GNSS Jamming: A Short Survival Guide

Similar documents
RFI Impact on Ground Based Augmentation Systems (GBAS)

Surviving and Operating Through GPS Denial and Deception Attack. Nathan Shults Kiewit Engineering Group Aaron Fansler AMPEX Intelligent Systems

Navigation für herausfordernde Anwendungen Robuste Satellitennavigation für sicherheitskritische Anwendungen

A Multi-State Notch Filter for GNSS Jamming Mitigation

Impact of Jamming Attack on Galileo Receivers

Impact of Personal Privacy Devices for WAAS Aviation Users

Lab on GNSS Signal Processing Part I

Jamming and Spoofing of GNSS Signals An Underestimated Risk?!

MHz. Figure 1: spectrum plot of the L1 band without interference with the GPS L1C/A central frequency indicated

RESEARCH ON METHODS FOR ANALYZING AND PROCESSING SIGNALS USED BY INTERCEPTION SYSTEMS WITH SPECIAL APPLICATIONS

A Simulation Tool for Space-time Adaptive Processing in GPS

The Effect of Radio Frequency Interference on GNSS Signals and Mitigation Techniques Presented by Dr. Tarek Attia

Optimization of DWT parameters for jamming excision in DSSS Systems

A Novel Cognitive Anti-jamming Stochastic Game

GNSS RFI/Spoofing: Detection, Localization, & Mitigation

The Case for Recording IF Data for GNSS Signal Forensic Analysis Using a SDR

On Practical Selective Jamming of Bluetooth Low Energy Advertising

The European Commission s science and knowledge service. Joint Research Centre

STRIKE3 Standardization of GNSS Threat reporting and Receiver testing through International Knowledge Exchange, Experimentation and Exploitation

Department of Geomatics Engineering Mohammad Abdizadeh

GNSS Ionospheric Activities in JRC-ISPRA

GNSS Interference Detection and Mitigation for UAV Navigation. May 22 nd, 2014

Antenna Arrays for Robust GNSS in Challenging Environments Presented by Andriy Konovaltsev

GIDAS GNSS Interference Detection & Analysis System

Security of Global Navigation Satellite Systems (GNSS) GPS Fundamentals GPS Signal Spoofing Attack Spoofing Detection Techniques

The Importance of Bit Depth in GNSS Record and Playback Testing

GNSS Threats at Airports and detecting them

Latest Update on GPS Jamming & Susceptibility Trials

Satellite Navigation Principle and performance of GPS receivers

EFFECT OF PPD TYPE JAMMERS ON AVIATION GPS RECEIVERS

Introduction GNSS RF interference. Jan-Joris van Es (NLR) January 2018

LOW POWER GLOBAL NAVIGATION SATELLITE SYSTEM (GNSS) SIGNAL DETECTION AND PROCESSING

GPS Interference detected in Sydney-Australia

White Paper. GPS Jamming. Increasing system resilience to counteract intentional and unintentional GPS signal interferences

GPS jamming

When Will Terrorists Start Spoofing GPS?

Automotive Radar Sensors and Congested Radio Spectrum: An Urban Electronic Battlefield?

A Review of Vulnerabilities of ADS-B

ECE 630: Statistical Communication Theory

COMPARISON OF JAMMING EXCISION METHODS FOR DIRECT SEQUENCE/SPREAD SPECTRUM (DS/SS) MODULATED SIGNAL

GPS Time Synchronization with World-Class Accuracy using a Few Selected Satellites

Report on GPS Jamming Trials and Criminal Use of Jammers

Experience with Radio Navigation Satellite Service (RNSS)

B SCITEQ. Transceiver and System Design for Digital Communications. Scott R. Bullock, P.E. Third Edition. SciTech Publishing, Inc.

GNSS Spoofing, Jamming, and Multipath Interference Classification using a Maximum-Likelihood Multi-Tap Multipath Estimator

Improving the Resilience to Interference of a GNSS Reference Station

DADS with short spreading sequences for high data rate communications or improved BER performance

TACOT Project. Trusted multi Application receiver for Trucks. Bordeaux, 4 June 2014

NovAtel OEM7 Interference Toolkit

Testing of the Interference Immunity of the GNSS Receiver for UAVs and Drones

Black Swans and White Elephants GPS Jamming and Resilient PNT

Digital Modulation Recognition Based on Feature, Spectrum and Phase Analysis and its Testing with Disturbed Signals

S a t e l l i t e T i m e a n d L o c a t i o n. N o v e m b e r John Fischer VP Advanced R&D

Multi-Receiver Vector Tracking

The Galileo signal in space (SiS)

& REACTIVE RCIED JAMMING

An ultra-low-cost antenna array frontend for GNSS application

Narrow Band Interference (NBI) Mitigation Technique for TH-PPM UWB Systems in IEEE a Channel Using Wavelet Packet Transform

Modern radio techniques

Wireless Network Security Spring 2014

UNIVERSITY OF CALGARY. Detection, Characterization and Mitigation of GNSS Jamming Interference Using. Pre-Correlation Methods. Nahal Fadaei A THESIS

CONVERGENCE BETWEEN SIGNALS INTELLIGENCE AND ELECTRONIC WARFARE SUPPORT MEASURES

A Novel Interference Rejection Method for GPS Receivers

Interference of Chirp Sequence Radars by OFDM Radars at 77 GHz

Lab on GNSS Signal Processing Part II

Research Article Design and Simulation of a Fully Digitized GNSS Receiver Front-End

Alternative Positioning, Navigation and Timing (APNT) for Performance Based Navigation (PBN)

Jamming-resistant Broadcast Communication without Shared Keys

Jamming Wireless Networks: Attack and Defense Strategies

Optical Delay Line Application Note

Vector tracking loops are a type

RESPONSE TO THE HOUSE OF COMMONS TRANSPORT SELECT COMMITTEE INQUIRY INTO GALILEO. Memorandum submitted by The Royal Academy of Engineering

Design and Experiment of Adaptive Anti-saturation and Anti-jamming Modules for GPS Receiver Based on 4-antenna Array

NOISE, INTERFERENCE, & DATA RATES

Acquisition and Tracking of IRNSS Receiver on MATLAB and Xilinx

Developing a GNSS resiliency framework for timing receivers. By Guy Buesnel and Adam Price Spirent Communications, October 2017

Method, algorithm and implementation of vehicles GNSS information protection with help of anti-jamming and anti-spoofing

"Higher Robustness of GNSS Receiver through Interference Mitigation Techniques for Single-Element Antenna Concepts"

A feasibility study of CDMA technology for ATC. Summary

DVT Research Group A joint research group between Ilmenau University of Technology and Fraunhofer Institute for Integrated Circuits IIS

Jammer Acquisition with GPS Exploration and Reconnaissance JÄGER

Radio Frequency Interference Detection to Support the Use of GNSS in ITS

GPS Jamming Quantifying the Threat

GPS ANTENNA WITH METALLIC CONICAL STRUC- TURE FOR ANTI-JAMMING APPLICATIONS

IMPULSIVE NOISE MITIGATION IN OFDM SYSTEMS USING SPARSE BAYESIAN LEARNING

OFDM and MC-CDMA A Primer

A Novel Approach for the Characterization of FSK Low Probability of Intercept Radar Signals Via Application of the Reassignment Method

ANTI-JAMMING PERFORMANCE OF COGNITIVE RADIO NETWORKS. Xiaohua Li and Wednel Cadeau

GPS Receiver Autonomous Interference Detection

Wireless systems. includes issues of

Frequency Hopping Spread Spectrum Recognition Based on Discrete Fourier Transform and Skewness and Kurtosis

Simulation of Anti-Jamming Technology in Frequency-Hopping Communication System

Techniques to reduce electromagnetic noise produced by wired electronic devices

SPECTRAL SEPARATION COEFFICIENTS FOR DIGITAL GNSS RECEIVERS

GNSS Technologies. GNSS Acquisition Dr. Zahidul Bhuiyan Finnish Geospatial Research Institute, National Land Survey

Chapter 4 Investigation of OFDM Synchronization Techniques

Receiver Designs for the Radio Channel

Electronic Attacks against FM, DAB Wissenschaft + Technologie. and DVB-T based Passive Radar Systems

Lecture 9: Spread Spectrum Modulation Techniques

A Hybrid Indoor Tracking System for First Responders

Transcription:

GNSS Jamming: A Short Survival Guide Daniele Borio 15-16 November 2016 International Technical Symposium on Navigation and Timing (ITSN 2016) The European Commission s science and knowledge service 1 Joint Research Centre

2

Jamming the act of intentionally directing electromagnetic energy towards a communication (and navigation) system to disrupt or prevent signal transmission/reception Jamming is all about getting sufficient energy into the victim receiver at the right time and in the right place Adrian Graham. Communications, Radar and Electronic Warfare. John Wiley & Sons, January 2011. GNSS: from electronic warfare to privacy protection 3

Jamming Encounters Growing number of jamming events reported all around the world Newark Airport case: RFI events since 2009, impact on GBAS system In 2012, use of direction finding techniques to identify the jamming source: a red Ford F-150 pickup. Truck driver fired and fined ($31875) Jammers: used by burglars and for criminal activities State-based jamming 4

On the Road Car test - approximately 30 min (~65 Km) Highway test: open sky conditions no obstructions or tunnels PDOP < 2.5 Android phone used to collect data and to perform jamming detection Possible jamming events detected comparing a decision statistic with a decision threshold 5

On the Road: Detection Metrics 6

Highway section a) 7

Highway sections b) & c) 8

Jamming Signals (know you enemy) i( t) Aexp j2 f ( t) t j j Almost constant amplitude Almost periodic frequency pattern Large sweep ranges in the frequency domain Signals with a single frequency component Signals on several frequency bands (not only GNSS) 9

Sweep Parameters Significant variability among sweep parameters Noticeable differences also among jammers of the same model: effect of cheap local oscillators Sweep periods: from about 5 to 40 µs in the L1 band 9 µs: most typical value Large sweep ranges: greater than 10 MHz Signals in non-gnss bands: much slower sweep periods (6 times larger for J03) Statistics obtained combining experimental results (JRC) with the findings from (Mitch et al. 2011) 10

Power Levels Significant variability among power parameters, also among jammers of the same model Cigarette lighter jammers: lower power levels than multifrequency battery jammers Signals in non-gnss bands: much more powerful (up to 4W) Statistics obtained combining experimental results (JRC) with the findings from (Mitch et al. 2011) 11

Defenses Internal Modulation defenses Antenna defenses Front-end level defenses Signal Processing defenses Obs & Nav Level defenses Receiver Level Techniques: Detection and Mitigation External Detection and Location Systems Dedicated Infrastructures: threat Detection and Location Back-up Systems Dedicated Infrastructures: e.g. eloran 12

Receiver Level Defenses Detection: process of revealing the presence of jamming it is a hypothesis testing problem (GNSS signal acquisition: determine the GNSS signal presence) Mitigation: process of reducing the jamming impact ideally: remove jamming signals which need to be reconstructed it is an estimation problem (analogy with GNSS signal tracking) Detection and mitigation are often implemented together Natural GNSS Signal Immunity: GNSS signals use DSSS modulations: de-spreading as natural defense against interference. Use interference mitigation techniques only when strictly necessary 13

Detection and Mitigation: Where Antenna defenses* Signal Processing Units *The availability of several antennas allows advanced interference detection and mitigation techniques Frontend Correlator Correlator Correlator Measurement Unit Measurement Measurement Unit Unit Navigation Solution Front-end based techniques Pre-correlation techniques Post-correlation techniques Measurement level techniques 14

The Multi-frequency Opportunity Multi-frequency mitigation strategies F 1 Frontend Correlator Correlator Correlator Measurement Unit Measurement Measurement Unit Unit F 2 Frontend Correlator Correlator Correlator Measurement Unit Measurement Measurement Unit Unit Navigation Solution F N Frontend Correlator Correlator Correlator Measurement Unit Measurement Unit Measurement Unit 15

Jamming Detection (I/II) An hypothesis testing problem (as the acquisition process) Performed at almost all the receiver stages (front-end, pre- and post-correlation, measurements, ) Choose between the two hypotheses: H : r[ n] y[ n] [ n] [ n] 0 H1 r n n : [ ] y[ n] i[ n] [ ] i[ n] [ n] The GNSS signal is usually neglected The decision is not immediate and N samples can be used for the detection A verification stage can also be present General solution: rn [ ] Signal Transform Decision variable T h decision threshold 16

Jamming Detection (II/II) Front-end Hardware indicators: AGC count Noise floor indicator [6, 13, 33, 34, 35, 38, 39] Correlation Channel Correlation Signal Processing Units (Acquisition /Tracking) Digital samples: Statistical analysis Transformed domain techniques [14, 22, 34, 41, 46] Channel Correlation Channel References in: Borio et al. Impact and Detection of GNSS Jammers on Consumer Grade Satellite Navigation Receivers, IEEE Proceedings, June 2016 Post-Correlation outputs: Correlators C/N 0 Measurements [25, 34, 35, 50, 54] 17

Transform Domain Techniques The jamming signal is projected into a domain where it has a sparse representation Chirp transform in [ ] ik [ ] More revealing representation of the signal samples In the transformed domain, the energy of the signal is concentrated over few samples (to be used for detection) Popular transforms: DFT (FFT), STFT, Time- Frequency, Wavelet 18

C/N 0 Monitoring The estimated C/N 0 can reveal the presence of interfering signals Remark: the estimation technique used to determine the C/N 0 can hide the presence of interference jamming effect on C/N 0 A possible approach is to verify if C/N 0 measurements are affected by correlated changes 19

Jamming Mitigation: the IC Principle First goal of a GNSS receiver: estimate the GNSS signal parameters If the jamming signal were known, then the ML estimates of the useful GNSS signal parameters would be: N 1 1 fd r n i n c nts j fif fd nts j, fd, N n0 interference cancellation local code local carrier ˆ, ˆ, ˆ arg max [ ] [ ] exp 2 i[n] unknown: it needs to be estimated Interference is removed before applying standard correlation based processing Most interference mitigation techniques: form of interference cancellation Different ways of estimating the jamming signal 20

Mitigation as an Estimation Problem r[ n] - To standard processing Interference detection Interference estimation Interference reconstruction Jamming mitigation: estimation and reconstruction of the jamming signal E.g./ ML estimates: i[ n] Aexp j2 fints j 1 2 N 1 i arg max in [ ] exp 2 Ts arg max I( f ) I fi f N f n0 fˆ 2 j fn ˆ ˆ Frequency almost constant on a short period of time ML estimation: useful when a parametric model is available. 21

Interference Model Dependence The performance : dependence on the model adopted for designing the interference estimation block: parametric techniques: the functional form of i[n] is fully specified (low number of parameters) non-parametric techniques: generally based on the projection of the signal on a transformed domain (different basis) Model dependence: Not specified Partially specified Fully specified Performance (under design condition) Robustness Flexibility Negative Computational load Model specification Positive 22

Notch Filtering Adaptive filter with transfer function of which (in principle) strongly attenuates only a single frequency All the other signal components: unchanged Ideally Hnf f 0 1 for f f otherwise i Adaptation block which tracks the jamming instantaneous frequency Hnf f f i f 23

IIR Notch Filters H nf Notch filter zero 0 1 z 1 z0z 1 z z k 0 1 1 k Pole contraction factor Before notch filtering Frequency estimated by the NF fi z0 Aexp j2 fs z 0: adaptively adjusted After notch filtering minimization of the energy of the signal at the output of the filter 24

Code Break Benefits of notch filtering on the acquisition of GPS signals corrupted by jamming Anechoic chamber test 25

The Future of (anti-)jamming Jamming: Brute force: more power, more frequencies + mainly for specialized applications (e.g. car burglaries) + not only GNSS Smart jamming: more efficient forms of jamming exploiting the knowledge of the GNSS signal + well known in wireless networks (deceptive and reactive jamming) + hit where it hurts most (preamble, time mark, CRC, parity, Attacks and defenses is just a question of rising the bar 26

2024 © hobbydocbox.com Privacy Policy | Terms of Service | Feedback