[keyme]

Good work!

There's an immediate application to this research, and that's answering the following question:

How does the implementation of their geo-fencing enforcement actually work? As you may know, you can't use starlink in India (or Iran etc.), even with a roaming plan.

Sure, it is possible that the satellites just "go off" whenever passing over these territories. However, from experience, there's a good chance that this isn't how it works. Perhaps there is some cooperation from the client side (at the software level). Perhaps the terminal being hard-to-root had made it "trusted enough" for this purpose in their security design.

If anyone is up to answering that question, I'm sure they'll get a bunch of karma on their HN post.

[wkat4242]

I know my previous sat phone from Thuraya had a GPS receiver and refused to connect before getting a GPS lock for precisely this reason.

Now, Thuraya is a bit weird in that they have some price plans that differ by the country you're calling from. Most sat phone networks don't do that but Thuraya is the cheapest in airtime by far especially when using some of these plans.

But I wouldn't be surprised if most networks work this way. After all a gps receiver costs peanuts these days and takes up trivial amounts of space.

If this is the case it's kinda cool because it can then also be used to circumvent these restrictions by spoofing the GPS signal either over the air or in the transceiver itself. Highly illegal obviously but technically cool.

Also, simply turning off the sat over these areas is not so easy because the footprint will cover a radius of hundreds of kilometers. So border areas will be a big problem.

You won't be able to spoof the gps location too much though because if you give it a location way outside your footprint I'm sure the sat is smart enough to block you.

[nucleardog]

> If this is the case it's kinda cool because it can then also be used to circumvent these restrictions by spoofing the GPS signal either over the air or in the transceiver itself. Highly illegal obviously but technically cool.

Since the Starlink satellites aim themselves to an extent, I’d think spoofing your location _too_ far away from where you actually are could end up with you unable to actually get a lock on any satellites.

[inemesitaffia]

Starlink has cells which can create virtual fences. Your GPS location has to match the cell you claim to be in.

People tried spoofing in 2021

[badcarbine]

So what if instead of not turning it off because of the radius, we made a giant frickin cantenna and made a more focused beam!

[wkat4242]

Of course they focus in smaller areas as it significantly increases capacity too (providing multiple cells per sat with each their own capacity). But a more focused beam is still not able to follow borders tightly.

It's easier to focus from LEO (low earth orbit) like Starlink but there you're dealing with a constantly moving footprint. And see how small a Starlink sat is. Good luck fitting the big cantenna (and really you want several). Phased array yes but not a huge one. The more elements the tighter the focus.

With GEO (geostationary orbit) you don't have the moving problems and they do use static "cantennas" or rather dishes but you're so far away that you can't focus tightly anyway. The footprint of a single GEO cell dish is still the size of a small country.

[appplication]

I would bet if there’s any beam shaping they try to shape to avoid affected areas. Better to allocate that power somewhere it’s useful/paid for.

They probably also just authenticate based on end user (e.g. what is the account being used and where is if registered), and make it against usage terms to operate in certain geolocations. The uplink terminals may also include GPS metadata but that doesn’t seem necessary since most won’t move and extra GPS equipment would be added expense.

[keyme]

I have no source handy, but I vaguely remember a GPS module present on board (I've likely seen that on some youtube teardown).

[inemesitaffia]

In Ukraine, it works without GPS

[jcims]

There is

[weregiraffe]

Huh? Why would the satellites go off? The Starlink satellites know they own location, so they most likely have a list of cells they are allowed to serve. It's a lot harder to hack a satellite in orbit than a terminal you have physical access to.

[appplication]

Well… no actually. Many satellites are “bent pipes”, and do no signal authentication. They just transpond and send the data back down. If you can get the uplink to hear you, you can use it. The problem is uplink may not always be listening in your direction.

It’s actually really easy to jam or pirate many satellites for this reason. I’m unsure if spacex has more auth than the industry standard.

Source: I used to geolocate jammers and pirates.

[xoa]

Starlink is unique in being a LEO massive constellation using phased arrays and thus afaik cannot work like that. The terminal and satellites must work in conjunction to steer the beam electronically at a pretty fast rate, they're only ~550km away at a relative velocity of 7-someodd km/s. Cells are quite small, beam spots even smaller, and terminals must both track a given sat and jump between multiple ones.

Yes, all indications are that SpaceX auth is also very modern and very good, but the very nature of the system means they have to have quite precise location information on both sides. The satellites will simply not transmit where it's not permitted by regulators, and can do that with high resolution because they simply physically cannot usefully see very big circles. That's exactly why thousands and thousands of satellites are needed.

In another comment you mentioned "if there's any beam shaping" which seems to indicate you really haven't ever taken any real look at Starlink? It's nothing like an old HEO sat system.

[appplication]

> seems to indicate you really haven't ever taken any real look at Starlink? It's nothing like an old HEO sat system.

I haven’t! I enjoyed being enlightened by your comment though.

[jasonwatkinspdx]

Here's a live map of the constellation that also shows ground stations: https://satellitemap.space/

SpaceX has been developing sat to sat links, but in the current system a majority of traffic just goes up and down like a bent pipe. However because of the speed the sats move the system needs to know the location of all endpoints in real time. A given sat is only visible to a base station for something like 90 seconds. So it's very different from traditional GEO services, or even MEO services like Iridium et all for that matter.

[wkat4242]

It's the ground side, the user endpoints and downlink stations (the latter Starlink can do without in some places due to the laser links) though that need approval to transmit from country regulators.

The sats themselves are regulated by the launching country, the US only.

[dotnet00]

I'd expect that since Starlink has to be a bit more involved in the communication (particularly for determining need for packet routing over the laser interconnects between satellites), they might not be bent pipes.

Plus, with things like updating the constellation, which likely is a significant security concern, they would probably be relying on some sort of geofencing.

[inemesitaffia]

Works in Iran btw. Thanks mostly to Blinken