This demonstration of GPS/GNSS spoofing exhibits a semi-autonomous automotive being misled into taking the fallacious street.
At the moment on the IAA (Worldwide Motor Present) in Frankfurt, Regulus Cyber introduced a brand new software-only GPS spoof detection product. This product, Pyramid GNSS, is what the corporate was hyping when it executed a Pied Piper assault on a Tesla Mannequin S this June.
Regulus Cyber demonstrated the brand new product, Pyramid GNSS, to us yesterday by way of Internet convention from the IAA. Pyramid GNSS was operating on a Linux-powered laptop computer with GPS receiver and efficiently intercepted spoofed GNSS indicators coming from one other laptop computer with a software-defined radio just a few toes away. An iPhone in the identical room picked up the spoofed GPS indicators and erroneously confirmed itself driving down a close-by freeway. However the laptop computer operating Pyramid—which had a duplicate of what gave the impression to be Google Maps operating—remained stationary.
It is essential to acknowledge what this answer is not, after all. Pyramid GNSS doesn’t allow a protected system to get appropriate positioning information when its GPS receiver is being spoofed—it simply prevents the system from believing and performing on the false information.
In the true world, you’ll be able to take a look at this as downgrading an precise GPS hack to a easy denial of service. A navigation system protected by Pyramid GNSS wouldn’t be misled by false GPS information, but it surely nonetheless would not have entry to actual GPS information both. Such a navigation system could be compelled to make do with its different sensors (cameras, accelerometers, inertial navigation) so long as the spoofed sign was concentrating on it.
Regulus is, sadly, enjoying its playing cards extraordinarily near the vest by way of how the system works. “We have realized how one can understand anomalies between professional GNSS indicators and spoofed indicators by researching the variations within the satellite tv for pc indicators protocol and recognizing the inter-relationships between sign parameters,” CTO and co-founder Yoav Zangvil explains within the press launch; this and the system diagram provided to Ars do not add as much as a lot past “this works.” The video demonstration was convincing, nevertheless, each in its minor frustrations (the unprotected iPhone was gradual to acknowledge the spoofed GPS sign and start “transferring”) in addition to its successes.
Ars requested a check package, however Regulus Cyber’s attorneys denied it resulting from issues round “educating somebody to hack GPS.” Assuming Pyramid GNSS holds up below extra rigorous, hands-on testing—and Regulus can persuade OEMs to license it—its software-only nature ought to lend itself to simple, widespread adoption, notably in Android and different Linux-based gadgets.
Itemizing picture by Martin Vorel / Libreshot