Slashdot Mirror
GPS Spoofing With $3000 Worth of Equipment and a Laptop
First time accepted submitter svartbjorn writes "Todd Humphreys and a team from the University of Texas proved the concept that a terrorist could take over the navigation of a ship or even a plane, making it appear to the crew that the ship was moving along a straight line course when in fact it was changing course under the control of the device. This raises some serious issues for this being used for terrorist purposes."
the feds will require all laptops to be registered and have a remote kill switch installed. Can't let the terrorists win!!
"To stop the terrorists."
terrorists could do this, terrorists could do that, they can KILL YOU in so many ways! Run for your lives! Or better yet, submit to your federal overlords via TSA DHS who will keep you safe!
Actually no, fuck the terrorists, they're third world noobs living in mud huts and the best they could do in 12 years of trying realyl hard is to hijack a few planes with knives. You have more to fear from your own government than any terrorist.
Over and out
This is why ships still have gyros. GPS is too handy not to use, but I'm pretty sure most large oceangoing vessels also have navigation gyros. The question then is, what happens when GPS gets spoofed...does the system/crew assume the GPS is broken or the gyro broken?
They already did this trick to snag an american drone. Old news.
Imagine what terrorists could do with a knife!
Hint - 9/11
Meanwhile, the government IS, admittedly, tracking of your phone calls and emails. Have you called your Congressman yet? Posted on their Facebook page?
If Iran's claim is true they took control and captured a US drone by spoofing GPS signals: https://en.wikipedia.org/wiki/Iran%E2%80%93U.S._RQ-170_incident
What they don't say is whether he is spoofing the CA signal, which is publically known and documented, the P signal, which is encrypted, and best I can recall, is not publically known, or the WAIS signal, which I have no bleeping idea.
Old news. If you want a less sensationalistic, more technical discussion of how this is done, see this article http://www.gpsworld.com/drone-hack/.
In brief:
1) Yes, it's possible but there are a lot of issues that make it less than practical
2) It's a non-issue for military positioning systems, which use encrypted, time-stamped signals.
3) Experts are already aware of the problem and are working on solutions.
I'm so sick about the high-tech terrorist straw man. Let's be honest, the first to use technology like that, probably against their own population, are our governments.
Terrorist don't use cyberweapons of mass destruction, three letter agencies do.
Say goodbye to your laptop onboard :)
problem fixed \o/
There's a reason the encryption on the P(Y) signal is part of a system called "anti-spoofing". The potential to spoof the C/A code was understood from the beginning, and it getting cheaper is expected as well.
How close were they? Sounds like they were on the ship. Can this attack be performed by technologically unskilled "terrorists" from a distance or might the captain get suspicious of the small ship following at less than 100 meters. Or will the pirates have to board the ship to do this. Just because it can be done by highly educated professional researchers who do nothing but try to find ways to do this does not mean terrorists can do it. Yes the Iranians did it with a drone but do we know exactly how they did it, did they have to fly in close proximity to it? Or build a network of vastly overpowered GPS ground stations to overpower the satellite signals?
I'm too lazy to compose a creative sig.
This sounds like the plot from https://en.wikipedia.org/wiki/Tomorrow_Never_Dies, but with less sexy spies and less stealth ships.
a terrorist could take over the navigation of a ship or even a plane,
Put a few dozen of these between LA and Long Beach and you can create traffic jams that will cripple a fundamental portion of the manufacturing supply chain to the US by sending tourists and GPS addicted drivers to the wrong off ramps, causing them to get back on, thereby blocking access to the main arterials and causing miles of gridlock and congestion preventing vital shipment from getting to and from the Ports in a timely manner. And just how long would it take for the DoT or local authorities to realize that a week long Carmageddon was maliciously manufactured?
Awesome, we can make James Bond movies happen!
They can spoof the GPS position which plots on a navigational map, but if the ship is not moving in a straight line that means the rudder (or steerable propulsion pods) need to move, which have their own indicators. If the steering is locked to a wheel, the ship will not turn unless that wheel turns.
These clowns have no clue about how real navigation SYSTEMS, like the ones I work on, work.
We are so impressed. You've heard of redundancy and sanity checking. Ooh-ahh.
I'm not going to give these idiots what they need ...
Don't worry, they can figure it out just fine without your vast and impressive knowledge.
There is this strange device called a...what was it a gain...oh a compass. The cool device that relies on something pretty hard to spoof, Earth's magnetic field as I remember. Ships and airplanes still carry a compass on board (well I know airplanes do) as backup to all that electronic stuff, because every now and then the power goes out and pilots are trained to fly and navigate by compass. They also cross check (or they should) the modern equipment with the analog to validate the primary instruments.
Just because someone says they can do something does not mean its really viable or will work well. Still waiting on flying cars, long lasting batteries, and fusion power plants so this type of drama news is not even close to registering on the danger meter.
Life is a great ride, the vehicle doesn't matter
and Obama and the DoD didn't do a damn thing about it.
I wonder who j hazelwood was
Apparently nobody with mod points looked this up. Although I guess if you have to look something up to get the punch line of a joke, maybe it isn't very funny.
(T>t && O(n)--) == sqrt(666)
We have gps, gyro's , accelerometers, magnetometers in our Cell phones.
It would seem anyone serious would use GPU in conjuction with Inertial sensors and also include maybe a 180 Sky view to check the sun or stars positions and LORAN, VAR and VOR as well as shortwave, commercial terrestrial TV and Radio broadcast strength, phase, call signs which could also provide decent navigation information.
In addition there are navigation units that combine GPS and GLONASS the Russian version to gain better accuracy and reliability.
http://www.qualcomm.com/media/blog/2011/12/15/gps-and-glonass-dual-core-location-your-phone
There is also IRNSS: India, Galileo: EU and Compass: China.
Lastly if on land, I think Google is also using Wifi MAC addresses which should in theory be unique although some low end vendors reuse them or just make them up.
I am always doing that which I can not do, in order that I may learn how to do it. - Pablo Picasso
To say that I didn't know this was possible until now would be far from the truth.
As an avid Air Crash Investigation fan, both my wife and myself watch this show on a regular basis. I surmised this was possible a number of years ago. I also thought the concept of spoofing transponders on Cars when we eventually started adapting this technology to Cars was also going to pose similar issues as well and funnily enough it was something that did make the news (don't remember the article now but it did make Slashdot) but was done so to trump autonomous driving, for whatever political agenda.
In all honesty, there is NO WAY to step around this problem unless you get rid of autonomous driving/piloting all together. Because of some simple facts
a) You can't tokenise any form of communication because it then deems the process unreliable
b) You can't encrypt it for the same reason
c) You can't in anyway make it COMPLICATED again for the same reason
d) You can't get rid of it because it makes flying unsafe.
e) It's a security hole that cannot be patched, fixed or resolved. Period.
Also the fact that this is a pretty common and is a widespread issue, which only really just made POC now is an absolute joke.
Don't know about ships or drones, but in airplanes the GPS only provide part of the picture. Navigation in airplanes require at least 2 (different) means of assessing position (radio beacon (NDB), GPS/VOR/Tacan/MLS/ILS/Radar/Compass/map/Etc). As those means are always cross checked against each others, a malfunctioning/corrupted GPS would be found relatively quickly.
Now, he's your boss. For teh win!
What about the children?
"I believe in Karma. That means I can do bad things to people all day long and I assume they deserve it." : Dogbert
And he has the right to give on the spot death sentences
You're unclear about whether talking about the 9/11 hijackers or the GPS spoofers. I first thought that you were talking about 9/11 where the evidence is pretty clear that someone flew some planes into some buildings. I'm not knowledgeable enough to comment on the GPS spoofing though it seems possible.
https://en.wikipedia.org/wiki/Inverted_totalitarianism
"You're unclear about whether talking about the 9/11 hijackers or the GPS spoofers. I first thought that you were talking about 9/11 where the evidence is pretty clear that someone flew some planes into some buildings."
Considering that I quoted the part I was replying to, it hardly seems unclear to me.
But the second thing is: yes, definitely, somebody flew some airplanes into some buildings. Just about anybody would have to be a fool to claim otherwise. But what does that have to do with my comment?
Perhaps I should have replied to your first post which had this,
"Actually no, fuck the terrorists, they're third world noobs living in mud huts and the best they could do in 12 years of trying realyl hard is to hijack a few planes with knives. You have more to fear from your own government than any terrorist."
And that's assuming, of course, that they really did it to begin with. I'm not about to claim otherwise, but the evidence is actually pretty thin and there is a lot of counter-evidence. That's just the truth.
It was unclear what you were talking about. Not deserving "flamebait" but deserving being ignored. Context was really not clear.
https://en.wikipedia.org/wiki/Inverted_totalitarianism
"something pretty hard to spoof, Earth's magnetic field" - Obviously you have never been near a compass with an ordinary screwdriver...
Our navy still uses the stars and physical maps to triple check navigation.
"Perhaps I should have replied to your first post which had this,"
WHOOSH...
It's only unclear because you did not take into account the context in which my comment actually appeared, and then assumed I meant something I did not.
I can't help you with this; it's your problem.
This possibility has been known since a long time.
However the scope is limited by the fact that GPS signals are wea and have a similar power everywhere, which implies that you (sitting on the gorund and beign subject to a 1/r^2 law in the power somebody reseives from you have to be close to the attack target (unless you want to set of everything, including the differential GPS stations) or use a very directed beam (difficult in real life).
It also meant that the vessel you want to control has no other means of navigation (not true for planes).
So, yes, it is a possibility to attack a ship/plane, but not an easy one.
Our company is developing and producing some GPS based hardware (GPS GNSS OBUs). Even so I'm working in a different group, not involved in design/support of these, back in 2007 we had internal courses for R&D employes that was presented by a professor who is considered to be one of the leading authorities in design of GPS (unfortunately I don't remember his name right now). One of the thing that was said on these courses was that GPS spoofing is a problem that isn't possible to prevent by means of cryptography. Here is explanation why: Let say you have two directional antennas:
- the first antenna receives GPS satellite signal
- and second is retransmitting the same signal with higher effect in the direction of GPS receiver you want to spoof.
The only thing is required to spoof positioning of GPS receiver is to put a few microseconds delay in retransmitted signal. Having higher output effect from spoofing antenna can make original satellite signal to be completely invisible for spoofed GPS receiver (satellite signal is rather weak, so it would not be any problem in achieving this). The position is calculated by time difference between timestamped signals received from different satellites visible to GPS receiver. So, the satellite and receiver can encrypt and sign the signal whatever they want. But for as long as adversary is able to receive satellite signal and retransmit exact same signal with few microseconds delay, with higher effect - spoofing of GPS receiver is a done deal.
I looked into this a couple years back. He is correct.
If you like speeding tickets, click here"
Although I guess you could teleport a whole army of spoofers around with this.
My rights don't need management.
I think it raises some serious issues for being used at all by anyone. Not just terrorists.
The eternal struggle of good vs. evil begins within one's self.
So why did they have it posted online, when it could be used for terrorist purposes. Didn't Osama Bin Laden have a valid internet connection? well so do most others so they have probably look up spoofing now and are learning how to do this. Thank you the IDIOT who posted this.
"This raises some serious issues for this being used for terrorist purposes."
Also, much more importantly, I can see the lightbulbs going off in the scriptwriting room for the Die Hard series from here.