So Iridium has been cracked, and no reactions so far? Am I missing something? This sounds like a Big Deal.
> You have reached the 310 airlift squadron C-37 aircraft, tail number 0028.
> To call the CSL press 1.
> To call secure telephone number one, press 2.
> To call secure telephone number two, press <missing>
> Satcom direct Inmarsat connection in progress, please hold while we attempt to connect your call.
> The approximate global connect time is <missing>
> <ringing>
I suppose that selecting to connect to the secure phones could trigger an encryption layer on top of the call.
Am I remembering that correctly ? I believe that got some journalists killed in Syria a few years ago ...
CCC Munchen wiki pages on Iridium: https://wiki.muc.ccc.de/iridium:start
GitHub for the Iridium decoder software: https://github.com/muccc/gr-iridium
[1] https://www.iridium.com/network/iridiumnext
[2] https://www.iridium.com/company/industryleadership/iridiumpr...
Which I'm sure they're selling at absurd prices thanks to Sept 11.
Editorial retraction, mea culpa, #2 [conflated the hell out of ARSOF, again, see below. The economic analysis + usage of Iridium still holds.] C-37 is USAF aircraft - this dude seriously compromised his personal security by making this talk [and implicitly, his identity] public. He's going to have the pleasure of having SSSS scribbled onto every airline ticket he purchases from now on, I'd wager.
Iridium was such a brilliant buy. ROI at must be absolute insanity.
@Dasmoth - 64 billion dollars in grey-money was allocated for "Overseas Contingency Operations" by the Omnibus bill last December. I'm sure SAIC/Northrup/whoever gets the contract to 'fix this hole' is going to be enjoying the 800 million they secure from the Pentagon to basically modify transmissions/upgrade the firmware of the phones to use Diffie-Hellman handshakes and AES haha.
Iridium has some advantages. It has coverage at the poles, where GEO sats typically do not. The mobile units can be small(ish) and handheld. But it also has some significant limitations. Datarates are in the 2400bps range. Latency goes all over the place due to the way the calls get routed through the constellation. Dropped calls are common.
Inmarsat operates a service called BGAN (Broadband Global Area Network), which depending on your hardware delivers speeds in the 128kbps to 512kbps range. The latency is always bad (GEO is a long way away), but more consistent. The terminals are big bulky affairs that range in size from a briefcase up to a mini-fridge. You can't hang one on your belt like you can with an Iridium phone, and some require you to set the antenna up and point it at the satellite manually.
While it is true that the Iridium company bought the system for a song, it's also true that they bought a massively expensive maintenance liability. You can't just ignore a satellite and expect it to keep working, they require operators on the ground to regularly monitor each and every bird to insure that it doesn't drift off orbit and to handle conditions that arise. They also have to launch replacement satellites regularly as the old ones start to fail. Plus they're building out a whole new system. The ROI is no doubt positive (they've been doing this for years now), but maybe not as much as you might expect. Iridium's biggest problem was its tiny userbase.
Motorola's whole business model with the original Iridium was pretty insane. They saw the relatively sparse deployment of cell towers back in the AMP era as something that was going to last. The only way to fix it was satellite communications, but the phones needed to be small enough to be used like cell phones (admittedly, compared to a 1980s cell phone they really weren't too bulky), which means low power which means LEO, which means you need a ton of satellites to cover the globe. By the time they finally got them all launched cell towers were everywhere and people (especially businessmen) realized that they liked using them indoors (which Iridium was terrible at) and paying only pennies per minute (instead of dollars per minute). The target audience was small, and many of those people couldn't afford the system at all.
Huh? Military UHF TACSAT communications are single channel UHF networks via geostationary satellites. But the military also makes extensive use of Iridium and INMARSAT networks to fill in gaps of bandwidth/availability coverage.
SATCOM / INMARSAT is heavily based on Iridium
Huh? No. Iridium is cross-linked Low-Earth Orbit (LEO) architecture. UHF Military TACSAT is geostationary dedicated transponders for the military - and those satellites also carry EHF/SHF payloads as well. INMARSAT is also Geostationary in the L and C band areas.
What is SSSS? See the Wikipedia page:
https://en.m.wikipedia.org/wiki/Secondary_Security_Screening...
I know newer entrants like Planet Labs run normal Linux on their satellites, and I assume use a normal SSH connection. What do the older platforms use? How do they move the key material around to the different ground stations?
I haven't worked in the space industry for almost 10 years now, but that was everywhere when I was there. And I'm hoping that the name will come to mind over the next few hours and I can edit this post :)
Edit: Success! ITOS: http://itos.gsfc.nasa.gov/index.php
These guys are great, this was an enjoyable presentation.
And the FTP upload seems to be for the Air Force Weather Agency.
Also, a Mandrake 9.2 install doing a PPP dialup via iridium voice?! The world is indeed stranger than fiction.
