A Backwards Compatible Approach to Authenticate Automatic Identification System Messages

2021 IEEE International Conference on Cyber Security and Resilience (CSR) Pub Date : 2021-07-26 DOI:10.1109/CSR51186.2021.9527954

M. Struck, Jannis Stoppe

{"title":"A Backwards Compatible Approach to Authenticate Automatic Identification System Messages","authors":"M. Struck, Jannis Stoppe","doi":"10.1109/CSR51186.2021.9527954","DOIUrl":null,"url":null,"abstract":"Since the Automatic Identification System (AIS) has been introduced in 2002, it has become a backbone of maritime navigation to prevent collisions with other vessels. All larger ships are equipped with transponders that send and receive information about nearby vessels, giving bridge crew a situational awareness picture of their immediate vicinity and allowing a broad range of services to receive information about worldwide vessel movements. However, despite its ubiquity, the system itself operates virtually unsecured. Essentially, despite relying on inherently insecure channels and broadcasts, authenticity of messages is not questioned in current systems, making the system vulnerable to spoofing attacks. This paper introduces several backwards compatible signature schemes and compares them concerning their applicability. The proposed solutions all provide means to secure the channels in use against spoofing attacks and at the same time solve current issues concerning the validation of messages, securing AIS as a whole without breaking established implementations.","PeriodicalId":253300,"journal":{"name":"2021 IEEE International Conference on Cyber Security and Resilience (CSR)","volume":"3 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-07-26","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 IEEE International Conference on Cyber Security and Resilience (CSR)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CSR51186.2021.9527954","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

Abstract

Since the Automatic Identification System (AIS) has been introduced in 2002, it has become a backbone of maritime navigation to prevent collisions with other vessels. All larger ships are equipped with transponders that send and receive information about nearby vessels, giving bridge crew a situational awareness picture of their immediate vicinity and allowing a broad range of services to receive information about worldwide vessel movements. However, despite its ubiquity, the system itself operates virtually unsecured. Essentially, despite relying on inherently insecure channels and broadcasts, authenticity of messages is not questioned in current systems, making the system vulnerable to spoofing attacks. This paper introduces several backwards compatible signature schemes and compares them concerning their applicability. The proposed solutions all provide means to secure the channels in use against spoofing attacks and at the same time solve current issues concerning the validation of messages, securing AIS as a whole without breaking established implementations.

查看原文本刊更多论文

一种向后兼容的自动识别系统消息认证方法

自2002年引进自动识别系统(AIS)以来，它已成为防止与其他船只碰撞的海上航行支柱。所有大型船舶都配备了收发附近船只信息的应答器，为舰桥工作人员提供其附近的态势感知图像，并允许广泛的服务接收有关全球船只运动的信息。然而，尽管它无处不在，该系统本身的运行实际上是不安全的。从本质上讲，尽管依赖于固有的不安全通道和广播，但消息的真实性在当前系统中没有受到质疑，这使得系统容易受到欺骗攻击。介绍了几种向后兼容的签名方案，并对它们的适用性进行了比较。所提出的解决方案都提供了保护正在使用的通道免受欺骗攻击的方法，同时解决了当前有关消息验证的问题，在不破坏现有实现的情况下整体保护AIS。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2021 IEEE International Conference on Cyber Security and Resilience (CSR)

自引率

0.00%

发文量