The threat of signal spoofing against global navigation satellite systems (GNSS) has grown in recent years and has motivated the study of anti-spoofing techniques. This article addresses the challenge of verifying the authenticity of signals protected by spreading code authentication (SCA). Conventional methods rely on either the correlation or cross-energy checks between the received signal and a local replica of the transmitted signal generated by the verifier using the authentic code. However, these methods are vulnerable to specific attacks. In particular, we show how to forge an effective spoofing signal just by using publicly available information. As a countermeasure, we propose a two-step authentication protocol leveraging the statistical independence of legitimate signals. First, we define a reliability metric based on the generalized likelihood ratio (GLR) for each signal, with higher values indicating greater signal reliability. In the second step, we select the most reliable signals to compute the PVT and perform a multi-signal authentication check, combining the reliability metrics to validate the authenticity of the final PVT solution. Its robustness is proved by testing it against a wide class of attacks. Among others, these includes the optimal attack against the cross-energy check and the attack which will be proven to be statistically optimal against the proposed check itself. Finally, we also test the performance of the scheme in a scenario where only a subset of the signals has been spoofed.
Enhancing Spreading Code Authentication in GNSS: A Statistical Multisignal Approach
Ardizzon, Francesco
;Crosara, Laura;Tomasin, Stefano;Laurenti, Nicola
2025
Abstract
The threat of signal spoofing against global navigation satellite systems (GNSS) has grown in recent years and has motivated the study of anti-spoofing techniques. This article addresses the challenge of verifying the authenticity of signals protected by spreading code authentication (SCA). Conventional methods rely on either the correlation or cross-energy checks between the received signal and a local replica of the transmitted signal generated by the verifier using the authentic code. However, these methods are vulnerable to specific attacks. In particular, we show how to forge an effective spoofing signal just by using publicly available information. As a countermeasure, we propose a two-step authentication protocol leveraging the statistical independence of legitimate signals. First, we define a reliability metric based on the generalized likelihood ratio (GLR) for each signal, with higher values indicating greater signal reliability. In the second step, we select the most reliable signals to compute the PVT and perform a multi-signal authentication check, combining the reliability metrics to validate the authenticity of the final PVT solution. Its robustness is proved by testing it against a wide class of attacks. Among others, these includes the optimal attack against the cross-energy check and the attack which will be proven to be statistically optimal against the proposed check itself. Finally, we also test the performance of the scheme in a scenario where only a subset of the signals has been spoofed.
| File | Dimensione | Formato | |
|---|---|---|---|
|
Enhancing_Spreading_Code_Authentication_in_GNSS_A_Statistical_Multisignal_Approach.pdf
accesso aperto
Tipologia:
Published (Publisher's Version of Record)
Licenza:
Creative commons
Dimensione
1.43 MB
Formato
Adobe PDF
|
1.43 MB | Adobe PDF | Visualizza/Apri |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
