Don't Trust Satellite Phones: A Security Analysis of Two Satphone Standards

Driessen, Benedikt; Hund, Ralf; Willems, Carsten; Paar, Christof; Holz, Thorsten

doi:10.1109/sp.2012.18

Cited by 47 publications

(39 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Driessen et al [31] have recently reverse-engineered the encryption algorithms used in the GMR-1 and GMR-2 satellite phone standards and showed that their stream ciphers are considerably weaker than the current state of the art in symmetric cryptography. They have also developed a mechanism for recovering the encryption key of a GMR-2 phone call with approximately 50-65 bytes of key stream and moderate computational complexity.…”

Section: Satellite Communicationsmentioning

confidence: 99%

A Review of Cyber Threats and Defence Approaches in Emergency Management

2013

View full text Add to dashboard Cite

Emergency planners, first responders and relief workers increasingly rely on computational and communication systems that support all aspects of emergency management, from mitigation and preparedness to response and recovery. Failure of these systems, whether accidental or because of malicious action, can have severe implications for emergency management. Accidental failures have been extensively documented in the past and significant effort has been put into the development and introduction of more resilient technologies. At the same time researchers have been raising concerns about the potential of cyber attacks to cause physical disasters or to maximise the impact of one by intentionally impeding the work of the emergency services. Here, we provide a review of current research on the cyber threats to communication, sensing, information management and vehicular technologies used in emergency management. We emphasise on open issues for research, which are the cyber threats that have the potential to affect emergency management severely and for which solutions have not yet been proposed in the literature.

show abstract

Section: Satellite Communicationsmentioning

confidence: 99%

A Review of Cyber Threats and Defence Approaches in Emergency Management

2013

View full text Add to dashboard Cite

show abstract

“…The four topmost functions in this ranking turned out to implement the different linear feedback shift registers (LFSR) of the cipher . The interested reader is referred to the original publication [Driessen et al 2012] for more details.…”

Section: Finding the Ciphermentioning

confidence: 99%

“…In this paper, we build on our previous work [Driessen et al 2012], which reverseengineered the stream ciphers A5-GMR-1 and A5-GMR-2, used in the respective standards. In contrast to the original publication, we focus less on the process of reverseengineering itself, but rather collect all relevant information regarding security and configuration aspects of the system: We describe the network architecture of satellite telecommunication systems and, to some degree, how they operate on the physical and protocol level.…”

Section: Introductionmentioning

confidence: 99%

“…Recently also technologies that are only used under more specific circumstances have come into the spotlight of academic research and the hacker scene alike. A striking example of this is recent work [Driessen et al 2012] that analyzed the security of the over-the-air encryption in the two existing ETSI satphone standards GMR-1 and GMR-2. The firmware of handheld devices was reverseengineered and the previously unknown stream ciphers A5-GMR-1 and A5-GMR-2 were recovered.…”

mentioning

confidence: 99%

See 1 more Smart Citation

An experimental security analysis of two satphone standards

Driessen

Hund

Willems

et al. 2013

ACM Trans. Inf. Syst. Secur.

Self Cite

View full text Add to dashboard Cite

General purpose communication systems such as GSM and UMTS have been in the focus of security researchers for over a decade now. Recently also technologies that are only used under more specific circumstances have come into the spotlight of academic research and the hacker scene alike. A striking example of this is recent work [Driessen et al. 2012] that analyzed the security of the over-the-air encryption in the two existing ETSI satphone standards GMR-1 and GMR-2. The firmware of handheld devices was reverseengineered and the previously unknown stream ciphers A5-GMR-1 and A5-GMR-2 were recovered. In a second step, both ciphers were cryptanalized, resulting in a ciphertext-only attack on A5-GMR-1 and a known-plaintext attack on A5-GMR-2.In this work, we extend the afore-mentioned results in the following ways: First, we improve the proposed attack on A5-GMR-1 and reduce its average case complexity from 2 32 to 2 21 steps. Second, we implement a practical attack to successfully record communications in the Thuraya network and show that it can be done with moderate effort for approx. $5 000. We describe the implementation of our modified attack and the crucial aspects to make it practical. Using our eavesdropping setup, we recorded 30 seconds of our own satellite-to-satphone communication and show that we are able to recover Thuraya session keys in half an hour (on average). We supplement these results with experiments designed to highlight the feasibility of also eavesdropping on the satphone's emanations.The purpose of this paper is threefold: Develop and demonstrate more practical attacks on A5-GMR-1, summarize current research results in the field of GMR-1 and GMR-2 security, and shed light on the amount of work and expertise it takes from setting out to analyze a complex system to actually break it in the real world.

show abstract

“…While the IoT provides new and exciting experience for end users, it also opens up new avenues to hackers and organized crime. Recent attacks to a wide range of smart devices [12,39] have emphasized that without adequate security the IoT will only become pervasive nightmare.…”

Section: Introductionmentioning

confidence: 99%

WG-8: A Lightweight Stream Cipher for Resource-Constrained Smart Devices

Fan

Mandal

Gong

2013

Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering

View full text Add to dashboard Cite

Abstract. Lightweight cryptographic primitives are essential for securing pervasive embedded devices like RFID tags, smart cards, and wireless sensor nodes. In this paper, we present a lightweight stream cipher WG-8, which is tailored from the well-known Welch-Gong (WG) stream cipher family, for resource-constrained devices. WG-8 inherits the good randomness and cryptographic properties of the WG stream cipher family and is resistant to the most common attacks against stream ciphers. The software implementations of the WG-8 stream cipher on two popular lowpower microcontrollers as well as the extensive comparison with other lightweight cryptography implementations highlight that in the context of securing lightweight embedded applications WG-8 has favorable performance and low energy consumption.

show abstract

Don't Trust Satellite Phones: A Security Analysis of Two Satphone Standards

Cited by 47 publications

References 13 publications

A Review of Cyber Threats and Defence Approaches in Emergency Management

A Review of Cyber Threats and Defence Approaches in Emergency Management

An experimental security analysis of two satphone standards

WG-8: A Lightweight Stream Cipher for Resource-Constrained Smart Devices

Contact Info

Product

Resources

About