survey

A Survey and Analysis of the GNSS Spoofing Threat and Countermeasures

Authors:
Desmond Schmidt

Queensland University of Technology, Brisbane, Australia

Queensland University of Technology, Brisbane, Australia
View Profile

,
Kenneth Radke

Queensland University of Technology, Brisbane, Australia

Queensland University of Technology, Brisbane, Australia
View Profile

,
Seyit Camtepe

Queensland University of Technology, Brisbane, Australia

Queensland University of Technology, Brisbane, Australia
View Profile

,
Ernest Foo

Queensland University of Technology, Brisbane, Australia

Queensland University of Technology, Brisbane, Australia
View Profile

,
Michał Ren

Adam Mickiewicz University, Poznan, Poland

Adam Mickiewicz University, Poznan, Poland
View Profile

Authors Info & Claims

ACM Computing Surveys Volume 48 Issue 4Article No.: 64pp 1–31https://doi.org/10.1145/2897166

Published:02 May 2016Publication History

ACM Computing Surveys

Abstract

Detection and prevention of global navigation satellite system (GNSS) “spoofing” attacks, or the broadcast of false global navigation satellite system services, has recently attracted much research interest. This survey aims to fill three gaps in the literature: first, to assess in detail the exact nature of threat scenarios posed by spoofing against the most commonly cited targets; second, to investigate the many practical impediments, often underplayed, to carrying out GNSS spoofing attacks in the field; and third, to survey and assess the effectiveness of a wide range of proposed defences against GNSS spoofing. Our conclusion lists promising areas of future research.

References

ABC. 2013. GPS System Monitors Parolees 24/7. Retrieved February 29, 2016, from http://abcnews.go.com/Primetime/story?id=132116.Google Scholar
ACMA. 2013. Mobile Phone & GPS Jamming Devices FAQ. Retrieved February 29, 2016, from http://www.acma.gov.au/theACMA/faqs-mobile-phone-and-gps-jamming-devices-acma.Google Scholar
ACMA. 2014. Taxi Driver Convicted. Retrieved February 29, 2016, from http://www.acma.gov.au/Citizen/Consumer-info/All-about-spectrum/High-risk-devices/taxi-driver-convicted.Google Scholar
Airservices. 2014. GBAS Implementation Program. Retrieved February 29, 2016, from http://www.airservicesaustralia.com/projects/ground-based-augmentation-system-gbas/gbas-implementation-program/.Google Scholar
Ilge Akkaya, Edward A. Lee, and Patricia Derler. 2013. Model-based evaluation of GPS spoofing attacks on power grid sensors. In Proceedings of the Workshop on Modeling and Simulation of Cyber-Physical Energy Systems (MSCPES’13). IEEE, Los Alamitos, CA, 1--6.Google ScholarCross Ref
Dennis M. Akos. 2012. Who’s afraid of the spoofer? GPS/GNSS spoofing detection via automatic gain control (AGC). Journal of Navigation 59, 4, 281--290.Google ScholarCross Ref
AMSA. 2013. Differential Global Positioning System. Retrieved February 29, 2016, from http://www.amsa.gov.au/navigation/services/dgps/.Google Scholar
Galina S. Antonova, Alex Apostolov, Doug Arnold, Stephan Bedrosian, and Christoph Brunner. 2013. Standard profile for use of IEEE STD 1588-2008 precision time protocol (PTP) in power system applications. In Proceedings of the 66th Annual Conference for Protective Relay Engineers. IEEE, Los Alamitos, CA, 1--6.Google ScholarCross Ref
ASKA. 2012. Parallel Generators and Synchronization, Generator Power System Design. Retrieved February 29, 2016, from http://www.aksapowergen.com/pdf/other/Parallel+Generators+Synchronization.pdf.Google Scholar
George T. Becker, Sherman Lo, David Di Lorenzo, Di Qiuand Christof Paar, and Per Enge. 2009. Efficient authentication mechanism for navigation systems—a radio-navigation case study. In Proceedings of the 22nd International Technical Meeting of the Satellite Division of the Institute of Navigation (ION GNSS’09). 901--912.Google Scholar
BeiDou. 2013. BeiDou Navigation Satellite System Signal in Space Interface Control Document Open Service Signal (Version 2.0). Technical Report. China Satellite Navigation Office.Google Scholar
John Betz. 2002. Binary offset carrier modulations for radionavigation. Journal of the Institute of Navigation 48, 4, 227--246s.Google ScholarCross Ref
Blutag. 2012. How to Bypass House Arrest Ankle Monitor. Retrieved February 29, 2016, from http://www.digitaltechnologies-2000.com/how-to-bypass-house-arrest-ankle-bracelet/.Google Scholar
Holly Borowski, Oskar Isoz, Fredrik Marsten Eklöf, Sherman Lo, and Dennis Akos. 2012. Detecting False Signals with Automatic Gain Control. GPS World. Retrieved February 29, 2016, from http://gpsworld.com/detecting-false-signals-automatic-gain-control-12804/.Google Scholar
Broadcom. 2008. Ethernet Time Synchronization. White Paper. Retrieved February 29, 2016, from http://www.broadcom.com/collateral/wp/StrataXGSIV-WP100-R.pdf.Google Scholar
Alison Brown, Jarrett Redd, and Michael Dix. 2013. Open Source Software Defined Radio Platform for GNSS Recording and Simulation. Technical Report. NAVSYS Corporation. http://www.navsys.com/Papers/13-09-001_Open_Source_SDR_Platform_for_GNSS_Recording_and_Simulation.pdf.Google Scholar
James Carroll and Kirk Montgomery. 2008. Global positioning system timing criticality assessment—preliminary performance results. In Proceedings of the 40th Annual Precise Time and Time Interval (PTTI) Meeting. 484--505.Google Scholar
CAST. 2013. CAST-SGX GPS Satellite Simulator. Retrieved February 29, 2016, from http://www.castnav.com/cast_pdf/CASTSGX.pdf.Google Scholar
Antonio Cavaleri, Beatrice Motella, Marco Pini, and Maurizio Fantino. 2010. Detection of spoofed GPS signals at code and carrier tracking level. In Proceedings of the ESA Workshop on Satellite Navigation Technologies and European Workshop on GNSS Signals and Signal Processing (NAVITEC’10). IEEE, Los Alamitos, CA, 1--6.Google ScholarCross Ref
Ran Chengqi. 2012. Development of the Beidou Navigation Satellite System. In Global Navigation Satellite Systems. National Academies Press, Washington, DC, 28--33.Google Scholar
Chronos. 2013. 520 GPS Jammer Detector & Locator. Retrieved February 29, 2016, from http://www.chronos.co.uk/files/pdfs/ctl/ctl3520.pdf.Google Scholar
Chronos. 2014. Sentinel Project Report on GNSS Vulnerabilities. Technical Report. Chronos Technology. http://www.chronos.co.uk/files/pdfs/gps/SENTINEL_Project_Report.pdf.Google Scholar
Cobham. 2015. GPSG-1000 GPS/Galileo Portable Positional Simulator. Retrieved February 29, 2016, from http://www.arsitec.com.br/pdfs/GPSG-1000is.pdf.Google Scholar
Karen Collier and Amelia Harris. 2013. Taxi Cheats Using GPS Jammers to Steal Fares. Retrieved February 29, 2016, from http://www.heraldsun.com.au/news/law-order/taxi-cheats-using-gps-jammers-to-steal-fares/story-fni0fee2-1226756138559.Google Scholar
Peter H. Dana. 1997. Global positioning system (GPS) time dissemination for real-time applications. Real-Time Systems 12, 9--40. Google ScholarDigital Library
Saeed Daneshmand. 2013. GNSS Interference Mitigation Using Antenna Array Processing. Ph.D. Dissertation. School of Engineering, University of Calgary.Google Scholar
Dicom. 2014. GTR51—Time and Frequency Transfer GNSS Receiver. Retrieved February 29, 2016, from http://www.dicom.cz/en/product/1650-time-and-frequency-transfer-gnss-receiver.Google Scholar
A. J. Van Dierendonck. 2012. Impact of international, low power, in-band, personal privace device (PPDs) on aviation. In Global Navigation Satellite Systems. National Academies Press, Washington, DC, 147--152.Google Scholar
Michael Dimino. 1999. Telephone operable global tracking system for vehicles. Patent US 5918180 A.Google Scholar
DOD. 2008. Global Positioning System Standard Positioning Service Performance Standard 4th Edition. Technical Report. U.S. Department of Defense. http://www.gps.gov/technical/ps/2008-SPS-performance-standard.pdf.Google Scholar
Economist. 2011. No jam tomorrow. Economist, 1--6. http://www.economist.com/node/18304246.Google Scholar
Abdelsalam M. Elhaffar. 2008. Power Transmission Line Fault Location Based on Current Traveling Waves. Ph.D. Dissertation. Helsinki University of Technology.Google Scholar
ENISA. 2006. Risk Assessment and Risk Management Methods: Information Packages for Small and Medium Sized Enterprises (SMEs) Deliverable 2 Final Version, Version 1.0. Technical Report. ENISA. http://www.enisa.europa.eu/act/rm/files/deliverables/information-packages-for-small-and-medium-sized-enterprises-smes/at_download/fullReportGoogle Scholar
ETSI. 1996. GSM Technical Specification GSM 05.10. Technical Report. European Telecommunications Standards Institute. http://www.etsi.org/deliver/etsi_gts/05/0510/05.00.00_60/gsmts_0510v050000p.pdf.Google Scholar
Jean-Loup Ferrant, Mike Gilson, Sebastien Jobert, Michael Mayer, Laurent Montini, Michel Ouellette, Silvana Rodrigues, and Stefano Ruffini. 2013. Synchronous Ethernet and IEEE 1588 in Telecoms. Wiley, Hoboken, NJ.Google Scholar
Susan A. Fleming. 2013. Positive Train Control: Additional Authorities Could Benefit Implementation. Retrieved February 29, 2016, from http://www.gao.gov/products/GAO-13-720.Google Scholar
Börje Forssell. 2009. The dangers of GPS/GNSS. Coordinates V, 2, 6--8.Google Scholar
Giulio Gabelli, Ediz Cetin, Ryan J. R. Thompson, Andrew G. Dempster, and Giovanni E. Corazza. 2013. GNSS signal cancellation for enhanced interference detection and localization. In Proceedings of the International Global Navigation Satellite Systems Society IGNSS Symposium. 1--15.Google Scholar
Galileo. 2010. European GNSS (Galileo) Open Service Signal in Space Interface Control Document. Technical Report. European Union and European Space Agency.Google Scholar
GAO. 2013. Report to Congressional Requesters: GPS Disruptions. Technical Report. U.S. Government Accountability Office. http://www.gao.gov/assets/660/658792.pdf.Google Scholar
Alessia Garofalo, Cesario Di Sarno, Luigi Coppolino, and Salvatore D’Antonio. 2013. A GPS spoofing resilient WAMS for Smart Grid, In Dependable Computing. Lecture Notes in Computer Science, Vol. 7869. Springer, 134--147.Google Scholar
GBAS Working Group. 2013. GBAS Approach and Landing Systems. Available at http://flygls.net/.Google Scholar
Jay Giri, David Sun, and Rene Avila-Rosales. 2009. Enhancing grid reliability and stability with a better, smarter, faster control system is the key to avoiding total system collapse. IEEE Power and Energy Magazine March-April, 35--40.Google Scholar
Glonass. 2008. Global Navigation Satellite System GLONASS Interface Control Document Navigational Radiosignal in Bands L1, L2. Technical Report. Russian Institute of Space Device Engineering, Moscow.Google Scholar
GPO. 2008. Public Law 110--432—Rail Safety Improvement Act of 2008. Retrieved March 1, 2016, from https://www.fra.dot.gov/eLib/Details/L03588.Google Scholar
GPS. 1995. Global Positioning System Standard Positioning Service Signal Specification. Technical Report. Global Positioning System. http://www.gps.gov/technical/ps/1995-SPS-signal-specification.pdf.Google Scholar
GPS.GOV. 2013a. Information About GPS Jamming. Retrieved March 1, 2016, from http://www.gps.gov/spectrum/jamming/.Google Scholar
GPS.GOV. 2013b. New Civil Signals. Retrieved March 1, 2016, from http://www.gps.gov/systems/gps/modernization/civilsignals/.Google Scholar
GPS.GOV. 2014. GPS Accuracy. Retrieved March 1, 2016, from http://www.gps.gov/systems/gps/performance/accuracy/.Google Scholar
Anthony Grillo and John P. Veschi. 1999. GPS restraint system and method for confining a subject within a defined area. Patent US 6232916 B1. http://www.google.com.au/patents/US6232916.Google Scholar
Christoph Günter. 2014. A survey of spoofing and counter-measures. Navigation 6, 3, 159--177.Google ScholarCross Ref
Randolph G. Hartman. 1996. Spoofing detection system for a satellite positioning system. Patent US 5557284 A.Google Scholar
Gunter W. Hein, Jose-Angel Avila-Rodríguez, Stefan Wallner, John W. Betz, Chris J. Hegarty, Joseph Rushanan, Andrea L. Kraay, Anthony R. Pratt, Lt. Sean Lenehan, John Owen, Lean-Luc Issler, and Thomas A. Stansell. 2006. MBOC: The new optimized spreading modulation recommended for Galileo L1 OS and GPS L1C. Inside GNSS May-June, 57--66.Google Scholar
Günter W. Hein, Jeremie Godet, Jean-Luc Issler, Jean-Christophe Martin, Phillipe Erhard, Rafael Lucas-Rodriguez, and Tony Pratt. 2002. Status of Galileo frequency and signal design. In Proceedings of the 15thInternational Technical Meeting of the Satellite Division of the Institute of Navigation (ION GPS’02). 34--37.Google Scholar
Gunter W. Hein, Felix Kneissl, Jose-Angel Avila-Rodriguez, and Stefan Wallner. 2007. Authenticating GNSS proofs against spoofs part 2. Inside GNSS September-October, 71--78.Google Scholar
Liang Heng, Jonathan J. Makela, Alejandro D. Dominguez-Garcia, Rakesh B. Bobba, William H. Sanders, and Grace Xingxin Gao. 2014. Reliable GPS-based timing for power systems: A multi-layered multi-receiver architecture. In Proceedings of the IEEE Power and Energy Conference at Illinois. IEEE, Los Alamitos, CA, 1--7.Google ScholarCross Ref
Liang Heng, Daniel B. Work, and Grace Xingxin Gao. 2013. Cooperative GNSS authentication reliability from unreliable peers. Inside GNSS September-October, 70--75.Google Scholar
Todd Humphreys. 2012. UAVs Vulnerable to Civil GPS Spoofing. Retrieved March 1, 2016, from http://www.insidegnss.com/node/3131.Google Scholar
Todd Humphreys. 2013a. Detection strategy for cryptographic GNSS anti-spoofing. IEEE Transactions on Aerospace and Electronic Systems 49, 2, 1073--1090.Google ScholarCross Ref
Todd Humphreys. 2013b. Researchers Steer Off Course to Show Potential Power of ‘GPS Spoofing.’ Retrieved March 1, 2016, from http://www.pbs.org/newshour/bb/science-july-dec13-gps_08-02/.Google Scholar
Todd Humphreys. 2013c. UT Austin Researchers Spoof Superyacht at Sea. Retrieved March 1, 2016, from http://www.engr.utexas.edu/features/superyacht-gps-spoofing.Google Scholar
Todd Humphreys and Brent M. Ledvina. 2010. The GPS assimilator upgrading receivers via benign spoofing. Inside GNSS June, 50--58.Google Scholar
Todd E. Humphreys, Brent M. Ledvina, Mark L. Psiaki, Brady O’Hanlon, and P. M. Kintner Jr. 2008. Assessing the spoofing threat: Development of a portable GPS civilian spoofer. In Proceedings of the International Technical Meeting of the Satellite Division of the Institute of Navigation (ION GNSS’08). 2314--2325.Google Scholar
Todd E. Humphreys, Mark L. Psiaki, and Paul M. Kintner. 2006. GNSS receiver implementation on a DSP: Status, challenges, and prospects. In Proceedings of the 19th International Technical Meeting of the Satellite Division of the Institute of Navigation (ION GNSS’06). 2370--2382.Google Scholar
Michaël Hurtgen and Jean-Claude Maun. 2012. Applications of PMU Measurements in the Belgian Electrical Grid. Technical Report. Belgian Federal Government. http://economie.fgov.be/nl/binaries/20120420_PMU_Final_Report_tcm325-200078.pdf.Google Scholar
Nick Hyde. 2012. Apple Maps gets drivers lost in Australian outback, police warn. Retrieved March 1, 2016, from http://www.cnet.com/au/news/apple-maps-gets-drivers-lost-in-australian-outback-police-warn/.Google Scholar
IEEE. 2002. IEEE P1547/D10 Draft Standard for Interconnecting Distributed Resources with Electric Power Systems. Technical Report. IEEE, Los Alamitos, CA. http://dg.raabassociates.org/Articles/Draft_IEEE_&percnt;20P1547.pdf.Google Scholar
IEEE. 2011. IEEE Std C37.118.2-2011—IEEE Standard for Synchrophasor Data Transfer for Power Systems. Retrieved March 1, 2016, from http://ieeexplore.ieee.org/servlet/opac?punumber=6111220.Google Scholar
IMO. 2004. International Convention for the Safety of Life at Sea. Retrieved March 1, 2016, from http://library.arcticportal.org/1696/1/SOLAS_consolidated_edition2004.pdf.Google Scholar
Oscar Isoz, Denis Akos, Tore Lindgren, Chih-Cheng Sun, and ShauShiun Jan. 2011. Assessment of GP L1/Galileo E1 interference monitoring system for the airport environment. In Proceedings of the 24th International Technical Meeting of the Satellite Division of theInstitute of Navigation (ION GNSS’11). 1920--1930.Google Scholar
Ali Jafarnia-Jahromi. 2013. GNSS Signal Authenticity Verification in the Presence of Structural Interference. Ph.D. Dissertation. Department of Geomatics Engineering, University of Calgary.Google Scholar
Ali Jafarnia-Jahromi, Ali Broumandan, John Nielsen, and Géard Lachapelle. 2012. GPS vulnerability to spoofing threats and a review of antispoofing techniques. International Journal of Navigation and Observation 2012, 1--16.Google ScholarCross Ref
Ali Jafarnia-Jahromi, Saeed Daneshmand, and Gérard Lachapelle. 2013. Spoofing countermeasure for GNSS receivers—a review of current and future research trends. In Proceedings of the 4th International Colloquium on Scientific and Fundamental Aspects of the Galileo Programme European Space Agency. 1--8.Google Scholar
JFC. 2014. Jammer from China. Retrieved March 1, 2016, from http://www.jammerfromchina.com/categories/GPS_Jammers/.Google Scholar
Shengyue Ji, Wu Chen, Xiaoli Ding, Yongqi Chen, Chunmei Zhao, and Congwei Hu. 2010. Potential benefits of GPS/GLONASS/GALILEO integration in an urban canyon—Hong Kong. Journal of Navigation 63, 681--693.Google ScholarCross Ref
Xichen Jiang, Brian J. Harding, and Alejandro D. Domínguez-García. 2013. Spoofing GPS receiver clock offset of phasor measurement units. IEEE Transactions on Power Systems 28, 3, 3253--3262.Google ScholarCross Ref
Chen Jinping. 2012. Analysis of the GNSS augmentation technology architecture. In Global Navigation Satellite Systems. National Academies Press, Washington, DC, 139--144.Google Scholar
Shenzen Juneo. 2015. Shenzen Juneo Technology Limited TK106. Retrieved March 1, 2016, from http://www.tkstargps.com/ProductShow.asp?ID=181.Google Scholar
Hee Jung, Mark L. Psiaki, and Stephen P. Powell. 2003. Kalman-filter-based semi-codeless tracking of weak dual-frequency GPS signals. In Proceedings of the 16th International Technical Meeting of the Satellite Division of the Institute of Navigation (ION GPS/GNSS’03). 2515--2523.Google Scholar
Elliot D. Kaplan. 1996. Understanding GPS Principles and Applications. Artech House, Norwood, MA.Google Scholar
Gorkem Kar, Hossen Mustafa, Yan Wang, Yingying Chen, Wenyuan Xu, Marco Gruteser, and Tam Vu. 2014. Detection of on-road vehicles emanating GPS interference. In Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security (CCS’14). ACM, New York, NY, 621--632. Google ScholarDigital Library
Andrew J. Kerns, Daniel P. Shepard, Jahshan A. Bhatti, and Todd E. Humphreys. 2013. Unmanned Aircraft capture and control via GPS spoofing. Retrieved March 1, 2016, from http://radionavlab.ae.utexas.edu/images/stories/files/papers/unmannedCapture.pdf.Google Scholar
Alfred Kleusberg. 2003. Analytical GPS navigation solution. In Geodesy: The Challenge of the Third Millennium. Springer, Heidelberg, Germany, 93--96.Google Scholar
Hiroaki Koshima and Joseph Hoshen. 2000. Personal locator services emerge. IEEE Spectrum 37, 2, 41--48. Google ScholarDigital Library
Marcus G. Kuhn. 2004. An asymmetric security mechanism for navigation signals. In Information Hiding. Lecture Notes in Computer Science, Vol. 3200. Springer, 239--252. Google ScholarDigital Library
Boris Landoni. 2011. Mini GSM Localizer with GPS. Retrieved March 1, 2016, from http://www.open-electronics.org/mini-gsm-localizer-without-gps/.Google Scholar
Brent M. Ledvina, William J. Bencze, Bryan Galusha, and Issac Miller. 2010. An in-line anti-spoofing device for legacy civil GPS receivers. In Proceedings of the 2010 International Technical Meeting of The Institute of Navigation. San Diego, CA, 698--712.Google Scholar
Peter Levin, David S. De Lorenzo, Per K. Enge, and Sherman C. Lo. 2011. Authenticating a signal based on an unknown component thereof. U.S. Patent 7,969,354 B2.Google Scholar
Sherman Lo and Per Enge. 2010. Authenticating aviation augmentation system broadcasts. In Proceedings of IEEE/ION Position Location and Navigation Symposium (PLANS’10). IEEE, Los Alamitos, CA, 708--717.Google ScholarCross Ref
Sherman Lo, David De Lorenzo, Per Enge, Dennis Akos, and Paul Bradley. 2009. Signal authentication a secure civil GNSS for today. Inside GNSS September-October, 30--39.Google Scholar
Michael A. Lombardi, Lisa M. Nelson, Andrew N. Novick, and Victor S. Zhang. 2001. Time and frequency measurements using the global positioning system. International Journal of Metrology 8, 3, 26--33.Google Scholar
Jaroslaw Magiera and Ryszard Katulski. 2015. Detection and mitigation of GPS spoofing based on antenna array processing. Journal of Applied Research and Technology 131, 1, 45--57.Google ScholarCross Ref
Pratyusa K. Manadhata and Jeanette M. Wing. 2010. An attack surface metric. IEEE Transactions on Software Engineering 37, 3, 1--17. Google ScholarDigital Library
Paul Marks. 2013. Radar Gun Spots Vehicles with Illegal GPS Jammers. Retrieved March 1, 2016, from http://www.newscientist.com/article/dn23984-radar-gun-spots-vehicles-with-illegal-gps-jammers.html.Google Scholar
Charles E. McDowell. 2007. GPS spoofer and repeater mitigation system using spatial nulling. Patent US 7250903 B1.Google Scholar
Meinberg. 2015. Manual LANTIME NTP Server (FW LTOS 6.16). Available at https://www.meinbergglobal.com.Google Scholar
MeitrackUSA. 2015. Meitrack MVT100. Retrieved March 1, 2016, from http://www.meitrackusa.com/trackers/gps-vehicle-trackers/mvt100.Google Scholar
K. Michael, A. McNamee, and M. G. Michael. 2006. The emerging ethics of humancentric GPS tracking and monitoring. In Proceedings of the International Conference on Mobile Business (ICMB’06). IEEE, Los Alamitos, CA, 34. Google ScholarDigital Library
MightyGPS. 2009. Ankle Bracelet GPS Tracker. Retrieved March 1, 2016, from http://www.mightygps.com/Ankle_GPS_tracker.htm.Google Scholar
Paul Y. Montgomery, Todd E. Humphreys, and Brett M. Ledvina. 2009. A multi-antenna defense receiver-autonomous GPS spoofing detection. Inside GNSS March-April, 40--46.Google Scholar
Beatrice Motella, Marco Pini, Maurizio Fantino, and Paolo Mulassano. 2010. Performance assessment of low cost GPS receivers under civilian spoofing attacks. In Proceedings of the 5th ESA Workshop on Satellite Navigation Technologies and the European Workshop on GNSS Signals and Signal Processing (NAVITEC’10). IEEE, Los Alamitos, CA, 1--8.Google ScholarCross Ref
Navstar. 2006. Navstar Global Positioning System Interface Specification IS-GPS-200 Revision D. Technical Report. GPS Joint Program Office. http://www.losangeles.af.mil/shared/media/document/AFD-070803-059.pdf.Google Scholar
NERC. 2012. Extended Loss of GPS Impact on Reliability. Technical Report. North American Electric Reliability Corporation. http://www.nerc.com/docs/escc/PNT%20-%20Power%20Systems%20V19.pdf.Google Scholar
John Nielsen, Ali Broumandan, and Gérard Lachapelle. 2011. GNSS spoofing detection for single antenna handheld receivers. Navigation 58, 4, 335--344.Google ScholarCross Ref
Tyler Nighswander, Brent Ledvina, Johnathan Diamond, Robert Brumley, and David Brumley. 2012. GPS software attacks. In Proceedings of the 2012 ACM Conference on Computer and Communications Security. ACM, New York, NY, 450--461. Google ScholarDigital Library
JSC NIIAS. 2015. JSC NIIAS Research & Design Institute for Information Technology, Signalling and Telecommunications on Railway Transport. Retrieved March 1, 2016, from http://www.vniias.ru/en/images/stories/docs/niias_brochure_en.pdf.Google Scholar
NIST. 2012. Guide for Conducting Risk Assessments NIST Special Publication 800-30 Revision 1. Technical Report. National Institute of Standards and Technology (NIST). http://csrc.nist.gov/publications/nistpubs/800-30-rev1/sp800_30_r1.pdf.Google Scholar
NTSB. 1997. Grounding of the Panamanian Passenger Ship Royal Majesty on Rose and Crown Shoal Near Nantucket, Massachusetts June 10, 1995. Technical Report. National Transportation Safety Board. http://www.ntsb.gov/investigations/AccidentReports/Reports/mar9701.pdf.Google Scholar
Brady W. O’Hanlon, Mark L. Psiaki, Jahshan A. Bhatti, Daniel P. Shepard, and Todd E. Humphreys. 2013. Real-time GPS spoofing detection via correlation of encrypted signals. Navigation 60, 4, 267--278.Google ScholarCross Ref
Jorge L. Olenewa. 2014. Guide to Wireless Communications (3rd ed.). Cengage Learning, Boston, MA. Google ScholarDigital Library
Mario Paolone, Alberto Borghetti, and Carlo A. Nucci. 2009. Development of an RTU for synchrophasors estimation in active distribution networks. In Proceedings of the IEEE Bucharest Power Tech Conference. 1--6.Google Scholar
Panagiotis Papadimitratos and Aleksander Jovanovic. 2008a. GNSS-based positioning: Attacks and countermeasures In Proceedings of the IEEE Military Communications Conference (MILCOM’08). 3168--3174.Google Scholar
Pangiotis Papadimitratos and Aleksander Jovanovic. 2008b. Protection and fundamental vulnerability of GNSS. In Proceedings of the IEEE International Workshop on Satellite and Space Communications (IWSSC’08). IEEE, Los Alamitos, CA, 167--171.Google ScholarCross Ref
Brian K. Payne, David C. May, and Peter B. Wood. 2014. The ‘pains’ of electronic monitoring: A slap on the wrist or just as bad as prison? Criminal Justice Studies 27, 2, 133--148.Google ScholarCross Ref
Adrian Perrig, Ran Canetti, Doug Tygar, and Dawn Song. 2002. The TESLA broadcast authentication protocol. CryptoBytes 5, 2, 2--13.Google Scholar
Scott Peterson and Payam Faramarzi. 2011. Exclusive: Iran Hijacked US Drone, Says Iranian Engineer (Video). Retrieved March 1, 2016, from http://www.csmonitor.com/World/Middle-East/2011/1215/Exclusive-Iran-hijacked-US-drone-says-Iranian-engineer-Video.Google Scholar
IIvan Petrovski and Takuji Ebinuma. 2010. Everything you always wanted to know about GNSS simulators but were afraid to ask. Inside GNSS September, 48--58.Google Scholar
PNT. 2010. National PNT Advisory Board Comments on Jamming the Global Positioning System: A National Security Threat: Recent Events and Potential Cures. White Paper. National Space-Based Positioning, Navigation, and Timing (PNT) Advisory Board. http://www.gps.gov/governance/advisory/recommendations/2010-11-jammingwhitepaper.pdf.Google Scholar
Oscar Pozzobon. 2004. Secure tracking using trusted GNSS receivers and Galileo authentication services. Journal of Global Positioning Systems 3, 1--2, 200--207.Google ScholarCross Ref
Oscar Pozzobon. 2011. Keeping the spoofs out signal authentication for future GNSS. Inside GNSS May-June, 48--56.Google Scholar
Mark L. Psiaki, Barry W. O’Hanlon, Jahshan A. Bhatti, Daniel P. Shepard, and Todd E. Humphreys. 2011. GPS spoofing detection via dual-receiver correlation of military signals. IEEE Transactions on Aerospace and Electronic Systems 49, 4, 2250--2267.Google ScholarCross Ref
Mark L. Psiaki, Steven P. Powell, and Brady W. O’Hanlon. 2013. Correlating Carrier Phase with Rapid Antenna Motion. Retrieved March 1, 2016, from http://gpsworld.com/innovation-gnss-spoofing-detection-correlating-carrier-phase-with-rapid-antenna-motion/.Google Scholar
Rama Rao, Eddie N. Rosario, and Robert J. Davis. 2006. Radiation pattern analysis of aircraft mounted GPS antennas and verification through scale model testing. In Proceedings of the IEEE/ION PLANS Meeting. IEEE, Los Alamitos, CA, 306--318.Google Scholar
RAoE. 2011. Global Navigation Space Systems: Reliance and Vulnerabilities. Technical Report. Royal Academy of Engineering. http://www.raeng.org.uk/news/publications/list/reports/RAoE_Global_Navigation_Systems_Report.pdf.Google Scholar
Schweitzer. 2014. SEL-3378 Synchrophasor Vector Processor. Retrieved March 1, 2016, from https://selinc.com/products/3378/.Google Scholar
Schweizer. 2015. Dependable Communications for Critical Infrastructure. Available at https://www.selinc.com/ICON/.Google Scholar
Logan Scott. 2003. Anti-spoofing and authenticated signal architectures for civil navigation systems. In Proceedings of the Institute of Navigation GPS/GNSS Conference. 1543--1552.Google Scholar
Logan Scott. 2011. Receiver Certification: Making the GNSS Environment Hostile to Jammers & Spoofers. Retrieved March 1, 2016, from http://www.gps.gov/governance/advisory/meetings/2011-11/scott.pdf.Google Scholar
Daniel P. Shepard and Todd E. Humphreys. 2011. Characterization of receiver response to spoofing attacks. In Proceedings of the 24th International Technical Meeting of the Satellite Division of the Institute of Navigation (ION GNSS’11). 2608--2618. http://radionavlab.ae.utexas.edu/images/stories/files/papers/spcharION2011.pdf.Google Scholar
Daniel P. Shepard, Todd E. Humphreys, and Aaron A. Fansler. 2012. Evaluation of the vulnerability of phasor measurement units to GPS spoofing attacks. International Journal of Critical Infrastructure Protection 5, 3--4, 146--153.Google ScholarCross Ref
Peter F. Swaszek, Richard J. Hartnett, Matthew V. Kempe, and Gregory W. Johnson. 2013. Analysis of a simple, multi-receiver GPS spoof detector. In Proceedings of the 2013 International Technical Meeting of the Institute of Navigation. 884--892.Google Scholar
Peter F. Swaszek, Scott A. Pratz, Benjamin N. Arocho, Kelly C. Seals, and Richard J. Hartnett. 2014. GNSS spoof detection using Shipboard IMU measurements. In Proceedings of the 27th International Technical Meeting of the Satellite Division of the Institute of Navigation (ION GNSS’14). 745--758.Google Scholar
Symmetricom. 2014. XLi Time and Frequency System Data Sheet—XLi. Retrieved March 1, 2016, from http://www.microsemi.com/products/timing-synchronization-systems/time-frequency-distribution/gps-instruments/xli.Google Scholar
Michael J. Thompson. 2012. Fundamentals and advancements in generator synchronizing systems. In Proceedings of the 65th Annual Conference for Protective Relay Engineers. IEEE, Los Alamitos, CA, 203--214. http://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber==6201234.Google ScholarCross Ref
Nils Ole Tippenhauer, Christina Pöpper, Kaspar B. Rasmussen, and Srdjan Capkun. 2011. On the requirements for successful GPS spoofing attacks. In Proceedings of the 18th ACM Conference on Computer and Communications Security (CCS’11). ACM, New York, NY, 75--86. Google ScholarDigital Library
Trimble. 2013. Resolution SMT GG Multi-GNSS Timing Module User Guide. Trimble Navigation Limited, Sunnyvale, CA.Google Scholar
U-blox. 2013. AMY-5M: World’s smallest GPS receiver module. Retrieved March 1, 2016, from http://www.u-blox.com/en/amy-5m.html.Google Scholar
US-Cert. 2015. Advisory (ICSA-14-345-01) Arbiter Systems 1094B GPS Clock Spoofing Vulnerability. Retrieved March 1, 2016, from https://ics-cert.us-cert.gov/advisories/ICSA-14-345-01.Google Scholar
Sandra Verhagen and Peter J. G. Teuissen. 2013. Ambiguity resolution performance with GPS and BeiDou for LEO formation flying. Advances in Space Research 54, 5, 830--839.Google ScholarCross Ref
Volpe. 2001. Vulnerability Assessment of the Transportation Infrastructure Relying on the Global Positioning System. Final Report, 2001. Technical Report. John A. Volpe National Transportation Systems Center.Google Scholar
Jon S. Warner and Roger G. Johnson. 2002. A simple demonstration that the global positioning system (GPS) is vulnerable to spoofing. Journal of Security Administration 25, 19--28.Google Scholar
Jon S. Warner and Roger G. Johnston. 2003. GPS Spoofing Countermeasures. Retrieved March 1, 2016, from http://permalink.lanl.gov/object/tr?what=info:lanl-repo/lareport/LA-UR-03-6163.Google Scholar
Marc Weiss. 2012. Telecom Requirements for Time and Frequency Synchronization. Retrieved March 1, 2016, from http://www.gps.gov/cgsic/meetings/2012/weiss1.pdf.Google Scholar
Mark Weiss. 2013. GPS Vulnerability in Mobile Networks. Retrieved March 1, 2016, from http://www.gps.gov/multimedia/presentations/2013/12/MNSS/weiss.pdf.Google Scholar
Kyle Wesson, Mark Rothlisberger, and Todd Humphreys. 2012. Practical cryptographic civil GPS signal authentication. In Proceedings of the 24th International Technical Meeting of the Satellite Division of the Institute of Navigation (ION GNSS’12). 3335--3345.Google ScholarCross Ref
Kyle Wesson, Daniel Shepard, Jahshan Bhatti, and Todd E. Humphreys. 2011. An evaluation of the vestigial signal defense for civil GPS anti-spoofing. In Proceedings of the 24th International Technical Meeting of the Satellite Division of the Institute of Navigation (ION GNSS’11). 1--11.Google Scholar
Chuck Wheatley. 1999. Self-synchronizing a CDMA cellular network. Microwave Journal May, 320--328.Google Scholar
Dale Williston and Dale Finney. 2011. Consequences of Out-of-Phase Reclosing on Feeders with Distributed Generators. Technical Report. Schweitzer Engineering Laboratories Inc. http://grouper.ieee.org/groups/scc21/1547.8/email/pdfX2pEArHjt0.pdf.Google Scholar
Allen J. Wood, Bruce F. Wollenberg, and Gerald B. Sheblé. 2014. Power Generation, Operation and Generation (3rd ed.). Wiley, Hoboken, NJ.Google Scholar
Willian Wright, Michael Russell, and John Brockhaus. 2011. Myth busted: Civilian receivers actually do have access to the L2 frequency. Army Space Journal Fall-Winter, 46--47. http://www.dtic.mil/dtic/tr/fulltext/u2/a538975.pdf.Google Scholar
Chris Wullems, Oscar Pozzobon, and Kurt Kubik. 2005. Signal authentication and integrity schemes for next generation global navigation satellite systems. In Proceedings of the European Navigation Conference (GNSS’05). 1--10.Google Scholar
Der-Yeuan Yu, Aanjhan Ranganathan, Thomas Locher, Srdjan Capkun, and David Basin. 2014. Short paper: Detection of GPS spoofing attacks in power grids. In Proceedings of the 2014 ACM Conference on Security and Privacy in Wireless and Mobile Networks. ACM, New York, NY, 99--104. Google ScholarDigital Library
Sandra Zaragoza. 2013. Spoofing a Superyacht at Sea. Retrieved March 1, 2016, from http://www.utexas.edu/know/2013/07/30/spoofing-a-superyacht-at-sea/.Google Scholar
Zhenghao Zhang, Matthew Trinkle, Lijun Qian, and Husheng Li. 2012. Quickest detection of GPS spoofing attack. In Proceedings of the Military Communications Conference. IEEE, Los Alamitos, CA, 1--6.Google ScholarCross Ref

Index Terms

Recommendations

Relay/replay attacks on GNSS signals
WiSec '21: Proceedings of the 14th ACM Conference on Security and Privacy in Wireless and Mobile Networks

Global Navigation Satellite Systems (GNSSs) are ubiquitously relied upon for positioning and timing. Detection and prevention of attacks against GNSS have been researched over the last decades, but many of these attacks and countermeasures were ...
Read More
Denial-of-service attacks and countermeasures on BitTorrent

BitTorrent has been widely used for the efficient distribution of files, such as digital content and media files, to very large numbers of users. However, previous work has exposed vulnerabilities in the protocol and demonstrated that they can be ...
Read More
Tradeoff between spoofing and jamming a cognitive radio
Asilomar'09: Proceedings of the 43rd Asilomar conference on Signals, systems and computers

Recent studies show that spectrum sensing in cognitive radio exposes vulnerabilities to adversaries. An intelligent adversary can launch sensing disruption in the sensing duration, by putting spoofing signals in allowable bands to prevent secondary ...
Read More

Comments

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Article

Published in
ACM Computing Surveys Volume 48, Issue 4
May 2016
605 pages
ISSN:0360-0300
EISSN:1557-7341
DOI:10.1145/2891449
Editor:
Sartaj Sahni
Department of Computer and Information Science and Engineering/University of Florida/Gainesville, FL
Issue’s Table of Contents
Copyright © 2016 ACM
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]
Sponsors
In-Cooperation
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
- Published: 2 May 2016
- Accepted: 1 February 2016
- Revised: 1 January 2016
- Received: 1 November 2014
Published in csur Volume 48, Issue 4

Permissions
Request permissions about this article.
Request Permissions

Check for updates
Author Tags
GNSS
Global navigation satellite system
attacks
constellation
denial-of-service
jamming
navigation
spoofing
timing
vulnerability
Qualifiers
- survey
- Research
- Refereed
Conference
Funding Sources
Other Metrics
View Article Metrics

Article Metrics
- 133
  Total Citations
  View Citations
- 2,026
  Total Downloads
- Downloads (Last 12 months)255
- Downloads (Last 6 weeks)29
Other Metrics
View Author Metrics
Cited By
View all

PDF Format

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

A Survey and Analysis of the GNSS Spoofing Threat and Countermeasures

ACM Computing Surveys

Abstract

References

Cited By

Index Terms

Recommendations

Relay/replay attacks on GNSS signals

Denial-of-service attacks and countermeasures on BitTorrent

Tradeoff between spoofing and jamming a cognitive radio