Design Of Navigation Message Authentication For GNSS Services

Civil service of global navigation satellite system(GNSS)is vulnerable to spoofing attacks since the signal structure is open to be accessed for the construction of spoofing signals.Well-designed spoofing signal may precisely manipulate the positioning and timing output of GNSS receivers.There is an increasing number of applications rely on GNSS service in modern society,such as civil aviation and unmanned vehicle.These applications are also concerned about life security.Hence reliable method in spoofing detection is significant for GNSS security.In this paper,a variety of GNSS navigation message authentication(NMA)schemes are designed through information source,authentication algorithm and protocol methods.The performance of these schemes are evaluated.Main research results of the paper are as follows:(1)A self-certified anti-spoofing navigation message structure was designed for constrained data links containing only navigation satellites and receivers.Legacy NMA schemes suffer from low authenticate rate due to low bit rate of navigation message.In order to improve the efficacy of NMA scheme,a hybrid of signature and key serial is an adaptable choice.By setting up a two-level authentication protocol,the data and key distribution can be supported with the digital signature authentication scheme.The proposed scheme has the advantages of lower false alarm probability compared with the traditional NMA method under the premise of guaranteeing the security.The program also overcomes the disadvantages of traditional timed efficient stream loss-tolerant authentication schemes that rely much on key distribution.(2)An NMA scheme assisted by mobile communication network is designed for satellite navigation receivers with the capability to access mobile network.Different from satellite and augmentation links,mobile network contains both uplink and downlink channels.This guarantees a customized authentication scheme.In the design,receivers send requests for NMA information and base stations send back the reply.The scheme can achieve the resolution of 1bit for navigation message with size up to 2048 bit.And authentications for navigation message with size over 2048 bit have the resolution of one-eighth of the total message size.The security of the scheme is guaranteed by the LTE communication security and digital signature schemes,and the authentication time interval is adjustable.(3)Aiming at the satellite navigation receiver in assisting of the ground based augmentation system(GBAS),the NMA augment information of the GBAS is designed.GBAS is also a broadcast system serving all receivers with the same augmentation signal.By adding two new message types,such as navigation message authentication information and augment signal authentication information,the GBAS is able to improve the security of the navigation message and the augment signal itself.Under a broadcast message speed over 1.28 kbps,the scheme reduces the initial authentication time to less than 10 seconds and ensures that the authentication interval is reduced to 6 seconds.Finally,the research results of this paper are summarized,and the future research direction of each research content is put forward.The future research on the field of satellite navigation message authentication is also discussed.This article studies the civil satellite navigation message security in the future satellite navigation and life safety relations will play an increasingly important role.