To enable high-level driving automation [1], the Autonomous Driving (AD) system in an Autonomous Vehicle (AV) needs to perform centimeter-level localization of its own global positions on the map [2]. Such localization function is highly security and safety critical in the AV context, since positioning errors can directly cause an AV to drive off road or onto a wrong way. For outdoor localization, GPS is the de facto location source, and thus a direct threat is GPS spoofing, a long-existing but still unsolved security problem with practicality proven on many end systems. Fortunately, AV systems today predominantly use Multi-Sensor Fusion (MSF) algorithms [3] that are generally believed to have potential to practically defeat GPS spoofing [4]. However, no prior work has studied whether today’s MSF algorithms are indeed sufficiently secure under GPS spoofing, especially in AV settings. In this work, we perform the first study to fill this critical gap. We consider the attack goal as using GPS spoofing to cause large lateral deviations in the MSF output, i.e., deviating to left or right. This can cause the AV to drive off road or onto a wrong way.
[1]
Todd E. Humphreys,et al.
Hostile Control of Ships via False GPS Signals: Demonstration and Detection
,
2017
.
[2]
Hao Wang,et al.
Robust and Precise Vehicle Localization Based on Multi-Sensor Fusion in Diverse City Scenes
,
2017,
2018 IEEE International Conference on Robotics and Automation (ICRA).
[3]
Graham Mills,et al.
Localization Requirements for Autonomous Vehicles
,
2019,
SAE International Journal of Connected and Automated Vehicles.
[4]
Junjie Shen,et al.
Demo: Attacking Multi-Sensor Fusion based Localization in High-Level Autonomous Driving
,
2021,
2021 IEEE Security and Privacy Workshops (SPW).
[5]
Taxonomy and definitions for terms related to driving automation systems for on-road motor vehicles
,
2022
.