Authenticating GNSS: Proofs against Spoofs, Part 2

» Download this article (PDF)

The emergence of a multi-GNSS world will inevitably require the civil GNSS user community to address the issue of signal authentication: confirming that a pretended identity of a user or transmitted information is, in fact, real and correct.

This two-part column focuses on the concepts and methods for achieving authentication in GNSS operations. In the July/August issue, the column began by introducing some of the cryptographic concepts, terminology, and techniques used to develop and implement authentication methods in navigation systems in general.

This second and final installment will discuss the possibilities of navigation message authentication, and examine public and private spreading code authentication as well as navigation message encryption and spreading code encryption. We will also draw some conclusions about these concepts’ application in GNSS.

Navigation Message Authentication (NMA)

NMA denotes the authentication of satellite signals by means of digitally signing the modulated navigation data. For each satellite, valid signing/validation-key pairs (k_s, k_v) are generated. The signing key k_s is kept secret and is only known by the ground segment and the respective satellite. The validation key k_v is made public in an authenticable manner, for example, by means of certificates in a public key infrastructure.

The navigation message consists of one or several data blocks D_N, containing the orbit and clock parameters, and of one or several data blocks containing the digitally signature D_S. The digital signature D_S is computed, as described in Part 1 of this article, e.g., by hashing the data blocks D_N and subsequently encrypting the hash value under the signing key k_s.

The recipient receives the data blocks D_N and the signature blocks D_S via the modulated data bits on the ranging signal. After receiving a complete message, the recipient can authenticate it by means of the validation function, for example by comparing the hash value of the data blocks D_N with the outcome of the decrypted signature under the publicly known validation key k_v.

This method demands that the validation key k_v is known to the receiver in an authentic manner. This can be achieved by means of an interface to the receiver with which the user can input the validation key. The validation key is published on the Internet merged in a certificate signed by a trustworthy entity.

As shown in Figure 1, however, the key distribution scheme for the upcoming Galileo system is planned in a different way. Rather than publishing on the Internet, the validation key is packed in a certificate and transferred via the modulated data on the ranging signal itself. The receiver proofs the validity of the validation key over a validation chain up to the root certificate. Again, this root certificate has to be known to the receiver in an authentic manner. Thus, the same arrangements have to be implemented as previously described.

Compared to the first approach — using the Internet and a direct interface to the receiver — the data overhead is notably increased. Furthermore, in this proposed Galileo architecture, the authentication method is not available until all certificates are received and validated. In case of direct key input to the receiver, the question of acquisition time does not arise.

(For the rest of this story, please download the complete article using the link above.)

Author Profiles

Prof. Dr.-Ing. Günter Hein is a member of the European Commission’s Galileo Signal Task Force and organizer of the annual Munich Satellite Navigation Summit. He has been a full professor and director of the Institute of Geodesy and Navigation at the University of the Federal Armed Forces Munich (University FAF Munich) since 1983. In 2002, he received the United States Institute of Navigation Johannes Kepler Award for sustained and significant contributions to the development of satellite navigation. Hein received his Dipl.-Ing and Dr.-Ing. degrees in geodesy from the University of Darmstadt, Germany.

Felix Kneissl studied at the Technical University of Munich and graduated with a diploma in mathematics. He is now a research associate at the Institute of Geodesy and Navigation at the University of the Federal Armed Forces in Munich. His main subjects of interest are in the context of integrity.

José-Ángel Ávila-Rodríguez is a research associate at the Institute of Geodesy and Navigation at the University FAF Munich. He is responsible for research activities on GNSS signals, including BOC, BCS, and MBCS modulations. Ávila-Rodríguez is involved in the Galileo program, in which he supports the European Space Agency, the European Commission, and the Galileo Joint Undertaking, through the Galileo Signal Task Force. He studied at the Technical Universities of Madrid, Spain, and Vienna, Austria, and has an M.S. in electrical engineering. His major areas of interest include the Galileo signal structure, GNSS receiver design and performance, and Galileo codes.

Stefan Wallner studied at the Technical University of Munich and graduated with a diploma in technomathematics. He is now research associate at the Institute of Geodesy and Navigation at the University FAF Munich. Wallner’s main topics of interests are the spreading codes and the signal structure of Galileo and also interference and interoperability issues involving GNSS systems.

Copyright © 2007 Gibbons Media & Research LLC, all rights reserved.