Iran: Yes, We Hacked the U.S.'s Drone, and Here's How We Did It
December 15, 2011 7:00 PM
comment(s) - last by
Iran rebuffs skepticism with a detailed description of attack, which experts call "certainly possible"
You are going to tell me what I want to know, it's just a matter of how much you want it to hurt.
— Jack Bauer,
It sounds like a scene out of a spy movie -- highly trained national paramilitary operatives harshly testing a foreign agent until they break and do their bidding. But that's exactly what Iran is claiming it did to a
U.S. Central Intelligence Agency
unconfirmed, yet fascinating report
The Christian Science Monitor
, an unnamed "Iranian engineer" claims that Iran used its torture testing from past crashed drones to break
the captured drone
and bend it to the command of the Iranian authorities, forcing it into a soft landing so they could probe the secrets of its fully intact body.
I. Iran warned the U.S. of its Capabilities
The report points to claims Iran made in September that it was able to "take control" of U.S. guided weapons or surveillance devices.
Iranian Gen. Moharam Gholizadeh, the deputy for electronic warfare at the air defense headquarters of the Islamic Revolutionary Guard Corps (IRGC), told the
, "We have a project on hand that is one step ahead of jamming, meaning 'deception' of the aggressive systems... we can define our own desired information for it so the path of the missile would change to our desired destination...all the movements of these [enemy drones are being watched]" and "obstructing" their work was "always on our agenda."
At the time the claims by Iran -- under pressure for its suspected nuclear weapons development program -- were largely dismissed as factless national rhetoric.
Similarly, when Iranian state-run media revealed last week that it had captured a U.S. intelligence drone, many experts sneered at Iran's claims that it "hacked" the drone.
an analyst to the
, "[it'd be] like dropping a Ferrari into an ox-cart technology culture."
But while the detailed description of the "electronic ambush" from the interview with the Iranian engineer has not been verified by U.S. military officials, the U.S. gov't and public are now forced to set aside their prejudices and look at those claims far more seriously.
[Image Source: Sepahnews/AP]
According to the source, the first thing the Middle Eastern nation's "cyberwarfare experts" did was to jam the drone's signal. While the report does not specifically mention this, the engineer's claims of using past crashed drones to derive the attack indicate that Iranian experts may have used drones to determine the encrypted control frequencies that the drone was communicating on.
Further evidence that adversaries in the region are on to U.S. UAV feed frequencies comes from the fact that in 2009 Iraqi Shiite militants
intercepted live, unencrypted video feeds
off a U.S. predator drone, using only off-the-shelf hardware. At the time, Iranian involvement was suspected.
In July and in 2010 Iran
to have shot down drones hovering near its nuclear facitilities.
II. "Downing Drones 101"
Using its knowledge of the frequency, the engineer claims, Iran intiated its "electronic ambush" by jamming the bird's communications frequencies, forcing it into auto-pilot. States the source, "By putting noise [jamming] on the communications, you force the bird into autopilot. This is where the bird loses its brain."
The team then use a technique known as "spoofing" -- sending a false signal for the purposes of obfuscation or other gain. In this case the signal in questions was the GPS feed, which the drone commonly acquires from several satellites. By spoofing the GPS feed, Iranian officials were able to convince it that it was in Afghanistan, close to its home base. At that point the drone's autopilot functionality kicked in and triggered the landing. But rather than landing at a U.S. military base, the drone victim instead found itself captured at an Iranian military landing zone.
Spoofing the GPS is a clever method, as it allows hackers to "land on its own where we wanted it to, without having to crack the [encrypted] remote-control signals and communications."
[Image Source: Reuters]
While the technique did not require sophistication from a cryptography perspective, it was not entirely trivial, either, as it required precise calculations to be made to give the drone the proper forged distance and find and fine an appropriate altitude landing strip to make sure the drone landed as it did in Afghanistan. The Iranian engineers knew the details of the landing site, because the drone had been
confirmed in grainy photos
to be landing at a base in Khandar, Afghanistan.
Despite the careful calculations, the drone still sustained a dent in its wing and underbody (though it did not have the usual signs of a high-speed collision). During its press conferences, the Iranian military covered this damage with anti-American banners.
[Image Source: Iranian state television]
The engineer explained this damage commenting, "If you look at the location where we made it land and the bird's home base, they both have [almost] the same altitude. There was a problem [of a few meters] with the exact altitude so the bird's underbelly was damaged in landing; that's why it was covered in the broadcast footage."
The approach echoes an October security conference
[PDF] in Chicago, in which ETH Zurich researchers laid out how to use interference and GPS spoofing to more gently down a drone.
III. Is the West "Underestimating" Iran?
Iran warns that the west is underestimating its
growing technlogical prowess
. A former senior official is quoted as saying, "There are a lot of human resources in Iran.... Iran is not like Pakistan."
Deputy IRGC commander Gen. Hossein Salami, stated this week, "Technologically, our distance from the Americans, the Zionists, and other advanced countries is not so far [as] to make the downing of this plane seem like a dream for us … but it could be amazing for others."
Christian Science Monitor
report cites an unnamed European intelligence source as claiming that Iran in an unreported incident managed to "blind" a CIA spy satellite by "aiming a laser burst quite accurately" at its optics. And in September Google Inc.'s (GOOG) security certificates were hacked to give access to 300,000 Iranian citizens Gmail accounts, in what circumstantial evidence indicated was a "state-driven attack," potentially designed to ferret out spys or dissidents.
For now Iran military and government workers -- including the engineer -- are giddy with joy at their success, according to the report. The source is stated as remarking, "We all feel drunk [with happiness] now. Have you ever had a new laptop? Imagine that excitement multiplied many-fold."
What they captured was no mere Reaper or Predator -- it was an advanced RQ-170 Sentinel design, made by Lockheed Martin Corp. (
) for the CIA.
He said that members of the National Guard initially feared that the drone was rigged to auto destruct, but eagerly moved to inspect it anyways because they "were so excited they could not stay away."
III. U.S.: Drone Missions to Iran Will Continue
It's important to remember that while the attack described in the report sounds very feasible, it has not been confirmed by the U.S. government, and may never be. It now appears that the government is at least acknowledging that the drone is a real U.S. drone, as opposed to early reports in which some officials indicated it might be fake Iranian propaganda/publicity stunt.
electronic warfare specialist Robert Densmore told
The CS Monitor
that Iran's claims were "certainly possible", adding, "I wouldn't say it's easy, but the technology is there... Even modern combat-grade GPS [is] very susceptible [to manipulation]."
The U.S. has claimed that the drone was not spying, but was flying a standard mission over Afghanistan, when it suffered a "unspecified technical malfunction" and went of course, landing in Iranian hands. They
declined to explain
how the drone -- flying at high altitude -- could have avoided sustaining serious damage.
U.S. President Barrack Obama has
requested that Iran return the drone
to U.S. officials. Iran has refused. IRGC Brig. Gen. Mohammad Hejazi, comments, "That is a shameless demand raised by the U.S. President. They raise such claims instead of apologizing to our Islamic establishment and people."
Iran has refused President Obama's demands that it return the drone.
[Image Source: Matt Ortega/Flickr]
Instead, Iran is
filing a complaint
with the United Nations Security Council, stating, "My government emphasizes that this blatant and unprovoked air violation by the United States government is tantamount to an act of hostility against the Islamic Republic of Iran in clear contravention of international law, in particular, the basic tenets of the United Nations Charter."
Despite that, Defense Secretary Leon Panetta
that the U.S. would "absolutely" continue to fly drones in the region. The implied message -- but one that the U.S. military does not officially acknowledge -- is that the hunt for Iranian nuclear weapons activity will continue.
If confirmed, Iran's new drone downing capabilities are a concern. Currently there's no real secure replacement for
-- though China has done pioneering work in creating a state-run GPS network
with an encrypted channel.
. However, U.S. military suppliers could solve this issue by resorting to more advanced software. For example a drone could be programmed to:
Store GPS coordinates, starting from launch from a "friendly" location and recognize internally large changes to the GPS.
Store a "friendly" air-space return path using the GPS history and known routes. This could allow a drone to escape in a case of jamming like this one, and would prevent the enemy from trying a more slow and subtle modification of GPS coordinates on a jammed drone.
new "Avenger" drone
from General Atomics will soon be deployed to the region. It's capable of holding a 2,000 lb. missile on attack missions.
developed bomber UAVs of its own
, though they are believed to be human-controlled designs, which trail the U.S.'s sophisticated UAVs, which are capable of autonomous flight, thanks to their advanced artificial intelligence.
V. Iran Threatens Afghanistan, Afghanistan Tells it to Leave it Out of U.S. Mess
Tensions rose on Thursday when Iran
its neighbor Afghanistan that it would consider any further drones detected launching from U.S. bases in Afghanistan a "hostile act" by the Afghanis. Iran's foreign minister Ali Akbar Salehi comments, "We have called on the Afghan government to seriously pursue the case, and under no circumstances let such events happen again, as such events will be regarded as unfriendly."
It's hard to know exactly what Iran could do in response, given the U.S.'s support for the Afghani government.
The suggestion was enough, though, to rattle Afghani President Hamid Kharzai, who claimed not to know about the drone,
, "Afghanistan was not aware that the drone had gone or malfunctioned in Iran."
Hamid Kharzai told Iran that he wants their nations to be friends and to leave them out of its issues with the U.S. [Image Source: CNN]
He added, "Afghanistan would not want to be involved in any - how should I put it, not antagonism, adversarial relations between Iran and the United States. Afghanistan wishes that they be friends and Afghanistan's sovereignty and territorial integrity and soil is not used one against the other."
Afghanistan currently gets much of its domestic goods from Iran, a Middle Eastern manufacturing powerhouse. A trade blockade would, of course, hurt debt-plagued Iran, but it's not entirely impossible that the nation's leadership could resort to such a mutually destructive move out of spite.
VI. Hostilities Between Iran and U.S. Continue
Iran, Israel, and the U.S. continue to be locked in a feud over Iran's reportedly nuclear weapons development. The U.S. claims their evidence indicates Iran is secretly building bombs. Iran claims its nuclear weapons activities are peaceful and solely for power purposes.
In addition to allegations of spying, Iran has publicly accused the U.S. and Israel of
to its nuclear effort. They point to
the sophisticated "Stuxnet" worm
, which specifically targetted Iran's nuclear power facilities, with the goal of sabotaging refining centrifuges. Their have also been reported assasinations of Iranian nuclear scientists and unexplained explosions at Iranian factories/nuclear facilities. Again, the Iranians point to U.S. and Israeli intelligence as the perpetrators of these incidents.
While Iran has never officially gone to war with the U.S. or its allies, although it did wage a war with Saddam Hussein's Iraq in the 1980s, a war in which the U.S. government was exposed to be funneling weapons and expertise to Iraq, weapons that would be turned against the U.S. in later conflicts. The U.S. support of Iraq generated much bitterness and resentment among the Iranian revolutionary movement.
That bitterness has even deeper roots in the U.S. support for The Shah (Persian for "king") who, together with his father had ruled Iran for 54 years with U.S. support. While the U.S. support helped modernize Iran, his policy of crushing dissidents and his imprisonment of Shiite religious leader Ayatollah Ruhollah Khomeini create pent-up hatred towards the monarch, animosity that exploded in the Iranian revolution of 1978.
That revolution installed a theocratic government much of the kind that some Christian fundamentalists have called for here in the U.S. -- in which the state had a religion of choice, but (supposedly) offers freedom of religion via legislative protections for religious minorities.
Some prominent America politicians such as
Sen. John McCain
(R-Ariz.) have called for the U.S. legal system to recognize the U.S. as a Christian theocracy [
]. Sen. McCain emphasizes "tolerance", but suggests that he would be uncomfortable with allowing a Muslim to be President of the United States. Likewise Iran, in the 1980s went through a period of increasing its own "tolerance" efforts in the 1980s, allowing its Christian and Jewish minorities to hold token political positions, albeit barring them from top positions of federal power.
Despite the similar fundamental governing philosophies between "conservative" evangelicals in the U.S. and Iranian fundamentalists, the U.S. evangelical movement have led some of the harshest criticism of Iran, though curiously going light on U.S. ally Saudi Arabia, a nation which practices and preaches an even more theocratic religious rule.
Iran hasn't exactly done its best to win friends among moderates in the U.S., though. It's been accused of funneling weapons to guerillas in the 1982 and 2006 conflicts between Lebanon and the U.S.-backed Israel.
The U.S. fears -- and perhaps rightly so -- that a nuclear armed Iran could lead to catastrophic destruction of its ally Israel and U.S. military bases in the Middle East. They also fear the nation could threaten the stability of secular democracies in Iraq, Afghanistan, and Pakistan, funneling support to religious insurgents.
Israel remains more non-chalant, claiming
it can shoot down any Iranian nukes
that come its way. Israel and Iran are
currently engage in a cyberwar
The Islamic republic is a puzzle for the Western world, and its neighbors to deal with in coming years. Iran, despite economic problems and foreign economic sanctions continues to grow. It recently passed the 1 million market in yearly automobile production, making it the top domestic producer of cars in the Middle East. Iran has the benefit of holding the world's second richest natural gas reserves and third richest oil reserves.
In 2009 Iran
launched its first satellite
Iran is a growing power in terms of education and technology, making its political and military clashes with the U.S., all the more problematic.
[Image Source: Google Images, original author unknown;
Fair Use clause
TITLE 17 > CHAPTER 1 > § 107
It also claimed to have 3.5 million college students enrolled in 2008 [
] -- a 4.4 percent enrollment rate which compares approaches U.S. enrollment rates. The U.S. reported in 2009 20.4 million college students enrolled [
], roughly a 6.7 % per capita enrollment rate. While Iranian propoganda makes it hard to tell whether these numbers are entirely accurate, Iran does appear to have higher college education rates that many of its Middle Eastern peers.
Christian Science Monitor
This article is over a month old, voting and posting comments is disabled
RE: Good luck decrypting the data!
12/17/2011 1:18:02 PM
If known encryption algorithms could break security, then ecommerce wouldn't exist.
It's really not that hard to have rotating keys, varying encryption protocols, custom military ICs differing from what the Iranians have a hold of now, etc. to make spoofing impossible without detailed info from a leak.
This crashed plane either had a bug (e.g. debug code enabling civilian GPS backup, or some other bug that underlies a completely different explanation from that in the article) or someone in charge didn't respect Iranian capabilities. Either way, it's easily correctable.
RE: Good luck decrypting the data!
12/17/2011 4:14:19 PM
When you have the hardware that is doing the encryption and know the algorithm this is the basis for power analysis.
In e-commerce you don't have access to the hardware that signs the certificate.
"I'd be pissed too, but you didn't have to go all Minority Report on his ass!" -- Jon Stewart on police raiding Gizmodo editor Jason Chen's home
U.S. to Iran: Give Us Back Our Drone
December 13, 2011, 8:26 AM
Quick Note: Iran Shows Off Images of Downed Stealth Drone on State TV
December 8, 2011, 12:58 PM
Iran Claims to Have Shot Down U.S. Stealth Drone, U.S. Not So Sure
December 5, 2011, 11:18 AM
Israel vs. Iran: Let the Cyber Battle Continue
August 10, 2011, 11:30 AM
Iran Say it Has Captured "Western Spies" Involved in Nuclear Cyberattack
October 5, 2010, 11:29 AM
Food Chemists at Italy's Barilla Claim to Have Perfect Instant Noodles w/out Frying
March 26, 2015, 4:25 PM
Half a Billion Dollars of U.S. Weaponry May be Lost to al-Qaeda, Rebels in Yemen
March 23, 2015, 2:12 PM
FAA Grants Amazon Prime Air an "Experimental Airworthiness Certificate"
March 19, 2015, 9:14 PM
ResearchKit is Apple's Bid to Make iPhone, iPad as Medical Research Instruments
March 9, 2015, 4:36 PM
Isaac Asimov's Blueprint for Alien "Life Not as We Know It" is Illuminated
March 9, 2015, 9:41 AM
Scientists Tap Hard Data on 15,500 Penises to Estimate Average Length
March 3, 2015, 11:22 PM
Most Popular Articles
WSJ Report Implies That Google Leveraged Lobbying to Kill Antitrust Abuse Probe
March 25, 2015, 5:37 PM
Half a Billion Dollars of U.S. Weaponry May be Lost to al-Qaeda, Rebels in Yemen
March 23, 2015, 2:12 PM
Samsung, Dell, Pegatron to Preinstall Microsoft Office 365 on Android Devices
March 23, 2015, 4:02 PM
Texan WISP Owner With Colorful History Sues to Block FCC Net Neutrality Rules
March 24, 2015, 1:19 PM
NVIDIA's Latest Windows 10 Drivers: Still Too Unstable For Primetime
March 24, 2015, 4:45 PM
Latest Blog Posts
Sceptre Airs 27", 120 Hz. 1080p Monitor/HDTV w/ 5 ms Response Time for $220
Dec 3, 2014, 10:32 PM
Costco Gives Employees Thanksgiving Off; Wal-Mart Leads "Black Thursday" Charge
Oct 29, 2014, 9:57 PM
"Bear Selfies" Fad Could Turn Deadly, Warn Nevada Wildlife Officials
Oct 28, 2014, 12:00 PM
The Surface Mini That Was Never Released Gets "Hands On" Treatment
Sep 26, 2014, 8:22 AM
ISIS Imposes Ban on Teaching Evolution in Iraq
Sep 17, 2014, 5:22 PM
More Blog Posts
Copyright 2015 DailyTech LLC. -
Terms, Conditions & Privacy Information