication (OSNMA)." The OSNMA anti-spoofing service developed for the European GNSS system, enables secure transmissions from Galileo satellites to encryption-enabled GNSS receivers. In the midst of final testing, OSNMA will soon be available free to users... A secret key on the satellite is used to generate a digital signature. Both the signature and key are appended to navigation data and transmitted to the receiver. OSNMA is designed to be backward-compatible, so that positioning without OSNMA still works.

Comment Re:Targeting a very specific customer? (Score 1) 163

by Myself (#61106568) Attached to: Aptera Promises The World's First Mass-Produced Solar Car This Year

Single guy in Detroit here, this would be ideal as my second vehicle. Possibly my only vehicle.

Given my fairly short commute and less-than-weekly longer drives, I'd likely never have to plug it in. There's not a ton of sun here, but the significant battery means I can make this month's commute on last month's sunshine, and it's entirely possible that it could average out on the positive side.

I do have to figure out how many groceries it can hold. There's no good picture of the trunk space. And in the event that I have cargo to haul around, I'd still be using the Prius for that, or the old van I keep around for truly silly stuff like minicomputers.

Comment Re:DSRC (Score 1) 49

by Myself (#60743000) Attached to: FCC Takes Spectrum From Auto Industry In Plan To 'Supersize' Wi-Fi

DSRC and C-V2X are both in their infancy. Allocations were made in the 90s when ITS infrastructure was just taking off, but autonomous vehicles took longer than expected. Note that Pai parrots the talking point about DSRC's low deployment, but never cites numbers about how C-V2X is even less deployed. It's bald-faced, but journalists don't seem to be calling it out.

To put it very simply: DSRC is a peer-to-peer technology, and inherently allows more individual privacy, since you're only communicating with vehicles around you. It's using the same silicon as wifi, meaning there are lots of potential vendors for it.

C-V2X is being pushed by a certain large company that makes a lot of cellular silicon, because it uses their cellular silicon. They've been throwing large, large sums of money at trial projects and lobbying to kill DSRC. It appears they've now succeeded in that.

Enjoy your single-vendor panopticon future, everyone.

Comment Re:Who gives a shit who gives a fuck (Score 1) 111

Exactly, if you dont want to be in the yellow pages thats everyone uses, you can easily make an index card and pin it on notice board somewhere. Its totally the same exposure. /s

Facebook is basically the yellow pages of the Internet, most government services, police, fire departments, health departments, doctors offices, plumbers, repair, etc have a facebook page. They even accepted money from the government to grow. Advertisers might not want to be on edgy political pages, but theres tons of advertisers who do want to be on those pages. So no advertising argument is just a lie companies who censor use. Youtube didnt want gun videos, and those video producers are the demographic for hunting, camping and firearms advertising.

When the yellow pages say what legal services they dont want to list, or phone companies say what people they dont want to serve, we have an issue with these monopolistic social media platforms. Its no different than Yelp letting people target companies for politics and not removing the comments and banning the users from commenting.

Comment I would like to apologize to Microsoft for my lies (Score 1) 292

Everything I have ever posted here, especially about Microsoft, is completely untrue and I would like to retract it most sincerely. I said those things with malice in my heart, and with no regard for the truth. Nothing bad ever happened, no harm came to the PC industry, and certainly no competitors were ever harmed, by Microsoft's well-deserved market dominance. Microsoft's business practices in the late 90s were a shining example of pure capitalism in action, and it is only by honoring and respecting their brilliance that I can be at peace with my actions.

Thank you for hearing me out, Slashdot. Just in case.

Comment Why would you make a language a moving target? (Score 4, Interesting) 74

by Myself (#60592572) Attached to: New Python 3.9 'Brings Significant Changes' To Language Features

I can't be the only one who's tried to use Python code I found on the internet and had no end of trouble because there are so many mutually incompatible versions of the language, versions of libraries, etc.

IMHO, "significant changes" should be absolutely the last thing a language ever tries to do. When you reach the point of "significant changes", it's time to call it something different and stop pretending it's the same language, because it isn't.

Comment Re:That's right... fuck those liberties... (Score 1) 226

But But, this is for your safety. You should always give up your liberty to be safe! If everyone around you agrees to monitor everything you do for the best of society, you should submit and do what the elected officials tell you to! Its all for the common good.

Good intentions and all.

Slashdot Top Deals

The Tao is like a glob pattern: used but never used up. It is like the extern void: filled with infinite possibilities.

Close