Listening to OpenSky transmissions

Status
Not open for further replies.
cybersec

cybersec

Member
Joined
Jun 13, 2015
Messages
11
Location
Michigan
I've been looking around a bit and have read a lot of old info about OpenSky being "unscannable" and "uncrackable". Has any progress been made since then to either crack the protocol or make a scanner thats able to scan it?

Also, what makes it "unscannable"? Is it possible to buy an official OpenSky unit and tune it to your local LE's frequency to listen, as long as it's unencrypted?

- Cybersec
 
RayAir

RayAir

Member
Joined
Dec 31, 2005
Messages
1,947
cybersec said:
I've been looking around a bit and have read a lot of old info about OpenSky being "unscannable" and "uncrackable". Has any progress been made since then to either crack the protocol or make a scanner thats able to scan it?

Also, what makes it "unscannable"? Is it possible to buy an official OpenSky unit and tune it to your local LE's frequency to listen, as long as it's unencrypted?

- Cybersec
Click to expand...


Nope and it appears there will likely never be a way to listen to OpenSky due to its proprietary nature and the fact that it isn't very popular.

Even if you bought an OpenSky capable radio and somehow managed to get software you're still SOL as you would need to know the trunking, talk group info and whatever else is required.

It gets worse, most programming is done OTA. When you first turn on your O/S radio it has to authenticate to the system as a valid subscriber. The radio then downloads the authorized talk groups. For instance, a Sgt. could log on to any O/S radio on the system and it would download the command talk groups, etc that line officers wouldn't get with their log on. The radio can be set to auto log on or to require a user password/ID.

Each radio has its own IP address and 10 digit number (XXX-XXX-XXXX). The first three are like an "area code", the second three digits are the agency code, and the last four digits are a random number.

AES encryption can be used to protect the voice and data traffic and is also extended over the back end.

I have read reports of system problems from other agencies that attempted to deploy OpenSky. I assume you're wanting to listen to Oakland County's O/S system. They have the system working very good. The coverage is great, even with a portable and the voice quality is exceptional.

Interop with the MPSCS could be improved a little, but besides that it is a great countywide system that likely will be in service for years to come.

But unfortunately, there is no known way to monitor it without having an authorized radio.
 
krokus

krokus

Member
Premium Subscriber
Joined
Jun 9, 2006
Messages
6,169
Location
Southeastern Michigan
Ray_Air said:
Interop with the MPSCS could be improved a little, but besides that it is a great countywide system that likely will be in service for years to come.
Click to expand...

That is an understatement. Trying to work with the Oakland assets is a hassle.

To add onto the rest of the post, if encryption is used, then it is illegal to decode, as well as damn near impossible. I hope to try and decode the data stream, when I have some spare time, and a few more resources. (I am hoping that the data stream is not encrypted.)

Sent via Tapatalk
 
cybersec

cybersec

Member
Joined
Jun 13, 2015
Messages
11
Location
Michigan
krokus said:
That is an understatement. Trying to work with the Oakland assets is a hassle.

To add onto the rest of the post, if encryption is used, then it is illegal to decode, as well as damn near impossible. I hope to try and decode the data stream, when I have some spare time, and a few more resources. (I am hoping that the data stream is not encrypted.)

Sent via Tapatalk
Click to expand...

Ray_Air said:
Nope and it appears there will likely never be a way to listen to OpenSky due to its proprietary nature and the fact that it isn't very popular.

Even if you bought an OpenSky capable radio and somehow managed to get software you're still SOL as you would need to know the trunking, talk group info and whatever else is required.

It gets worse, most programming is done OTA. When you first turn on your O/S radio it has to authenticate to the system as a valid subscriber. The radio then downloads the authorized talk groups. For instance, a Sgt. could log on to any O/S radio on the system and it would download the command talk groups, etc that line officers wouldn't get with their log on. The radio can be set to auto log on or to require a user password/ID.

Each radio has its own IP address and 10 digit number (XXX-XXX-XXXX). The first three are like an "area code", the second three digits are the agency code, and the last four digits are a random number.

AES encryption can be used to protect the voice and data traffic and is also extended over the back end.

I have read reports of system problems from other agencies that attempted to deploy OpenSky. I assume you're wanting to listen to Oakland County's O/S system. They have the system working very good. The coverage is great, even with a portable and the voice quality is exceptional.

Interop with the MPSCS could be improved a little, but besides that it is a great countywide system that likely will be in service for years to come.

But unfortunately, there is no known way to monitor it without having an authorized radio.
Click to expand...

Well it appears RadioReference has all of that information already - correct me if I'm wrong.

CLEMIS (OakWIN) Public Safety Communications Trunking System, Oakland County, Michigan - Scanner Frequencies

Isn't that everything you guys were talking about? It shows them all as unencrypted digital talk groups, and even lists talkgroup names and frequencies...

Isn't that everything you would need to program an OpenSky radio to listen to them?
 
RayAir

RayAir

Member
Joined
Dec 31, 2005
Messages
1,947
cybersec said:
Well it appears RadioReference has all of that information already - correct me if I'm wrong.

CLEMIS (OakWIN) Public Safety Communications Trunking System, Oakland County, Michigan - Scanner Frequencies

Isn't that everything you guys were talking about? It shows them all as unencrypted digital talk groups, and even lists talkgroup names and frequencies...

Isn't that everything you would need to program an OpenSky radio to listen to them?
Click to expand...


Any of what is in the RR database regarding OpenSky is of no use. That is the basic structure of the system, but it is missing a lot.

What you see has been either submitted by a system tech or system user. It wasn't submitted by someone with a scanner, or DSD+.
 
RayAir

RayAir

Member
Joined
Dec 31, 2005
Messages
1,947
krokus said:
That is an understatement. Trying to work with the Oakland assets is a hassle.

To add onto the rest of the post, if encryption is used, then it is illegal to decode, as well as damn near impossible. I hope to try and decode the data stream, when I have some spare time, and a few more resources. (I am hoping that the data stream is not encrypted.)

Sent via Tapatalk
Click to expand...

Countywide interop between agencies is as simple as using CW_1. Every radio has countywide talk groups in their home profile. ALL_DISP will broadcast to every dispatch center in the county.

Macomb interop has been much improved over the last couple months.

This system is secure. Money says no one will be able to passively eavesdrop on it.
 
krokus

krokus

Member
Premium Subscriber
Joined
Jun 9, 2006
Messages
6,169
Location
Southeastern Michigan
cybersec said:
Isn't that everything you guys were talking about? It shows them all as unencrypted digital talk groups, and even lists talkgroup names and frequencies...

Isn't that everything you would need to program an OpenSky radio to listen to them?
Click to expand...

Not if the control channels are encrypted.

Sent via Tapatalk
 
kayn1n32008

kayn1n32008

ØÆSØ Say it, say 'ENCRYPTION'
Joined
Sep 20, 2008
Messages
7,005
Location
Sector 001
cybersec said:
Isn't that everything you would need to program an OpenSky radio to listen to them?
Click to expand...


OpenSky does not work that way. The radio MUST be authenticated by the network before it will pass audio. OpenSky can NOT be passively monitored with an OpenSky subscriber unit. Period.


Sent from my iPad using Tapatalk
 
Forts

Forts

Mentor
Database Admin
Joined
Dec 19, 2002
Messages
6,927
Location
Ontario, Canada
cybersec said:
Well it appears RadioReference has all of that information already - correct me if I'm wrong.

CLEMIS (OakWIN) Public Safety Communications Trunking System, Oakland County, Michigan - Scanner Frequencies

Isn't that everything you guys were talking about? It shows them all as unencrypted digital talk groups, and even lists talkgroup names and frequencies...

Isn't that everything you would need to program an OpenSky radio to listen to them?
Click to expand...

You are missing what Ray_Air posted previously. OpenSky radios only have a minimal amount of programming in them (basically the bare bones system info). When powered up they log into the system and get provisioned over the air (as previously mentioned, what talkgroups it's allowed to access etc etc). This programming isn't done one radio at a time with a PC like other trunking systems. You can't just buy a radio, program in talkgroup 1234 and away you go. OpenSky doesn't work that way. When you look at the OpenSky tab in RPM there isn't a whole lot there to play with.
 
Status
Not open for further replies.

Similar threads

M
Transoceanic Wave Magnet
Replies
0
Views
427
mayidunk
M
J
NXDN Encryption Reject Unencrypted Transmissions?
Replies
5
Views
879
jackw414
J
BinaryMode
List The Three Best Options Scanners/Communications Receivers Have Today
Replies
17
Views
2K
StoliRaz
S
N9JIG
Scanner Tales: Obsolete Accessories
2
Replies
21
Views
3K
wa8pyr
wa8pyr
rjvalenta
tuner output power while tuning
Replies
8
Views
707
AK9R
AK9R
Top