On On Secure Pos osition oning (P (Proj oject CSP: SP: Cros - - PowerPoint PPT Presentation

on on secure pos osition oning p proj oject csp sp cros
SMART_READER_LITE
LIVE PREVIEW

On On Secure Pos osition oning (P (Proj oject CSP: SP: Cros - - PowerPoint PPT Presentation

Oct 24, 2023 12 likes •405 views

On On Secure Pos osition oning (P (Proj oject CSP: SP: Cros oss-La Layer D Desig ign o of Se f Secure Po Positioning) Sr Srdjan a apkun Relay attack only takes a couple of seconds si signal stre rength d we need se

slide-1
SLIDE 1

On On Secure Pos

  • sition
  • ning

(P (Proj

  • ject CSP:

SP: Cros

  • ss-La

Layer D Desig ign o

  • f Se

f Secure Po Positioning)

Sr Srdjan Ča Čapkun

slide-2
SLIDE 2
slide-3
SLIDE 3

si signal stre rength

Relay attack only takes a couple of seconds

slide-4
SLIDE 4
slide-5
SLIDE 5

we need se secure distance me measu sureme ment d

slide-6
SLIDE 6
slide-7
SLIDE 7
slide-8
SLIDE 8
slide-9
SLIDE 9
slide-10
SLIDE 10

ne need d to kno know whe here ot

  • ther

er

  • b
  • bjec

ects/p s/peop eople ar are ne need d to kno know whe here we we ar are

slide-11
SLIDE 11

ne need d to kno know whe here ot

  • ther

er

  • b
  • bjec

ects/p s/peop eople ar are ne need d to kno know whe here we we ar are sec securel rely

slide-12
SLIDE 12
slide-13
SLIDE 13

Zü Züri rich

slide-14
SLIDE 14
slide-15
SLIDE 15
slide-16
SLIDE 16

un until til no now no no fully fully sec secure d re distance e mea measuremen ement or positioning systems ems

slide-17
SLIDE 17

un until til no now no no fully fully sec secure d re distance e mea measuremen ement or positioning system em [s [so we de decide ided d to build build one ne at at ETH] H]

slide-18
SLIDE 18

new radio IC low power provably secure precise fast

slide-19
SLIDE 19
slide-20
SLIDE 20

1-2ns

slide-21
SLIDE 21
slide-22
SLIDE 22

Se Secu curing distance measurement: Mea Measure e th the e distance e betw tween een V and P P + Auth then enti ticate e Mes Messages es? In Insecu cure sch chemes: NO NON-Ti Time-of

  • f-Flig

Flight NFC / RFID (e.g., ISO ) RSSI measurement (e.g., WiFi, Bluetooth, 802.15.4) Phase (multi-carrier) measurement (e.g., Atmel AT86RF233) FMCW (Frequency-Modulated Continuous-Wave) AoA (Angle of Arrival) measurement (e.g., Bluetooth 5.0) Ti Time-of

  • f-Flig

Flight Chirp Spread Spectrum (802.15.4a, ISO/IEC 24730-5, NanoLOC) Ultra Wide Band (UWB) 802.15.4 UWB On Only y provably y secure: 802. 802.15. 15.4z 4z LPR singl ngle pul pulse pe per bi bit UW UWB-PR PR multi ti-pul pulse pe per bi bit [Singh17] ngh17]

slide-23
SLIDE 23
slide-24
SLIDE 24

co common assumpt ption in distance bo bounding unding resear arch: h:

  • n
  • nly sh

shor

  • rt (

(UWB WB) p pulses a ses and r rapid bit bit exchange hange ar are secur ure

slide-25
SLIDE 25

we we sho showed wed [2017] 2017] that that thi this s is s wro wrong ng di distanc ance e bo boundi unding ng can an be be do done ne usi using ng longer nger sym ymbo bols s (we (we ful fully y impl plem emen ented ed it) t)

slide-26
SLIDE 26

some clever cryptographic algorithms here

special secure modulation long range UWB with pulse reordering (UWB-PR)

slide-27
SLIDE 27

special secure modulation long range UWB with pulse reordering (UWB-PR)

slide-28
SLIDE 28
slide-29
SLIDE 29

Most secure distance measurement schemes => distance cannot be shortened by the attacker This is sufficient to build SECURE POSITIONING

slide-30
SLIDE 30

[challenge similar to building a new cellular network]

slide-31
SLIDE 31

Lon Long T Ter erm Goa Goal: wi widel ely d dep eployed ed sec secure p e posi

  • sition
  • ning

infr infras astr truc uctur ture

slide-32
SLIDE 32

St Standardization: : 802. 802.15. 15.4z 4z (UW (UWB) )

  • In

Interac act t with ith rele levan vant t par partne tners

  • Inc

Increas ase ado adoptio tion n

slide-33
SLIDE 33

But RF RF is not

  • t the

e on

  • nly sen

ensing mod modality

slide-34
SLIDE 34

Sou

  • undProof

roof: No Non-In Intera ractiv tive On Onlin line Auth thentic ticatio tion

slide-35
SLIDE 35

IoT: tablets, smart watches or conversational interfaces like Alexa

SoundProof: Non-Interactive Online Authentication

slide-36
SLIDE 36

it it is is tim time to “de de-vir virtualiz tualize” we n we need eed t to “

  • “get p

physi sical” a ” again t to …

slide-37
SLIDE 37

it it is is tim time to “de de-vir virtualiz tualize” we n we need eed t to “

  • “get p

physi sical” a ” again t to …

… se … secu cure re e exi xisting s systems … e … enable d deployment o

  • f n

new s systems

slide-38
SLIDE 38

www.securepositioning.com capkuns@inf.ethz.ch

slide-39
SLIDE 39

Acknowledgements (in random order):

  • Mridula Singh (ETH Zurich)
  • Patrick Leu (ETH Zurich)
  • Aanjhan Ranganathan (NorthEastern)
  • Boris Danev (3DB)
  • David Barras (3DB)
  • Nils Tippenhauer (CISPA/Helmholtz)
  • Kasper Rasmussen (Oxford)
  • Christina Popper (NYU AD)
  • Nikos Karapanos (Futurae)
  • Claudio Soriente (NEC)
  • Claudio Marforio (Futurae)
  • Hildur Olafsdottir