College Students Hijack $80 Million Yacht With GPS Signal Spoofing

colinneagle writes "A team of students at the University of Texas at Austin built and successfully tested a custom GPS spoofing device to remotely redirect an $80 million yacht onto a different route. The project was completed with the permission of the yacht's owners in the Mediterranean Sea this past June. Because the yacht's crew relies entirely on GPS signal for direction, the students were able to lead the yacht onto a different course without the knowledge of anyone on-board. The GPS spoofing device essentially over-powered all other GPS signals using until the spoofed signal was the only one that the yacht followed. The team then used the GPS spoofing device to convince the ship's crew to redirect onto a different route voluntarily. By changing the signal on the spoofing device, the students led the crew to believe that the ship was drifting off-course to the left. In response, the crew steered the ship to the right, thinking that it would get the ship back on course, when it actually brought the ship off the course entirely."

No...

[Flozzin]

Can't really say you directed it on a different route when the owner agrees to let you.

Re:No...

[maliqua]

sure you can they clearly state the crew was unaware that its course was being altered by them, by that logic no controlled experiment can ever be considered a success

also this is a re-post from last week c'mon /. pay attention

Re:No...

I'd imagine there's a difference between the owner and the crew when it's an 80 million dollar yacht...

Re:No...

[TheCarp]

Why is that? If the crew were under orders to stay on a course, and this test was able to cause the crew to change course while attempting to stay on their intended course, and even to believe they were following that course.... then I would say they were redirected. Consensually redirected but, its clear, they were not in control.

Re:No...

[Flozzin]

Nor were they intended to be in control. If I'm driving a car and no one told you, and let you believe you were driving the car, that isn't me misdirecting the vehicle, It's you being ignorant of who is in control. The yacht was going on its intended course controled by the people who were given control. The crew were just patsies pressing
buttons and turning wheels.

If you have control of the vehicle, you can't misdirect it is my point. Just because their control was obfuscated doesn't mean misdirection.

Probably would have been clearer if I decided to make my stand on the word 'hijack' instead.

Dupe

[phizi0n]

http://tech.slashdot.org/story/13/07/26/2344215/gps-spoofing-with-3000-worth-of-equipment-and-a-laptop

Re:Dupe

[ebno-10db]

I was about to post that myself. A duplicate from Friday. Come on folks, if a couple of casual readers can immediately spot a duplicate post, can't the editors? This has gotten ridiculous.

Re:Dupe

This has gotten ridiculous

New in town sailor?

Re:Dupe

[RedBear]

http://tech.slashdot.org/story/13/07/26/2344215/gps-spoofing-with-3000-worth-of-equipment-and-a-laptop

It may be a dupe, but I distinctly remember reading post after post on that article from apparently knowledgeable people explaining in great detail how this whole "GPS spoofing" thing was supposedly nearly impossible or at least highly impractical. I am very much interested in having someone explain how these people have managed to accomplish something that is supposedly not doable.

Seems to me this represents a valid threat to the safety of using civil GPS navigation systems, on land or at sea. Most of the posts on the previous article seemed to indicate that GPS is NOT threatened at all. I am unable to rectify these two opposing points of view without further input from knowledgeable people.

Re:Dupe

[Lumpy]

Editors?

Are you new here?

slashdot has never had any editors, they have people that click on things randomly. Think million monkeys on a million keyboards.

Re:Dupe

[Lumpy]

It is taking advantage of a poor GPS antenna design. IF the GPS antenna was shielded from ground signals (it would also create a smaller circle of sky to see, but that is not a problem with the number of birds up there) this spoof would have failed unless they were in an aircraft above the yacht.

Re:Dupe

HAHAHA

theres like 3 monkeys and a ferret and 2 keyboards they have to fight for. your lucky when these articles even use language.

Re:Dupe

[tlhIngan]

It may be a dupe, but I distinctly remember reading post after post on that article from apparently knowledgeable people explaining in great detail how this whole "GPS spoofing" thing was supposedly nearly impossible or at least highly impractical. I am very much interested in having someone explain how these people have managed to accomplish something that is supposedly not doable.

Seems to me this represents a valid threat to the safety of using civil GPS navigation systems, on land or at sea. Most of the posts on the previous article seemed to indicate that GPS is NOT threatened at all. I am unable to rectify these two opposing points of view without further input from knowledgeable people.

Except well, you have to override the receiver of all satellites it can see. Like here, they had to overpower the GPS satellites (it's not hard), but they also had to maintain the lock.

It's a lot more difficult If you want to misdirect a whole fleet of vehicles because the satellite signal has to follow everyone and in a sensible fashion. If you really wanted to take down GPS, it's far easier to just do a blanket jamming of it than to try to follow each and every vehicle you want to misdirect and aim the antenna at them.

GPS works by sending a timing pulse from the satellite to the ground - the receiver gets 3 or 4 of these timing pulses, correlates them to figure out how far each satellite is and then uses the spheres to find its location. Each receiver should generally come to a unique solution for position (because well, no two objects can occupy the same space).

If you broadcast this fake signal out, eventually someone will notice when their GPS suddenly gets a fix hundreds of meters away from them (each unit gets a slightly different signal from the satellite - when they all get the same signal, they all show the same location,). So it works great if you're in a fleet of trucks following some route, but if you're a bit further spaced out, the solution doesn't work so well and each will need its own antenna and transmitter to come up with plausible location information.

And that's the problem - it doesn't scale. The technique works if you want to misdirect a ship, a drone, a plane, or whatever, but to misdirect multiple requires multiple transmitters in order to send plausible yet fake data to each individual unit. It still is far easier to simply broadcast garbage on the GPS band so no GPS receiver can get a lock.

Re:Dupe

The story was that a single vanilla GPS receiver could be spoofed by providing it with a louder signal which overrides the real signal from the satellite constellation.
    Such a signal can be provided by GPS test equipment which is designed to create such a signal for use in a lab.

There is probably no reason the change the GPS system to 'fix' this.
Instead, when it matters, there are ways to harden the GPS receiver to prevent this from causing harm.
        Use directional antennas to make sure the signals are coming from the correct direction.
        Watch for unexpected jumps in signal strength.
        Use other inputs to cross check the results. (Compass, log, and a lookout come to mind.)
        Use multiple receivers spread in space and correlate their results.
        Doing combinations of the above (defense in depth.) should frustrate most spoofers.
                  But nothing is perfect, a loud enough jamber will always be able to deny access to the signal.
                    But at least the receiver should know there is no valid signal.

The lesson from the story is an old one.
      When navigating, trust but verify your information sources.
            GPS works so well that we tend to forget this.
                  The nice guy from Texas reminds us that this is unwise.

Re:Dupe

well this "article" doesn't exactly explain that either. it just says that the students did vs. claim it can be done. but the video is some fucking rendering? seriously, could we have some actual fucking footage of the feat ? the video in the article is useless, displaying the theory of how it might happen.

were they really running a transmitter transferring simulated feed from 3-4 satellites and knew where the actual position was at beginning of the run for the boat? were they running it from the boat, from airborne? had a gps simulator hooked up direct to the gps antenna? does it work on all gps receivers - no probs with time? did receiver show any anomalies, ie. "seeing" less sats than usual?

this particular article though gets extra points for mixing spoofing with jamming, the other instances in the case are jamming rather than spoofing incidents, which itself isn't much of a feat.

Re:Dupe

The technique works if you want to misdirect a ship, a drone, a plane, or whatever, but to misdirect multiple requires multiple transmitters in order to send plausible yet fake data to each individual unit. It still is far easier to simply broadcast garbage on the GPS band so no GPS receiver can get a lock.

Simply jamming the GPS means the crew or drone operators will have to switch to an alternate navigational method. This allows you to direct them into a trap or ambush without them knowing it.These are two different things, it does not matter which is easier.

Re:Dupe

"...when they all get the same signal, they all show the same location..."

Except that it would be impossible for them to all get the same signal unless they WERE in the same location. The GPS signal carries the time of transmission. Each receiver calculates distance by comparing that to the time of reception. The only way multiple receivers can derive the same position is if they are in the same location.

Re:Dupe

[Natales]

Particularly bad timing since just today the San Francisco Chronicle is reporting that foreign airlines are now asked to use GPS for landings at SFO. What could possibly go wrong?

Re:Dupe

theres like 3 monkeys and a ferret and 2 leopards they have to fight for

Monroe was right, it is 100% better.

Re:Dupe

[sjames]

The need for a balloon to accomplish the task isn't that much of a comfort really.

Re:Dupe

[MiG82au]

"Shielded". You say that as if directional antennas are an on or off thing. GPS signals are very weak and in this case the false signal is within throwing distance of the antenna. 60 dB would be a great (unobtainable even?) ratio between above and underneath, and yet mere 1 W signal would overwhelm the real one at that ratio.

Re:Dupe

[Goetterdaemmerung]

Shielding is an easy answer but very complicated to implement without degrading the signal under certain circumstances. It will take more serious spoofing threats to redesign the common shipboard GPS antennas.

Re:Dupe

And that's the problem - it doesn't scale. The technique works if you want to misdirect a ship, a drone, a plane, or whatever, but to misdirect multiple requires multiple transmitters in order to send plausible yet fake data to each individual unit. It still is far easier to simply broadcast garbage on the GPS band so no GPS receiver can get a lock.

The thing with attackers is that they don't necessarily need to scale. Sure, some attacks may be infeasible, but redirecting one oil tanker to the coast is sufficient for certain purposes -- you really don't need more than one.

Re:Dupe

[eyenot]

Here, let me help you by offering a spoof of knowledgeable input in an effort to misguide you and hijack your POV rectification.

What this really amounts to is terrorism. See, if it can be done then terrorists can and will do it -- specifically, they'll do it to you, straight at you. Like KAPOW!

So we'll need to police the high seas with constant vigilance. But we can't allow the enemy (that's the terrorists) to identify the anti-terrorism force. Or they'll use the terrorism on the anti-terrorists and it'll be all willy-nilly.

What you can expect is that if you start veering off course in the direction of suspecting terrorism, some plain clothes people with guns and booby trap training will use technological telegadgetry to move your boat in the right direction, and then board your boat and commandeer it for added safety.

Neither we, nor them, can disclose the full details of the safety mission. So don't ask them questions because they are under strict orders to pistol whip anybody who asks questions because that's the terrorists. Always asking questions. That's what gets people misled in the first place.

I'm glad I could clear that up for you. You can rest assured that no, there is no threat, we have it all taken care of.

Re:Dupe

[drinkypoo]

IF the GPS antenna was shielded from ground signals (it would also create a smaller circle of sky to see, but that is not a problem with the number of birds up there)

Sure it is. If you're surrounded by several massive bad weather formations you might not be able to see all the satellites. You might only be able to see a few of them. If some of them are close to the horizon, your magical antenna just blew your chances to see them underneath a storm.

If you had three antennas, one fore, one aft, and one up high, it would substantially increase the difficulty of mounting a spoofing attack without detection. This would increase the cost but not decrease utility.

Re:Dupe

> theres like 3 monkeys and a ferret and 2 keyboards they have to fight for. your lucky when these articles even use language.
bitch about language much?

Re:Dupe

[fisted]

> "...when they all get the same signal, they all show the same location..."
No.
Protip: They do already 'get the same signal(s)'

Re:Dupe

this some sort of poem?

dangerous and illegal

[cstacy]

Difficult to believe they committed so many dangerous crimes and are bragging about it; "permission from the owner" (who apparently was not even aboard) does nothing to mitigate this. Therefore difficult to believe the story is true. Even though people are idiots....

Re:dangerous and illegal

[pipatron]

Care to cite some of these crimes, or are you just venting?

Re:dangerous and illegal

Dangerous? It is not dangerous to redirect a yacht, provided you don't trick it into dangerous waters. Which they did not. The owner's permission means there were no problems with wasted time/fuel either.

And what crime? They disturbed only one ship - with the owner's permission. The gps frequencies may be protected in many jurisdictions - but not all. And then there are international waters where you can do such things anyway.

Re:dangerous and illegal

[Stephenmg]

Illegal? How do you figure? What country has jurisdiction? Dangerous only if they guided the yacht into unsafe waters. Completely relying on GPS is very unsafe.

Re:dangerous and illegal

[pla]

Difficult to believe they committed so many dangerous crimes and are bragging about it

Care to name a few? Specifically?

Keep in mind they didn't physically disable the ship's controls, they just lied to it about its current location. The crew on board still had every possible means available to them to maneuver the ship away from any threats that may have appeared.


"permission from the owner" (who apparently was not even aboard) does nothing to mitigate this.

Of course it does! He, and only he, gets to decide where his boat should go next. And the very fact of his involvement mitigates most of your mythical "dangerous" argument, since presumably the owner wouldn't have let them redirect it over, say, a giant rock just below the surface. Or into pirate-filled Somalian waters. Or across national boundaries that might get them into a pissing contest with various countries over imaginary lines on the map.


Perhaps more to the point - You can't trust GPS to get you to your destination. Period. This story demonstrates an active attack on that, but the crew of any vehicle always needs to have a backup plan available at a moment's notice. If you really want to point fingers here, try the ship's navigator who somehow failed to notice that reality didn't match his charts.

Re:dangerous and illegal

I am sure the illegality of this would deter Somalian pirates from using it.

Re:dangerous and illegal

[Lumpy]

Please tell me what crimes were committed in INTERNATIONAL WATERS.

What earth laws? because no country has any jurisdiction at all so what laws you are thinking of are silly ramblings of an uneducated person.

Re:dangerous and illegal

[Lumpy]

"He, and only he, gets to decide where his boat should go next. "

Wrong. 100% wrong. The owner has no say in it at all. the CAPTAIN of the boat does. In international waters the owner of that ship has no say what so ever. The captain has 100% say.

Re:dangerous and illegal

[shipofgold]

Perhaps more to the point - You can't trust GPS to get you to your destination. Period. This story demonstrates an active attack on that, but the crew of any vehicle always needs to have a backup plan available at a moment's notice. If you really want to point fingers here, try the ship's navigator who somehow failed to notice that reality didn't match his charts.

The scary bit is whether the navigator even knows how to read charts any more. Or do dead reckoning or celestial navigation.

The transportation industry is relying more and more on technology and less on human knowlege to get from point A to point B. GPS, Airline Autopilots and Instrument Landing Systems, train automation are all making significant in-roads to the point that the humans on board are just blindly trusting it.

I foresee the auto industry going in the same direction. I tease my kids that their kids will not know how to drive a car. Indeed my kids have never looked at a paper map.

Re:dangerous and illegal

The captain has 100% say.

And what the captain says usually agrees with what the owner wants, if the captain wants to keep his job.

In fact there are limits on what the captain can do with the ship without the owner's authorization.

Re:dangerous and illegal

Please tell me what crimes were committed in INTERNATIONAL WATERS.

I don't know exactly how this spoofing was carried out so none of this may be applicable. From what I understand if you were broadcasting a harmful radio signal in international waters then a ship from a nation harmed by your signal does have jurisdiction according to what I remember of the UN law of the seas convention.

Re:dangerous and illegal

Please tell me what crimes were committed in INTERNATIONAL WATERS.

FTA:

That is, the students created a device that sent false GPS signals to a ship, overrode the existing GPS signals, and essentially gained control of the navigation of an $80 million yacht in the Mediterranean Sea.

There is no portion of the Mediterranean Sea that is consider "high seas" or outside of a national jurisdiction. Pollution policy is dictated by the Barcelona Convention. The GPS spoof may violate the laws covering wireless communications of the nation that claims the region in which the vessel was operating.

The fact that the owner of the vessel gave permission is immaterial since the master of the vessel is legally responsible for the operations of the vessel.

Re:dangerous and illegal

[Kjella]

What earth laws? because no country has any jurisdiction at all so what laws you are thinking of are silly ramblings of an uneducated person.

Pot, meet kettle. The waters are international, the ships are the territory of the flag they're sailing under and the flag state laws apply. This is for example true for all crimes committed on board, but also the usual rules of "What if you stand on the Canadian/Mexican border and shoot someone in the US?", short answer they'll need to extradite you but you'll be trialed under US law. Same thing if you shoot at a vessel under US flag in international waters and kill someone, you just committed a crime under US jurisdiction. If disrupting the GPS signal is illegal in the US mainland it's probably illegal to do the same to a vessel under US flag, unless the regulations specifically limit themselves to US territorial waters or restricts itself to regulating broadcasters in US territory, not signals received - a small but crucial distinction in such "border" disputes.

Re:dangerous and illegal

[bobbied]

And then there are international waters where you can do such things anyway.

Um, if the ship was flagged in the US, I believe that the FCC still has a say about what goes on even in international waters. At the very least the ITU might think it has some jurisdiction over the jamming/changing of GPS frequencies. Nobody may care, but they could legally do something if they did.

Re:dangerous and illegal

[bobbied]

I'd call it something else. Reliance on GPS alone is more than just unsafe, it's foolish and stupid.

I thought that ships "captains" where licensed, and as part of that was a demonstration of basic navigation techniques using maps, a watch, sextant and some charts. Consider even your EYES as a navigation tool if you are following a series of markers out of port.

Hooking up the auto pilot to the GPS and hitting "go" while you head off to the aft deck for a party is just plain dumb.... Trusting your GPS to get you someplace and not having any other way to figure out where you are is going to get you shipwrecked eventually.

Re:dangerous and illegal

[bobbied]

I tease my kids that their kids will not know how to drive a car. .

Yep, bet they have never seen a manual transmission too.

You know the best theft protection these days is a clutch..

Re:dangerous and illegal

[pla]

Wrong. 100% wrong. The owner has no say in it at all. the CAPTAIN of the boat does. In international waters the owner of that ship has no say what so ever. The captain has 100% say.

You've seen a few too many cheesy movies.

In theory, that sounds great - Only the captain knows the real conditions affecting his vessel at any given moment; and it romantically hearkens back to an era when they didn't have things like "global weather reports" at least reasonably accurate for the next few hours.

In practice, try it today (in the absence of a life-threatening emergency) and see how long you remain a free man. Or since that won't happen (since we both count as arm-chair braggarts, ARRR!), show me case law where a captain, with no good reason, decided to go somewhere else, the owner pressed charges, and the court found the captain not guilty by reason of the-captain-can-do-whatever-the-hell-he-wants.

Re:dangerous and illegal

[firex726]

Regarding the sextant; it's not really used any longer. It's like a slide rule, it's a niche thing that a small group still make use of, but most just don't bother to learn let alone make use of.

Re:dangerous and illegal

[quacking+duck]

I tease my kids that their kids will not know how to drive a car. .

Yep, bet they have never seen a manual transmission too.

You know the best theft protection these days is a clutch..

That's pretty region-specific... mainly North America, where manuals made up only 7% of sales in early 2012. And anyone targeting cars specifically would know how to drive stick, unlike say robbers trying to commandeer a running car as part of their escape (happened locally a few years ago).

Re:dangerous and illegal

[bobbied]

If you intend to venture out beyond sight of land, you really should take some means of navigation along. My minimum navigation equipment would depend on how far I was planning to go, but it would start with a compass, a watch and maps of the local coast. If you are crossing the ocean, you need to take along more and a sextant is a good idea.

Personally, I think that it would be good practice to require that mariners crossing international waters be required to fix their positions using non-electronic means every few hours and then explain any differences between what the GPS says and what they observed. It's also a good idea to plot these positions on a paper map, just because you never know when the GPS is going to die and you will get left trying to find your way home.

But you can't fix stupid.... Folks are free to run out to international waters in a row boat without life jackets in the middle of a tropical storm. Just like they are free to depend on a battery operated electronic device as their sole means of navigation.

Re:dangerous and illegal

[bobbied]

I wonder how many folks have actually driven a manual transmission if they only make up 7% of sales. My guess is that the younger the driver is, the less likely they are to have actually driven one.

Re:dangerous and illegal

[Hognoxious]

The GPS spoof may violate the laws covering wireless communications of the nation that claims the region in which the vessel was operating.

Let's take look at these so-called "nations".

Spain - busy torturing cows, otherwise asleep.
France - on strike.
Italy - might as well be on strike or asleep, it's difficult to tell.
Greece - Same as Italy, alternating with riots.
Israel - not interested unless there's some profit in it. Don't get mistaken for an aid convoy, though.
Entire Southern coast - Same as Greece, but with guns & tanks.

Did I miss anyone?

Unless they got too close to Cyprus or Gibraltar I think they've nothing to fear.

Re:dangerous and illegal

I sure hope they have gps in safety boats.

Re:dangerous and illegal

[quacking+duck]

The article notes that in that particular quarter, manual sales actually increased from the usual 3-4%. I bought one myself 5 years ago... when I drove it off the lot I'd driven stick only 4 times (2 recent lessons, 2 test drives).

I'm sure you're right that the younger the driver is in North America, the less likely they know how to drive stick, but I'd say the percentage of North Americans who know how is around 10-15%, since there are many who for whatever reason (family, etc) just drive auto at the moment. Anecdotally, about 1/3 of my friends and family know how, too.

They did this in tomorrow never dies

[Joe_Dragon]

and that was a step up to the military ones.

Re:They did this in tomorrow never dies

[Anubis_Ascended]

Was just about to post this *shakes tiny fist*

Re:They did this in tomorrow never dies

Inventor: "I've invented a teleporter capable of sending living humans thousands of miles at the speed of light!"
Slashdot: "phht, Star Trek did that in the 60's"

reality != fiction.

Re:They did this in tomorrow never dies

[adamofgreyskull]

That was using a communications satellite and a stolen, top secret, "GPS encoder"...outside their $3000 budget, I'd wager.

Well, Duh!

[zmollusc]

Of course you can spoof wireless signals, that is why I ran cat6 to my GPS sats. Even if a solar EMP thing destroys the circuitry I can get a pretty good approximation from the slack in the cable.

Re:Well, Duh!

[Gavagai80]

As an added bonus, you can use the cable as a space elevator.

Moral: learn basic seamanship

[Spy+Handler]

kinda like how the Asiana pilots should've learned basic flying skills and not rely on auto-throttle all the time.

Or like how our school districts want to buy an iPad for every student even though they can't read or memorize a basic multiplication table.

Re:Moral: learn basic seamanship

[maudface]

Pfft, I can barely handwrite and have never bothered memorising a multiplication table, I also have a Masters degree in CS and a well paying job. It's just a shift to a more relevant platform to teach with, certainly more relevant than pen and paper.

I've little doubt that your school district is indeed profoundly unwise with their policies, but adopting new tech isn't to blame there, the issues are more fundamental than that.

Re:Moral: learn basic seamanship

If you've never "bothered" memorizing a multiplication table, the how the fuck do you know the answer when someone asks what the answer of two numbers multiplied together is? Anything more than 3x3 gives you a 2 digit answer, so you what, think "um, 3 + 3 + 3 + 3" makes, um "6 + 6" makes, um "12" yeah.

What about 11x11? How the heck can you call yourself a Computer Scientist and yet be oblivious about the fact you HAD to have memorized the damn thing just to pass math classes?

Re:Moral: learn basic seamanship

You don't have to memorize it, it's quite easy to do the multiplication on paper if you can't in your mind.

Re:Moral: learn basic seamanship

[Jmc23]

Easy, just visualize it as an area. If you play with numbers enough you realize there are certain properties that can be exploited to get answers quickly to math problems that are intuitive.

Here's a hint. The usa does not have a good education system. They don't teach you how to learn because they don't understand learning. Memorization is always a symptom of not understanding the why of anything. Another hint, other cultures have developed answers to life that are better than what the west has come up with.

Re:Moral: learn basic seamanship

They don't teach you how to learn because they don't understand learning.

Close. They don't teach you how to learn because they (different values of "they" have different reasons, but it all amounts to the same thing) don't want you thinking for yourself; they want you to swallow the current party line/advertising slogan/popular sales trend.

Re:Moral: learn basic seamanship

Just curious, where was USA ever brought up? Because as an American, and product of the public school system, I was never taught to memorize multiplication tables. I was taught to understand how multiplication was done. As a result, I have difficulty doing any multiplication more than single digit in my head, but give me a piece of paper and a pencil and I'll multiply till the day is done.

Re:Moral: learn basic seamanship

They don't teach you how to learn because they don't understand learning.

Close. They don't teach you how to learn because they (different values of "they" have different reasons, but it all amounts to the same thing) don't want you thinking for yourself; they want you to swallow the current party line/advertising slogan/popular sales trend.

That's not entirely true. They want you to develop useful skills, which is a subset of learning. The main problem is they're using methods that were largely designed around a manufacturing economy, where "being on time", "following directions", and "attention to detail" were the most relevant skills for the majority of the population.

So all lessons are formatted around going to a place at a specific time, being given directions which you then follow on your own and are graded based on how closely your results adhere to the desired results, even when the subject matter is poorly suited to that format.

Re:Moral: learn basic seamanship

Who gives a shit about answering multiplication questions? Are you still in school?

Re:Moral: learn basic seamanship

[maudface]

Because i'm not a fucking idiot.

You can work out pretty much anything pretty quickly with multiplication and division by two and ten with a little addition/subtraction plus a few other tricks. I'm shitty at remembering vast amounts of data, though extremely good at working things out on the fly. I rarely remembered equations either for my physics undergrad degree, just the relationships and grasp of dimensional analysis to get there myself.

I never learned long division either, until it was required for polynomials.

Point is that the main issue with education is it's a one size fits all pile of bullshit that leaves a lot of people behind, I was damned lucky to get where I am and that's what I feel is the issue, not ipads. Handwriting is becoming all but irrelevant

Re:Moral: learn basic seamanship

[maudface]

or just do it in your head, you don't need tables.

Re:Moral: learn basic seamanship

[adamofgreyskull]

What about 11x11?

Why in the name of jiggery pokery would you need to memorise 110 + 11?

Re:Moral: learn basic seamanship

elevens concatenate and add.

11*11 -> 1+1 = 121
11*14 -> 1+4 = 154

but yeah, rather impressive mental math is conducted in the exact manner you mock.

I hope autodrive cars can be messed with like this

[Joe_Dragon]

Right turn ahead to an dead end.

Tomorrow's News Today

Now all we need is a stealth boat and we're all set to re-enact a Bond movie.

So...

I saw a documentary about this involving the British Navy and a media tycoon.

It's okay, this is illegal

[watermark]

I think we're going to be okay because this is illegal. It doesn't matter that it was done far away from Texas, US laws apply everywhere.

yacht, yach

[Werrismys]

It seems that it is basically the same technology to be used on a 700€ rowboat.

under maritime law the crew can have power

[Joe_Dragon]

They have the power to due stuff with out the owner saying so.

also this gps hack may of been braking some maritime laws as well.

Re:under maritime law the crew can have power

They have the power to due stuff with out the owner saying so.

You're the first person I've ever met that can't spell a two letter word. Congratulations.

Re:under maritime law the crew can have power

You're the first person I've ever met that can't spell a two letter word. Congratulations.

You're not the first pedant who corrects someone's spelling and does not properly hyphenate a compound adjective.

(Hint: two-letter)

Re:under maritime law the crew can have power

Since you want to be pedantic, I'm fairly positive that you've never met him before.

Re:under maritime law the crew can have power

[jeffmflanagan]

I assume it's someone very new to English, or with a serious disability. Great job making fun of them coward.

$80 million

[fermion]

So the value of the yacht is a critical value in this experiment, If I only buy an $8 million dollar yacht I will be immune?

We have seen that over reliance on GPS is a problem. I have lead astray following Google maps using GPS. Although I can imagine some applications in hijacking oil tankers and the like, I would hope that such vessels would have secondary systems.

I can see this as a countermeasure against drones.

Re:$80 million

[jodosh]

Normally GPS issues that people face aren't problems with the GPS but rather with the mapping data used. The GPS is giving good data, but the maps are out of date or incorrect and lead you the wrong way. Notable exceptions to this would be in places like New York, where the large buildings cause multipath issues and the GPS module doesn't have good data.

Re:$80 million

[Lumpy]

Yes, this only works against high dollar boats because their GPS gear is diamond encrusted and plated in gold.

The gold plating is the key to the whole thing.

Re:$80 million

[PRMan]

As a person who corrects GPS data all day long I can assure you that the GPS does NOT always give good data. There are many zeroes and astronomical values to ignore.

Re:$80 million

If $80 million doesn't buy automated alarm systems that detect that the yacht is off course, are you still hopeful that an oil tanker has such a thing?

I realise they are two different use-cases, and the $80 million goes into different things. However, the value of the yacht does tell you a few things:

- Pirates who steal yachts can potentially steal very expensive ones as well as ordinary ones because even the very expensive ones aren't immune from the same sorts of problems as the ordinary ones
- Money doesn't buy you everything you might expect

Re:$80 million

I can see this as a countermeasure against drones.

Only those drones without upward-facing GPS receivers which also utilize unencrypted non-military GPS signals.

Re:$80 million

[jodosh]

Naturally the RAW data from a GPS module will be very noisy and good software/firmware needs to be written to overcome the horrible SNR that will be present. However the issue that the Fermion was referring to, that google maps has led him astray, is more than likely an issue with the map data and not the GPS location calculated by the module. (with the notable exception of being in a place like NYC.)

Good thing you can't fool a compass!

[cnaumann]

Oh wait.

If you spend $80M, buy a sextant.

[Apuleius]

And spend the money on it BEFORE you install the jacuzzi.

Always use multiple sources of information

[Billy+the+Mountain]

Not a skipper, but I do fly. If I was on the bridge, at some point I would have noticed that the Magnetic compass heading was not matching the GPS heading.

There are many different GPS-like systems available now. Glonass is the Russian version and has been available for a long time. Also the EU has Galileo coming on line real soon now. Also heard about both China and India developing their own. Units that can rely on multiple sources would definitely be harder to spoof.

If you feared that you were under GPS spoof attack while using the GPS on your phone, you could fairly easily detect this by writing an app that compares the GPS heading with your magnetic heading.

Re:Always use multiple sources of information

If you have malicious intent on sea or in air, you can make the deviation small enough to just drift some extra instead of N to E direction..
Also even if you have GPS+GLONASS they are still just signals, and are easily spoofed with higher signal effect etc...
Unless they start with some form of verification, but i bet they only use that in the military specs and will never release those to public..
Until someone creates an disaster and force the goverments to release better signal position systems that are atlease harder to spoof...

Re:Always use multiple sources of information

[WaffleMonster]

Not a skipper, but I do fly. If I was on the bridge, at some point I would have noticed that the Magnetic compass heading was not matching the GPS heading.
 

With currents and winds pushing yer ship around it rarely does. If done subtly enough it may well have been difficult to catch even if someone had been paying attention.

Re:Always use multiple sources of information

[Bucc5062]

Speaking as a long time sailor, you can average a heading when the seas are rough. Basically I know I want to be on a 20 heading, but waves are tossing me around between 260 and 280, but I keep a general course in mind. Even a GPS system (non-spoofed) will move a bit in rougher seas. Bear in mind this relates to smaller boats. Yachts, large vessels tend to not swing so much so matching compass heading to GPS as a cross check works.

I commented on the other post a similar thought, that spoofing a GPS for a ship is not a danger because the time frame to effect change is too long to have an impact on the high seas. A good navigator will cross check positions (compass or even celestial) to ensure they are on course. Once they get close to land then they can navigate by dead reckoning off land marks and/or navigation buoys. Spoof a GPS near land and most captains will just turn it off and go back to what worked for centuries.

Airplanes could be much mroe effected in short time frames, but I also feel they have redundant systems to cross check. Bottom line, spoofing a GPS may be acool trick, but not a danger to people in general.

Re:Always use multiple sources of information

[camperdave]

Back in the before times, I was on a flight to England. I asked if I could visit the cockpit. While there (they have a fabulous view, by the way), they showed me the navigation console. It showed three positions: Inertial guidance, GPS, and VOR? If one was seriously out of whack with the others, it would have been readily apparent. Ships too have multiple nav systems.

Re:Always use multiple sources of information

[Bucc5062]

And while they did not point it out, they still had a compass somewhere on the panel. Lucky to get that view. Just once I had a chance to sit up front in a DC-8 and it was amazing.

Re:Always use multiple sources of information

[complete+loony]

On a phone, I doubt the magnetic heading is accurate enough.

Re:Always use multiple sources of information

[MiG82au]

Presumably you know the difference between heading and track then, and can tell me which device gives which. And then you'll realise that you actually wouldn't have noticed anything.

Niantic@Google is screwed

[Krojack]

Not only are (some) rooted people spoofing in the Ingress game, now you can do it with overriding the GPS signals.

Arithmetic and mathematics are different

[lisaparratt]

Not really, you can get quite far by learning to multiply by 2 and 10, divide by 2, and add and subtract. Learning the squares is quite useful, too. Not quite as quick as rote memorisation, but not everyone's suited to being a conformist drone. I got the highest grade going in my mathematics exams right up until college with such basic techniques.

I don't know about you, but I don't get many people stopping me on the street to demand I perform simple multiplication. Even if I did, I'd tell them to JFGI.

Being a computer scientist was probably half the problem - when you've been programming from age 5, it becomes abundantly clear that the how and why of mathematics are important, and not the mere implementation detail of arithmetic.

Re:Arithmetic and mathematics are different

[maudface]

Thanks, yes, this is how I do math.

Re:Arithmetic and mathematics are different

http://en.wikibooks.org/wiki/Mental_Math

I'm safe from this type of attack

Luckily, I don't have an $80 million yacht...

FAA orders pilots on SFO approach to use GPS

On unrelated not,e FAA just orders pilots on SFO approach to use GPS for landing,

Re:FAA orders pilots on SFO approach to use GPS

http://www.nbcbayarea.com/news/local/FAA-Tells-Foreign-Pilots-to-Use-GPS-When-Landing-at-SFO-217338431.html

wouldn't the spoofer be piloting blind?

[TerraFrost]

Presumably the person doing the spoofing would be piloting blind since their GPS would be effected just as much as the target's GPS?

If so then it seems like GPS spoofing would be of limited usefulness unless you just wanted a ship or plane or whatever to get lost and expend all it's fuel in the process.

Re:wouldn't the spoofer be piloting blind?

[Calydor]

GPS is not the only way of navigating at sea. Compass, for instance, would be a quick and easy way of making sure you are on course yourself.

There is also a difference between GPS blocking and GPS spoofing. If you are spoofing, and you know that you are shifting the signal by, say 30 degrees west, then you can make corrections to your own course based on that knowledge.

Time for a revision to L2C, L1C & L5 messages

[tibit]

I think it's time for a revision to the L2C, L1C and L5 civilian GPS specifications. Right now all signals, if/when present (some are at demo stage only), transmit a default message with no navigational data. It seems to me that messages on those signals should use public cryptography techniques to verify the authenticity and integrity of navigational data. It is feasible to do so, since L2C, L5 and L1C all use a packetized format and to-spec receivers must ignore unknown packets. Thus a cryptographic signature packet can be added in a fully backwards-compatible fashion. Properly done, this prevents spoofing of the navigational data, including preventing replay attacks. It should be sufficient to pretty much end spoofing once and for all.

Fuck you slashdot

The price of the yacht has nothing to do with this! Fuck you slashdot and your stupid god damn headlines!

Also, fuck you yacht owners for only having GPS navigation. Something of that kind of money could run what Ethanol-Fueled (tm) was talking about on that other story about dead reckoning with sonar or something. Or a fucking sextant.

Re:Fuck you slashdot

[Hognoxious]

Or a fucking sextant.

Pah! Astrolabe and a cross-staff. Home-made. If we were lucky.

You kids today...

Spoofing stars with fake satellites

Is there any technical details on the yachts gear? Were they using RAIM?

Piracy

[Stargoat]

Lends a whole new meaning to the term computer piracy. Yarr.

Re:If you spend $80M, buy a sextant.

Just the basic compass. So you may see the "real" heading.

Aren't cruise missiles guided by GPS?

[Streetlight]

If the answer is yes then the students' device may be a useful countermeasure. Other munitions and military airplanes may also be guided by GPS. I would guess there's some kind of encryption in military applications, but not sure. Imagine a shooting war using GPS guided military things and the opposition had one of these countermeasure devices and sent the munitions back to where they came from. So much for high tech guidance of military equipment.

Re:Aren't cruise missiles guided by GPS?

GPS is but one of several systems used by most cruise missiles.

Military has and does use GPS, but there are very, very few people - let alone systems - that would rely on it.

Re:Aren't cruise missiles guided by GPS?

Answer : No.

http://en.wikipedia.org/wiki/GPS_signals#Military_.28M-code.29

BTW : In case of a blown out war, no civilian has access to GPS any longer. That's one of the reasons the Europeans (Galileo) and the Russians (GLONASS) are building their own systems. Precision is another one. GPS is less precise for civilians.

Re:Aren't cruise missiles guided by GPS?

[Streetlight]

Interesting about M-code. However, considering all the news lately regarding hacking by potential adversaries, I'm not sure any encryption or coded communications are as secure as their originators think. Right now the Chinese have the fastest supercomputer in the world. I wonder how long it would take to find the "passwords", or whatever, is necessary to overcome such obfuscations. Basically, if it's in the air, just like the internet, one can't assume it's secure.

Re:Aren't cruise missiles guided by GPS?

Being in the military I can tell you that your statement about very, very few people is entirely incorrect. There is a suprisingly large number of people that can't read a map because of reliance on GPS now. It's sad.

Poor seamanship

[n0w0rries]

Any helmsman worth his salt would have noticed a change in the direction of the swell, the sun, moon, stars, compass, so I would say the crew was not standing a good watch if they weren't properly observing their environment.

Re:Poor seamanship

Not everyone has CAPTAIN Jack Sparrow's compass.

Re:Poor seamanship

[Hognoxious]

Arrrr! Keelhaul the lubbers!

Re:Time for a revision to L2C, L1C & L5 messag

Not a GPS expert, but I do know a little bit about crypto. :-) I assume GPS is broadcast, not a unicast / synchronous protocol.

I am not sure if this is a solution, unless you can be sure that the receiver doesn't receive the original signals. A spoof attack is really just replying the signals with different timing or direction, right? The signal *would* be authentic, just would be delayed or or from a different angle. (Think single time replay.) The problem here is that the element you care about -- the timing data of the signal itself -- wouldn't actually be protected by the key itself, since the data is based on local observation.

(This all assumes the attack relies on replying identical signals with offset timing, not modifying timestamp data in the signals themselves.)

I think if I were designing a system for use by the military, I'd reverse the direction -- i.e. have the groundstation send up an inquiry, and have the response come back *with* the timing data for the requester. Combine this with public key crypto, and its fairly unbreakable. Unfortunately, it would require strong transmitters, and wouldn't scale terribly well, since every such unit would require a satellite uplink. But, if you're designing for the military -- or perhaps even civil aviation, its the way to go.

Btw, for civil uses, the use of ground stations (lots of them -- perhaps at each cell tower) would do a long way to address the scalability considerations for a request/response system.

Or, to put it less excitingly...

[perceptual.cyclotron]

Man given wrong map goes to wrong place. Full story at 11.

GPS spoofing is interesting, sure. But it ain't new, and the application here isn't exactly a mind-blowing revelation of the technique's potential...

Re:Time for a revision to L2C, L1C & L5 messag

[WaffleMonster]

I think it's time for a revision to the L2C, L1C and L5 civilian GPS specifications.
It seems to me that messages on those signals should use public cryptography techniques to verify the authenticity and integrity of navigational data. ...
It should be sufficient to pretty much end spoofing once and for all.

You don't need to be able to generate false signals to defeat GPS. Fixes are based on time of flight of signals. Simply altering propogation delay is sufficient.

Mecca

[crutchy]

So that's how they get all those pilgrims to Mecca... they have a network of massively powered GPS transmitters around the world that try to redirect everyone to Saudi Arabia.

Explains why you hear those stories about people getting directed to drive into bodies of water.

Wow..

[GigaBurglar]

Ground breaking..

Shiver me timbers...

Fat chance trying such a trick with Long John Silver aboard!

Re:Time for a revision to L2C, L1C & L5 messag

>I think it's time for a revision to the L2C, L1C and L5 civilian GPS specifications.

Sure, all that will take is replacing the entire GPS satellite constellation. Hope you have a few hundred billion dollars of money just laying around..

Avast Ye!! Come to me Horn!!

[RobertNovak]

I come fer yer booty!! And if ye be trying to steer clear of me piratey waters, Aye'll call the GPS sirens on ye!!

This has been done before...

[dtjohnson]

Iran hijacked a US drone back in 2011 doing this

LORAN?

kinda off topic but...does any one still use LOng RAnge Navigation? http://www.loran.org/

Just asking.

Re:LORAN?

[Hognoxious]

I think the UK is planning an upgrade to it.

Celestial navigation is already gone

[Beryllium+Sphere(tm)]

The US Navy stopped teaching it a few years ago.

The bridge crew should be replaced

[TrentTheThief]

Yes, the crew followed the GPS, like good little auomatons. But being a sailor, especially a navigator or quartermaster is more than just reading a GPS.

If the bridge crew is not competent enough to read a compass nor experienced enough to look at the sky and realize that something was wrong, they shouldn't be entrusted to control anything more experienced than a dinghy. There's this really cool gadget that, with a little work, tells you almost exactly where you are at. It's called a sextant. Put that together with a decent clock and there's no reason to be sailing in the wrong direction.

Re:The bridge crew should be replaced

I suspect John Harrisson spinned multiple times in his grave.

Re:Time for a revision to L2C, L1C & L5 messag

[tibit]

The GPS satellites are dumb relays with local timebases, roughly speaking. You don't need to modify anything on the satellites to transmit arbitrary NAV data. The changes are to the ground segment software only.

Re:Time for a revision to L2C, L1C & L5 messag

[tibit]

Except that when you're seeing more than the minimum amount of satellites, there are simple feasibility checks that will trigger if you push the target too far off. In open space, like on sea, you can detect such spoofing if it's off by merely 50m or so. Remember that the ephemerides tell you where the satellites are supposed to be at any time. If you've got redundant signals, like you most often do, there are no solutions to changes in the signals that will still be self-consistent, IIRC. Some solutions, if they exist, put you at some spot very far from the original position, a spot you have no control over.

Re:Time for a revision to L2C, L1C & L5 messag

[tibit]

Due to the rather arbitrary phasing of the satellites, replay attacks are pretty much infeasible. Even if they were feasible, GPS receivers know what the time is - they have pretty decent timebases. Time rolling back is a big no-no. If you've got your timebase synced up to crypto-validated time source "up there", the time won't ever roll back. Even "tiny" rollbacks, just a few ms worth, are not only detectable, but can't happen with the real GPS system. If you detect it, it only will due to spoofing or serious problems with the infrastructure - that's when you have to turn off the receiver's position output, if it's not a hybrid receiver with an IMU.

Re:Time for a revision to L2C, L1C & L5 messag

[tibit]

Also remember that whatever position fix you get automatically validates the location of satellites in space, especially once you've got more than the minimum number of satellites needed for a fix. Since the receivers would keep unspoofable ephemerides, you can't really make the satellites "appear" to be somewhere else. The most you could spoof things is within a rather narrow position window, +/-100m or so.

Re:Time for a revision to L2C, L1C & L5 messag

It's just software. And no, you don't need an entirely new satellite just to update the software. These things are maintained regularly. It could be patched, much as the Mars rovers get patches.