17 April 2021

unid secondary protocol

Recently I ran across on several transmissions in the 5 MHz band (also available on a secondary basis for amateur use) consisting of STANAG-4538 point-to-point circuit mode service with 188-110A and STANAG-4539 as traffic waveforms at several speeds. The transmissions are receivable in Northern Europe with a good SNR, especially using the KiwiSDR receiver at OZ1AEF (Skanderborg, Denmark): they are very frequent, of short duration, and occur on at least a half dozen different channels between 5300 and 5400 KHz USB. Given their unpredictability (time/channel) and their duration, a Direction Finding is very difficult, at least with the means at my disposal.  

The excellent SNR allows demodulations without many errors and therefore the possibility of examining and comparing the obtained bitstreams: to be honest, I expected to find a known data-link protocol or at least sequences attributable to some encryption technique (known or not )... but that's not what exactly happened.  Although the ACF doesn't produce results, comparing various demodulations it turns out that all the bitstreams exhibit the same initial 16-bit sequence 11110000100111010111 (0x90EB). 
Fig. 1

By syncing the bitstreams on the two sequences, interesting results are obtained: in particular,  patterns that have a fairly well-defined structure in the first 192 bit  (Figure 3).

Fig. 3 - bitstreams synched on 0000100111010111 sequence (first 192 bit) 

One could argue that the 16-bit sequence (LSB)0000100111010111(MSB) is the binary equivalent for 0x90EB, ie the sync sequence of STANAG-5066 frames: unfortunately, the following bytes do not match the Data Transfer Sublayer headers, ie the (supposed) fields do not contain data that make sense (EOT, size of address,...).

https://disk.yandex.com/d/qPt2CXC2x76yfg (wav)

https://disk.yandex.com/d/8tn5OrrXlsuL4A (streams)

No comments:

Post a Comment