Vulnerabilities Identified in Galileo Navigation Message Authentication
/ 1 min read
🛰️ Critical vulnerabilities discovered in Galileo Open Service Navigation Message Authentication. A recent study has identified two significant vulnerabilities in the Galileo Open Service Navigation Message Authentication (OSNMA): artificially-manipulated time synchronization (ATS) and interruptible message authentication (IMA). The ATS vulnerability enables attackers to falsify signals and local reference time while adhering to time synchronization requirements, leading to potential replay and forgery attacks. The IMA vulnerability allows for temporary interruptions in the authentication process, which can be exploited to concatenate replayed signals. Real-world experiments conducted with a commercial Galileo receiver confirmed the effectiveness of these attacks, demonstrating the potential for spoofing receivers to arbitrary locations. This research highlights critical security concerns for the OSNMA protocol and its implications for navigation systems.
