CAREER: SaTC: Secure and Private Wide-area Positioning

职业：SaTC：安全且私密的广域定位

• 批准号: 2144914
• 负责人: Aanjhan Ranganathan
• 金额: $ 57.42万
• 依托单位: Northeastern University
• 依托单位国家: 美国
• 项目类别: Continuing Grant
• 财政年份: 2022
• 资助国家: 美国
• 起止时间: 2022-07-15 至 2026-06-30
• 项目状态: 未结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=2144914&HistoricalAwards=false
• 关键词: CAREER; SaTC; Secure; Private; Wide

With the widespread deployment of wireless devices ranging from mobile phones to unmanned vehicles and the explosive growth of the Internet-of-Things, location information is becoming key to a variety of safety- and security-critical such as navigation services, emergency support, asset management, and modern communication networks. Existing wireless positioning systems provide limited security guarantees and are vulnerable to signal spoofing, jamming, and re(p)lay attacks with severe implications: an adversary can enter a restricted area, make fraudulent payments, deviate vehicles from their intended paths, and halt operations in transportation hubs. There is an urgent need to design and develop wide-area positioning and navigation systems that are resilient to modern-day cyber-physical attacks. The project is designing and developing wide-area positioning technologies creating an ecosystem that delivers secure, privacy-preserving, trustworthy location information to thousands of devices and services simultaneously.The project seeks to understand the tension that exists in satisfying the key performance metrics of accuracy, scalability, and wide coverage area while achieving strong security and privacy guarantees. The project is developing new tractable threats to secure and private positioning, given the widespread availability of low-cost software-defined radio platforms. The results of the threat analysis help understand the fundamental limitations of existing positioning systems and characterize the effect of strong adversaries. The project primarily targets designing positioning primitives for next-generation wireless networks (5G and beyond). The positioning systems being designed in this project makes trustworthy and secure location information widely available; thus, creating opportunities for new applications and services. The project intertwines an education plan with its research aspects and is specifically opening the gateway to Computer Science education for underrepresented minorities. The results of the project directly influence next-generation wireless standards and significantly impact their implementation and deployment.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

随着从移动电话到无人驾驶车辆等无线设备的广泛部署以及物联网的爆炸式增长，位置信息正成为导航服务、应急支持、资产管理和现代通信网络等各种安全和安保关键的关键。现有的无线定位系统提供有限的安全保证，容易受到信号欺骗、干扰和重(p)铺设攻击的影响，这些攻击具有严重的影响：对手可以进入限制区域，进行欺诈性付款，使车辆偏离预定路径，并停止交通枢纽的运行。迫切需要设计和开发能够抵御现代网络物理攻击的广域定位和导航系统。该项目正在设计和开发广域定位技术，创建一个生态系统，同时为数千台设备和服务提供安全、隐私保护、可靠的位置信息。该项目试图理解在满足准确性、可伸缩性和广泛覆盖区域的关键性能指标时存在的紧张关系，同时实现强大的安全性和隐私保证。鉴于低成本软件定义无线电平台的广泛可用性，该项目正在开发新的可处理的安全和私人定位威胁。威胁分析的结果有助于了解现有定位系统的基本局限性，并描述强大对手的影响。该项目的主要目标是为下一代无线网络（5G及以上）设计定位基元。本项目所设计的定位系统，使可信、安全的位置信息广泛可用；因此，为新的应用程序和服务创造了机会。该项目将教育计划与其研究方面交织在一起，特别为未被充分代表的少数民族打开了计算机科学教育的大门。该项目的结果直接影响下一代无线标准，并对其实施和部署产生重大影响。该奖项反映了美国国家科学基金会的法定使命，并通过使用基金会的知识价值和更广泛的影响审查标准进行评估，被认为值得支持。

项目成果

mmSpoof: Resilient Spoofing of Automotive Millimeter-wave Radars using Reflect Array

• DOI: 10.1109/sp46215.2023.10179371
• 发表时间: 2023-05
• 期刊: 2023 IEEE Symposium on Security and Privacy (SP)
• 作者: Rohith Reddy Vennam;I. Jain;Kshitiz Bansal;Joshua Orozco;Puja Shukla;Aanjhan Ranganathan;Dinesh Bharadia

Track You: A Deep Dive into Safety Alerts for Apple AirTags

追踪您：深入了解 Apple AirTags 的安全警报

• 发表时间: 2023
• 期刊: Proceedings of the 23rd Privacy Enhancing Technologies
• 作者: Shafqat, Narmeen;Gerzon, Nicole;Van Nortwick, Maggie;Sun, Victor;Mislove, Alan;Ranganathan, Aanjhan
• 通讯作者: Ranganathan, Aanjhan

Location Independent GNSS Relay Attack: A Lazy Attacker’s Guide to Bypassing Navigation Message Authentication

与位置无关的 GNSS 中继攻击：绕过导航消息身份验证的懒惰攻击者指南

• 发表时间: 2023
• 期刊: Proceedings of 16th ACM Conference on Security and Privacy in Wireless and Mobile Networks
• 作者: Motallebighomi, Maryam;Sathaye, Harshad;Singh, Mridula;Ranganathan, Aanjhan
• 通讯作者: Ranganathan, Aanjhan

Freaky Leaky SMS: Extracting User Locations by Analyzing SMS Timings

• DOI: 10.48550/arxiv.2306.07695
• 发表时间: 2023-06
• 期刊: ArXiv
• 作者: Evangelos Bitsikas;Theodor Schnitzler;Christina Popper;Aanjhan Ranganathan