Saved in:
Bibliographic Details
Main Authors: Jedermann, Eric, Kulpinski, Piotr, Strohmeier, Martin, Lenders, Vincent, Schmitt, Jens
Format: Preprint
Published: 2026
Subjects:
Online Access:https://arxiv.org/abs/2603.12062
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866914387841777664
author Jedermann, Eric
Kulpinski, Piotr
Strohmeier, Martin
Lenders, Vincent
Schmitt, Jens
author_facet Jedermann, Eric
Kulpinski, Piotr
Strohmeier, Martin
Lenders, Vincent
Schmitt, Jens
contents The Iridium Low Earth Orbit (LEO) satellite constellation remains a unique provider of global communications for critical industries, governments, and private users, serving over 2.5 million active subscribers despite recent market competition. In contrast to terrestrial wireless standards such as 3GPP, Iridium protocol specifications are proprietary and have not undergone rigorous, public, and systematic security evaluation. In this work, we present the first comprehensive security analysis of Iridium authentication and radio link protocols. We reverse engineer Iridium SIM-based authentication mechanism and demonstrate that the secret key can be extracted from the SIM card, enabling full device cloning and impersonation attacks. Leveraging a month-long dataset of Iridium up- and downlink satellite traffic, we further show that nearly all signaling and radio communication protocols currently in use lack encryption, resulting in the exposure of sensitive information in cleartext over the air such as login credentials and large volumes of personal data. Finally, we develop custom software-defined radio (SDR) tools to carry out spoofing and jamming attacks, revealing that modestly equipped adversaries can inject falsified messages or disrupt the Iridium service locally due to the absence of source authentication. Our findings uncover systemic vulnerabilities in the Iridium radio link and highlight the urgent need for users of critical applications to transition to more secure communication radio links.
format Preprint
id arxiv_https___arxiv_org_abs_2603_12062
institution arXiv
publishDate 2026
record_format arxiv
spellingShingle Systematic Security Analysis of the Iridium Satellite Radio Link
Jedermann, Eric
Kulpinski, Piotr
Strohmeier, Martin
Lenders, Vincent
Schmitt, Jens
Cryptography and Security
The Iridium Low Earth Orbit (LEO) satellite constellation remains a unique provider of global communications for critical industries, governments, and private users, serving over 2.5 million active subscribers despite recent market competition. In contrast to terrestrial wireless standards such as 3GPP, Iridium protocol specifications are proprietary and have not undergone rigorous, public, and systematic security evaluation. In this work, we present the first comprehensive security analysis of Iridium authentication and radio link protocols. We reverse engineer Iridium SIM-based authentication mechanism and demonstrate that the secret key can be extracted from the SIM card, enabling full device cloning and impersonation attacks. Leveraging a month-long dataset of Iridium up- and downlink satellite traffic, we further show that nearly all signaling and radio communication protocols currently in use lack encryption, resulting in the exposure of sensitive information in cleartext over the air such as login credentials and large volumes of personal data. Finally, we develop custom software-defined radio (SDR) tools to carry out spoofing and jamming attacks, revealing that modestly equipped adversaries can inject falsified messages or disrupt the Iridium service locally due to the absence of source authentication. Our findings uncover systemic vulnerabilities in the Iridium radio link and highlight the urgent need for users of critical applications to transition to more secure communication radio links.
title Systematic Security Analysis of the Iridium Satellite Radio Link
topic Cryptography and Security
url https://arxiv.org/abs/2603.12062