Securing GNSS: An End-to-End Feasibility Study for the Galileo Open Service

摘要

This paper proposes a candidate implementation of a hybrid navigation message authentication and spreading code encryption scheme based on the TESLA broadcast authentication protocol, tailored specifically to the Galileo E1 OS navigation message structure. Constrained by the potentially available unallocated space in the current Galileo E1 OS message structure, the proposed solution is optimized with respect to a set of relevant performance criteria with a view to providing anti-spoofing capabilities to a wide range of user profiles, from military to civilian. A performance and security analysis is then presented, considering a mass-market receiver user operating in both open-sky and urban environments. In this manner the study explores the capacity and the limitations of a system-side authentication solution in the context of the typical civilian user.