Localisation Assurance Service Provider
A software and service to verify and certify the user’s location. This service has been developed in partnership with ESA and the University of Luxembourg.
Project duration: 24 months (2010-2012)
Consortium: itrust consulting, SnT (University of Luxembourg)
Global Navigation Satellite Systems (GNSS) are becoming popular for everyone’s use which is a vehicle for the emergence of services, called Location-Based Services (LBS). One problem is that the GNSS-like signals can be used without the users’ and LBS providers’ being able to assure that the location obtained is correct and has not been altered either intentionally or by mistake. These security issues may hinder the current development of LBS in sensitive areas such as those related to protection against vehicle theft, accident reconstructions, alibi verification, monitoring the transportation of hazardous materials, etc.
The LASP project, lead by itrust consulting, aims at developing a demonstrator able to provide a guarantee to LBS providers that a piece of localisation data acquired by a user is correct.
LASP architecture combines the following elements:
The target activity sectors of LASP are automotive industries (insurance, road toll, etc.), fleet and resource management, location-based access control (physical or logical), etc.
Role of itrust consulting
The LASP project started at the end of 2010 and is managed by itrust consulting. It is executed in collaboration with the Interdisciplinary Centre for Security, Reliability and Trust (SnT) of the University of Luxembourg. This collaboration is part of a long-term agreement in which itrust consulting supports a PhD thesis entitled “Secure and Private Location Proofs: Architecture and Design for Location-Based Services”
The LASP service is based on the existence of a trusted third party (LAP – Localisation Assurance Provider), implememented in the context of this project, that receives certification requests from users, evaluates the assurance level, and returns it to the user in the format of a digitally signed certificate. The certificate includes the position, time, accuracy and the assurance level.A user who holds such a certificate is able to access services that require a certified localisation. This protocol was first proposed in a scientific paper by itrust and NSN at the ENC-GNSS 2009 in Naples, Italy.
The main purpose of the LAP is the evaluation of the assurance level of certification requests. This evaluation is carried out through a set of algorithms, called security checks, that assess many GNSS signals’ properties. The current implementation includes the following strategies:
The tests performed with a signal repeater in a controlled environment show that the clock bias algorithm detects the beginning and the end of attacks even when the average delay introduced by meaconing stations is just 80 nanoseconds. A scientific paper describing the algorithm was presented at the ENC 2012 in Gdansk, Poland.
itrust is currently looking for partners or stakeholders interested in a solution for secure and accurate localisation in order to test and adapt the prototype to end-user needs.