Balancing GNSS Authentication Mandate: Technical Solutions for Automotive Cybersecurity

Babak Hooshmand
Follow Me!
Facebook Twitter Linkedin Instagram Tumblr WhatsApp

Balancing GNSS Authentication Mandate: Technical Solutions for Automotive Cybersecurity

As the automotive industry delves deeper into the realm of connected and autonomous vehicles, cybersecurity emerges as a paramount concern. The WP.29 has been diligently advancing its cybersecurity agenda, with a specific focus on Over-The-Air (OTA) updates. A pivotal aspect of this agenda involves the proposal for vehicles to perform cryptographic verification of received Global Navigation Satellite System (GNSS) messages. However, the intricacies of this proposal demand a technical examination and a strategic resolution that balances security with operational realities.

The WP.29 Agenda and GNSS Authentication

The WP.29’s strategic agenda, guided by the expertise of SAE specialists, underscores the importance of bolstering cybersecurity in vehicles. Within this comprehensive framework, the proposal for cryptographic verification of GNSS messages holds significant weight. This proposition aims to thwart the potential risks associated with GNSS message spoofing, a threat that can compromise the accuracy and reliability of vehicle navigation systems.

Technical Challenges and Concerns

While the objective of enhancing the authenticity and integrity of GNSS messages is clear, the proposal introduces technical challenges that warrant meticulous consideration:

  1. Marketplace Maturity: The proposal mandates GNSS message authentication, particularly through the Open Service Navigation Message Authentication (OSNMA) protocol provided by Galileo. However, as of now, OSNMA-enabled GNSS receivers are limited, with the marketplace potentially lacking maturity by the stipulated timeline of 2024. This raises concerns about a limited supplier pool, escalated costs, and the inherent security risks tied to nascent products.
  2. Diversity and Reliability: The requirement for GNSS authentication could inadvertently curtail the versatility of vehicles’ positioning systems. This limitation might disrupt the use of multiple GNSS providers for positioning accuracy—a technique known as diversity. Moreover, the mandate to exclusively rely on Galileo for positioning introduces vulnerabilities; any interruption to Galileo services could result in a complete loss of vehicle positioning for compliant vehicles.

A Technical Solution and Proposed Amendment

Addressing these challenges requires a well-orchestrated technical solution. SAE suggests an approach that acknowledges the importance of GNSS authentication while ensuring the overall system robustness:

  1. Phased Implementation: Instead of an immediate and sweeping mandate, a phased implementation strategy is proposed. This approach allows for the gradual integration of GNSS authentication into vehicles, aligning with the maturity of OSNMA-enabled GNSS receivers. This approach mitigates the marketplace immaturity challenge and facilitates a smoother transition.
  2. Diverse Positioning Solutions: To preserve the diversity and reliability of positioning systems, the proposal should encourage the exploration and utilization of authentication technologies in other GNSS providers. This prevents the exclusivity of Galileo and safeguards against complete positioning loss in case of Galileo service disruption.

Balancing Security and Realism

In the intricate landscape of automotive cybersecurity, the challenge lies in harmonizing stringent security measures with the practical realities of implementation. The proposed technical solution empowers the industry to navigate these waters with precision, reinforcing security protocols without sacrificing positioning diversity or robustness.

Conclusion

The proposal for cryptographic verification of GNSS messages signifies a progressive step toward fortified vehicle cybersecurity. By embracing a phased implementation strategy and encouraging authentication technology exploration across GNSS providers, the automotive industry can strike a harmonious equilibrium. This balance ensures heightened security while upholding the versatility, reliability, and robustness of vehicle positioning systems. The result is a technical solution that aligns with the evolving nature of automotive technology, paving the way for a secure and resilient future on the road