Universal Spoofing of Real-World Aircraft Multilateration

aviation; multilateration; real-world systems; wireless spoofing; Aircraft navigation; Ground based; Multi-devices; Multilateration system; Potential impacts; Real-world; Real-world system; Reception range; Spoofing attacks; Wireless spoofing; Computer Networks and Communications; Information Systems; Software; Safety Research; Computer Science Applications

Abstract :

[en] As spoofing attacks on GNSS-based aircraft navigation systems become more common in commercial aviation, independent local-ization methods such as ground-based distributed multilateration are increasingly being adopted for enhanced safety. While previous work has suggested these systems may be susceptible to multi-device spoofing, no successful real-world multilateration spoofing attacks have been documented so far. In this study, we examined the feasibility and potential impact of wireless spoofing on two deployed commercial multilateration systems. Our findings reveal that these systems share vulnerabilities with GNSS-based solutions such as ADS-B, although considerably greater effort is required for a successful attack. Using a testbed with a reception range ex-ceeding 300 km, we evaluated the requirements and constraints for executing such attacks and compared the efficacy of ghost injection, flooding, and trajectory manipulation tactics. These insights can help inform measures to secure existing multilateration systems.

Disciplines :

Aerospace & aeronautics engineering

Author, co-author :

Senn, Oliver ; ETH Zurich, Zürich, Switzerland

Tresoldi, Giorgio ; OpenSky Network, Burgdorf, Switzerland

Moser, Daniel ; Cyber-Defence Campus, Armasuisse, Thun, Switzerland

LENDERS, Vincent ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > Systems and Network Security Group (SNS) ; Cyber-Defence Campus, Armasuisse, Thun, Switzerland

Strohmeier, Martin ; Cyber-Defence Campus, Armasuisse, Thun, Switzerland

External co-authors :

yes

Language :

English

Title :

Universal Spoofing of Real-World Aircraft Multilateration

Publication date :

30 June 2025

Event name :

18th ACM Conference on Security and Privacy in Wireless and Mobile Networks

Event place :

Arlington, Usa

Event date :

30-06-2025 => 03-07-2025

Audience :

International

Main work title :

WiSec 2025 - Proceedings of the 18th ACM Conference on Security and Privacy in Wireless and Mobile Networks

Publisher :

Association for Computing Machinery, Inc

ISBN/EAN :

9798400715303

Peer reviewed :

Peer reviewed

Additional URL :

https://dl.acm.org/doi/pdf/10.1145/3734477.3734720

Funders :

ACM SIGSAC

Available on ORBilu :

since 19 December 2025

Statistics

Number of views

26 (2 by Unilu)

Number of downloads

3 (1 by Unilu)

More statistics

Scopus citations^®

Scopus citations^®
without self-citations

OpenCitations

OpenAlex citations

WoS citations^™

Bibliography

O. Baud, N. Honore, and O. Taupin. 2006. Radar /ADS-B data fusion architecture for experimentation purpose. 1-6.
S. Capkun and J.-P. Hubaux. 2005. Secure positioning of wireless devices with application to sensor networks. In Proceedings IEEE 24th Annual Joint Conference of the IEEE Computer and Communications Societies., Vol. 3. 1917-1928 vol. 3.
Y. Chen, W. Trappe, and R. P. Martin. 2007. Attack Detection in Wireless Localization. In IEEE International Conference on Computer Communications (INFOCOM).
Jerry Chiang, Jason Haas, Jihyuk Choi, and Yih-Chun Hu. 2012. Secure Location Verification Using Simultaneous Multilateration. Trans. on Wireless Communications 11 (02 2012), 584-591.
Andrei Costin and Aur?lien Francillon. 2012. Ghost in the Air(Traffic): On insecurity of ADS-B protocol and practical attacks on ADS-B devices.
Federal Office for Civil Aviation. 2020. 100 Jahre BAZL. Technical Report. https://www.bazl.admin.ch/dam/bazl/de/dokumente/Das_BAZL/Studien_Berichte_und_Projekte/broschure_100_jahre.pdf
Mantilla Gaviria and Iv?n Antonio. 2013. New Strategies to Improve Multilateration Systems in the Air Traffic Control.
R. B. Langely. 1999. Dilution of Precision. In GPS World, Vol. 10. 52-59.
Donald McCallie, Jonathan Butts, and Robert Mills. 2011. Security analysis of the ADS-B implementation in the next generation air transportation system. International Journal of Critical Infrastructure Protection 4, 2 (2011), 78-87.
M?rcio Monteiro, Alexandre Barreto, Research Division, Thabet Kacem, Jeronymo Carvalho, Duminda Wijesekera, and Paulo Costa. 2015. Detecting malicious ADSB broadcasts using wide area multilateration. In 2015 IEEE/AIAA 34th Digital Avionics Systems Conference (DASC).
Daniel Moser, Patrick Leu, Vincent Lenders, Aanjhan Ranganathan, Fabio Ricciato, and Srdjan Capkun. 2016. Investigation of Multi-Device Location Spoofing Attacks on Air Traffic Control and Possible Countermeasures. In Proceedings of the 22nd Annual International Conference on Mobile Computing and Networking.
Matthias Sch?fer, Vincent Lenders, and Ivan Martinovic. 2013. Experimental Analysis of Attacks on Next Generation Air Traffic Communication. In Applied Cryptography and Network Security (ACNS). 253-271.
Matthias Sch?fer, Vincent Lenders, and Jens Schmitt. 2015. Secure Track Verification. In 2015 IEEE Symposium on Security and Privacy. 199-213.
Martin Strohmeier, Vincent Lenders, and Ivan Martinovic. 2015. Lightweight Location Verification in Air Traffic Surveillance Networks (CPSS ?15). Association for Computing Machinery, New York, NY, USA, 49-60.
Martin Strohmeier, Matthias Sch?fer, Rui Pinheiro, Vincent Lenders, and Ivan Martinovic. 2017. On Perception and Reality in Wireless Air Traffic Communication Security. IEEE Trans. on Intelligent Transportation Systems 18, 6 (2017).
Christopher Tibaldo, Harshad Sathaye, Giovanni Camurati, and Srdjan Capkun. 2025. GNSS-WASP: GNSS Wide Area SPoofing. In USENIX Security 2025.
Matthias Wilhelm, Ivan Martinovic, Jens B Schmitt, and Vincent Lenders. 2011. Short paper: Reactive jamming in wireless networks: How realistic is the threat?. In Proceedings of the fourth ACM conference on Wireless network security. 47-52.
Zhijun Wu, Tong Shang, and Anxin Guo. 2020. Security Issues in Automatic Dependent Surveillance -Broadcast (ADS-B): A Survey. IEEE Access 8 (2020).