Commercial Flights Are Experiencing ‘Unthinkable’ GPS Attacks and Nobody Knows What to Do::New “spoofing” attacks resulting in total navigation failure have been occurring above the Middle East for months, which is “highly significant” for airline safety.

  • @[email protected]
    link
    fedilink
    English
    61 year ago

    But if they had authentication you would know that the message doesn’t come from a legitimate satélite.

    • Gormadt
      link
      fedilink
      English
      8
      edit-2
      1 year ago

      If their isn’t then there’s a big problem with implementing that now, which would require a retrofit of every single GPS system currently in use and likely a replacement of all GPS satellites

      Edit: I’m slightly mistaken, the military uses encryption but they don’t have that open for public use.

      • @[email protected]
        link
        fedilink
        English
        21 year ago

        I would hope whoever designed the satellites had the foresight to allow remote software updates.

        • @x4740N
          link
          English
          01 year ago

          Software updates become useless if you hit hardware limitations

    • @[email protected]
      link
      fedilink
      English
      -21 year ago

      you can’t have authentication in a one way system. satellites send days, planes receive it, but never send anything.

      • Nailbar
        link
        fedilink
        English
        61 year ago

        You can have a digital signature, so the recievers know it’s legit

          • Nailbar
            link
            fedilink
            English
            21 year ago

            Playing with semantics a little, it can be thought of as the satellite authenticating with the client using the signature as password.

        • @x4740N
          link
          English
          -31 year ago

          deleted by creator

          • Nailbar
            link
            fedilink
            English
            11 year ago

            You can’t copy a signature, since it is different every time the signed content is different. You need to have the correct key in order to make a valid signature.

          • @[email protected]
            link
            fedilink
            English
            11 year ago

            If you’ve figured out how to do that, a lot of governments would pay you a lot of money for your solution