Software Defined Radio - Insomni'hack 2013
Software Defined Radio - Insomni'hack 2013
Software Defined Radio - Insomni'hack 2013
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
S software<br />
D defined<br />
R radio<br />
A short introduction to radio, electronics and XXI century HAM<br />
F6ITU & Bruno.KEROUANTON.net<br />
March 22, <strong>2013</strong><br />
PalExpo - Geneva<br />
tartiflette rulez<br />
S
S F6ITU a.k.a Marc OLANIÉ<br />
S IT journalist ; former geek<br />
<strong>Radio</strong> Amateur, HF guru ;)<br />
S http://f6itu.wordpress.com<br />
S http://www.cnis-mag.com<br />
He and I<br />
S Bruno KEROUANTON<br />
S Head of IT Security (CISO)<br />
S Former {geek && demomaker}<br />
S http://éé.net
Concerned with Drone Spoofing ?<br />
A short warning notice !...
<strong>Radio</strong>
Regulatory authorities<br />
(if your need a license or info)<br />
S Switzerland : Office Fédéral des Communications (OFCOM)<br />
S France : Agence Nationale des Fréquences (ANFR) + ART
Let’s start with a Quiz !<br />
S
Watizit ?<br />
(Keskecé ?)
Quiz #1<br />
Let’s zoom a bit<br />
(It’s no watercooling, folks)
From traditional radio…<br />
* (by the way, visit & support !)<br />
*<br />
S
From traditional radio…<br />
…to SDR<br />
* (by the way, visit & support lana-sator.livejournal.com<br />
!)<br />
*<br />
S
<strong>Radio</strong> «old-school»<br />
S Small portable radio receiver<br />
S Modes : FM, AM, SSB<br />
S Ranges : FM, LW, MW, SW<br />
S Very good, but…<br />
«Obsolete technology»<br />
40 years old… at least !
The Genesis…(on my blog)
(some) advantages of SDR<br />
Source (National Instruments)
A bit of signal theory…<br />
S
E. Ducretet & L. Levy<br />
version 1900<br />
(Traditional <strong>Radio</strong>)
E. Ducretet & L. Levy<br />
version <strong>2013</strong><br />
(<strong>Software</strong> <strong>Defined</strong> <strong>Radio</strong>)
Very important theory, part 1<br />
Joseph Fourier (1768-1830)<br />
S Any complex signal is «just» a sum of sinusoids<br />
S Easy to compose or decompose a complex signal<br />
S FFT is the «fast» implementation… so useful !!!
Very important theory, part 2<br />
What can define a signal ?<br />
S A signal is defined by Frequency, Amplitude and Phase<br />
Fourier (FFT) Strength Time shift<br />
Measuring all 3 at the same time ? Use I and Q !
The 6 fundamental<br />
components of a SDR<br />
Antenna PLL+DDS FPGA<br />
Tayloe<br />
mixer<br />
ADC/DAC <strong>Software</strong>
Antenna<br />
Those electrosmog attracters…<br />
S Antennas are a tradeoff for<br />
signal/quality bandwith<br />
S The better the antenna, the<br />
better the reception<br />
S Choose antenna according<br />
to frequency to receive<br />
S Gain up to 30dBi
DDS<br />
Direct Digital Synthesis<br />
DEC START<br />
INC POINTER ; Increase the text pointer<br />
LDA #7<br />
STA COUNTER ; Initialize X-scroll<br />
OUT JMP $EA7E ; Return from interrupt<br />
; Hardcoded sin table<br />
SIN BYT 0,3,6,9,12,15,18,21,24,27,30,32<br />
BYT 35,38,40,42,45,47,49,51,53,54<br />
BYT 56,57,59,60,61,62,62,63,63,63<br />
SCROLL SCR "HAPPY INSOMNIHACK <strong>2013</strong> !"
FPGA<br />
Field Programmable Gate Array<br />
S Performance Fast and efficient<br />
S > 30/50 Msamples/s<br />
up to 150 !<br />
S Mainly used for Digital Down Converter (DDC)
Tayloe Mixer<br />
Getting I and Q<br />
S Phase shifting : Getting a quadrature signal<br />
is the fundamental concept of SDR !<br />
In phase<br />
Quadrature
ADC / DAC<br />
Analog-to-Digital Converter<br />
S ADC : To input (receive) the signal<br />
S DAC : To output (transmit) the signal
SDR <strong>Software</strong><br />
S RX (Receive) : Direct input from the sound card (I and Q)<br />
S TX (Transmit) : Direct output to the sound card (I and Q)<br />
<strong>Software</strong> can then get amplitude, frequency and phase…<br />
- Display the waterfall spectrum<br />
- Focus on any frequency range<br />
- Decode it (FM, AM, SSB, CW, …)<br />
- Or encode it (to transmit)
Some SDR Hardware<br />
S
USRP<br />
S The first “public” SDR (Army did it in the 70’s 80’s !)<br />
S Ettus Research (acquired by National Instruments)<br />
S Professional, but quite expensive !
Rhode+Schwarz vs RTL2832u<br />
S What should I choose ?
Rhode+Schwarz vs RTL2832u<br />
$ 45’000 $ 7<br />
Extensive Training needed Plug-n-play<br />
(high frequency range & bandwith) (less reliable… but still OK !)
eBay : find anything !
The best<br />
compromise !<br />
Homemade SDR
Some SDR software<br />
S
First, Zadig !<br />
Windows driver for RTL2832U…<br />
S OpenSource generic USB Driver<br />
S Needed to operate the RTL2832U<br />
S Good info http://rtlsdr.org/softwarewindows<br />
S Get latest version (automated downloader/installer) at<br />
S http://sdrsharp.com/downloads/sdr-install.zip
Then, SDR#<br />
(or SDR Sharp, as you like)
Listening to radio<br />
with HDSDR
Another one :<br />
Spectrum Lab<br />
S Lots of functions, bells and whistles… a bit too much !
Decoding «anything»<br />
with MultiPSK<br />
S Powerful, and lots of protocols implemented…<br />
S Very poor/weird interface… good luck !<br />
S … and unfortunately shareware ;(
Watching planes<br />
with ADSB# and ADSBScope<br />
S ADSB# (receiver) +<br />
ADSBScope (display)
ADSB – «playback»
ADSB – «playback»
ADSB – «playback»
S The «ultimate lab» tool<br />
Hacking everything<br />
S Swiss knife of experimentation<br />
S Too complicated for beginners<br />
S USRP highly recommended… ;(<br />
with GNUradio
Extending open research<br />
with OSMOCOM<br />
S Open project, based on GNU<strong>Radio</strong><br />
S Open implementation of popular radio protocols<br />
GSM TETRA<br />
GMR APCO25<br />
DECT and many others !<br />
Build your own home-made GSM infrastructure !
Towards the intelligent radio<br />
a full fledged SDR network<br />
Cognitive networks<br />
S End-to end hardware homogeneity<br />
S End-to-end protocol homogeneity<br />
S Self-adaptating SDR network<br />
S Any node can be a SPOF
SDR in practice<br />
Ready for a demo ?<br />
S
Answer to the Quiz<br />
Watwazit ? (Cétékoi ?)
Some URLs<br />
S <strong>Software</strong><br />
S Zadig + SDR# rtlsdr.org/softwarewindows and sdrsharp.org<br />
S HDSDR www.hdsdr.de<br />
S Spectrum Lab www.qsl.net/d/dl4yhf<br />
S ADSB# sdrsharp.org<br />
S ADSB Scope www.sprut.de<br />
S Gnu<strong>Radio</strong> gnuradio.org<br />
S Osmocom osmocom.org<br />
S Hardware<br />
S RTL2832U realtek.com.tw (and ebay.com)<br />
S USRP ettus.com
Thanks for listening ;)<br />
Bruno http:// éé . net<br />
And have a nice evening too !<br />
Marc http:// f6itu . wordpress . com<br />
S