Over on the SDRplay forums user 'RSP2user' has put up a quality post describing how he receives HRPT weather satellite images with his SDRplay RSP2. HRPT stands for 'High Resolution Picture Transmission' and provides a much higher resolution image compared to the APT weather satellite images typically downloaded from NOAA satellites. Somewhat confusingly the picture quality of HRPT is similar to LRPT (low rate picture transmission) which is used on the Russian Meteor M series weather satellite. HRPT provides 1.1 km resolution, whilst LRPT provides 1 km resolution.
Currently there are multiple satellites broadcasting HRPT signals including NOAA 19, NOAA 18, NOAA 15, Meteor M2, Fengyun 3B, Fengyun 3C, Metop A and Metop B.
The difference in difficulty of receiving APT and LRPT versus HRPT transmissions typically occur in the L-band at about 1.7 GHz, and requires a directive high gain antenna with tracking motor to track the satellite as it passes over. This makes these images many times more difficult to receive compared to APT and LRPT which only require a fixed position antenna for reception at the more forgiving 137 MHz.
Over on his post RSP2user shows how he uses a repurposed Meade Instruments telescope tracking mount and controller to drive the tracking of a 26 element loop Yagi antenna. A 0.36dB noise figure LNA modified with bias tee input is used to boost the signal and reduce the noise figure. The signal is received by a SDRplay RSP2 and processed on a PC with USA-satcoms HRPT decoder software, which is available for purchase by directly contacting him. The HRPT signal bandwidth appears to be about 2.4 MHz so possibly an RTL-SDR could also be used, but it might be pushing it to the limit.
If you are interested, RSP2user also uploaded an APT weather satellite image reception tutorial on another post. This tutorial shows how to build a quality quadrifilar helix antenna as well.
Receiving the HRPT signal on USA-Satcoms' HRPT decoder.
Back in September we posted [1, 2] about the QRadioLink software which is an RTL-SDR compatible digital amateur radio voice decoder and encoder program for Linux and Android (with chroot). It supports modern digital voice codecs like Codec2 and Opus. It is capable of being used with multiple SDRs, and can be used for transmitting digital voice too if you have a transmit capable SDR.
Andrian the developer recently wrote in to let us know that QRadioLink now has a website at qradiolink.org that you can follow for updates about its development. The website also explains some of the features of the software, and lists possible performance values of digital voice. The features include:
Receives and transmits analog voice, digital voice, low resolution video, text, IP protocol.
Narrow band modem with Codec2 or wideband modem and Opus.
Digital Modems: BPSKQPSK2FSK4FSK
Modes: narrow FM, SSB, digital voice, digital video, digital data
Typical Receiver performance is given in the following table, with all values being measured on an R820T RTL-SDR.
Mode
Condition
Sensitivity (dBm)
Codec2 700B
20 db SINAD
-115
Codec2 1400
20 db SINAD
-112
Opus
20 db SINAD
-102
Narrow FM
12 db SINAD
-118
In the future Adrian hopes to expand the software to include features like VOIP integration, SSB transceiver, DTMF & CTCSS encoder/decoders, multi-channel RX, HD video, remote control and a GUI improvement.
Most modern vehicles use some form of rolling code security on their wireless keyfobs to prevent unauthorized replay attacks. When the car owner presses a button on the keyfob, a unique rolling code is sent to the car. If it matches one of the codes currently stored in the car, the car will unlock and then invalidate that code so it can never be used again, thus preventing a replay attack. On the next press the keyfob sends a new code. In most designs when a code is used up, a new code is added to the list of valid codes via a random number generator based on a secure algorithm only known (presumably) to the engineers.
Essentially Tom found that instead of producing a randomly generated rolling code, the Subaru keyfob simply increments the rolling code number each time. This allows an attacker to perform a second key press simply recording an initial real key press, decoding the packet, increasing the decoded rolling code by one, then re-transmitting. It also means that the attacker could continually raise the rolling code value on the car himself, which would eventually make the real keyfob useless as the codes on the keyfob would be outdated and no longer match the same number range as the car.
The entire exploit was found on a super low budget. Tom used only an RTL-SDR and Raspberry Pi. The receive is obviously handled by the RTL-SDR, but the transmit side is handled by RPiTX which is software that allows the Raspberry Pi to transmit RF signals directly from a GPIO pin without the need for any additional transmitting hardware. Tom writes that the exploit probably affects the 2006 Subaru Baja, 2005 - 2010 Subaru Forester, 2004 - 2011 Subaru Impreza, 2005 - 2010 Subaru Legacy and the 2005 - 2010 Subaru Outback. Tom also writes that various dealers and spokes people have contacted him stating that the exploit probably only affects US models. If you have one of the affected models and are worried the only way to stay safe is to simply not use wireless entry on the keyfob, at least until/if Subaru fixes the issue with a recall. Although so far no statement from Subaru has been released.
Tom has also uploaded a demonstration video to YouTube which is shown below.
As part of their senior project Matthew May & Brendan Harlow of Champlain College worked on a project that involved creating their own software defined radio based portable cell phone network. If you're interested their setup is nicely documented on their project page. Basically it consists of a bladeRF software defined radio and Raspberry Pi running the YateBTS base station software. This is nothing new in terms of work done before, but the clear documentation makes it a good starting point for anyone looking at building their own SDR based cell basestation.
A custom cell basestation may be useful for those in remote areas without commercial cell phone reception, during disasters or even just to create a type of secondary network in your home.
A few months ago satellite data broadcasting company Outernet created a limited number of prototype receivers that combined an L-band satellite patch antenna, LNA and RTL-SDR into a signal unit. This was never produced in bulk as they found it to be too noisy having the RTL-SDR so close to the antenna, but nevertheless it still worked fairly well.
Over on YouTube max30max31 bought one of these prototype units and made a video about using it for receiving and decoding various L-band satellite signals. In the video he first shows an overview of the product and then shows it receiving and/or decoding some signals like Inmarsat STD-C, AERO and Inmarsat MFSK.
Over on the SWLing Post blog we’ve seen news of this new SDR based car radio called the Gospell GR-227. Gospell is a Chinese manufacturer of various broadcast consumer radio products including DRM receivers. It is intended to be an adapter for your car that lets you listen to digital broadcast stations such as DAB/DAB+ on VHF and DRM on UHF, but it can also be used for standard AM and FM reception. From the product sheet it looks like it will simply plug into you car USB port, and output audio through that port into your cars head unit. Control of the unit is through an Android app.
There doesn’t seem to be anything stopping someone from using this outside of a car though, so perhaps depending on the price and software hackability available it might make a good PC or Raspberry Pi based HF receiver for all modulation types too.
Over on the Gospell Facebook page are images showing the Gospell running at IBC 2017 and next to other upcoming SDR based digital broadcast receivers like the Titus II.
Gospell SDR Connected to a Car Radio Head Unit
No word yet on a release date or pricing. The press release reads:
Chengdu, China, September 04, 2017 – A new adaptor specifically designed for in-car use that simplifies digital radio on the road will be introduced at IBC by Gospell.
GR-227 is a small, low-cost adaptor that acts as an aftermarket add-on to car stereos receiving high-quality digital broadcast programs and data application, and serving it to the car audio system over a USB cable. Based on software defined radio technology, GR-227 is compatible with DAB, DAB+, DRM and is DRM+ ready. It is also powerful enough to support digital audio decoding such as extended HE-AAC (xHE-AAC).
GR-227 literally works with any kind of car stereos with a USB port. Our patent pending technology allows the adaptor to behave like a thumb drive when plug into a USB port and makes it compatible with most of the music players not only in car but also for home use.
To make the most of GR-227, the Gospell Smart Tune App for Android has been included to add more features. When partnered with an Android powered car stereo, the App not only allows for playback of the broadcast audio program but data application which brings much fun to car entertainment.
By connecting the supplied triple band active antenna which can be attached to the windscreen through the SMA antenna connector, the reception in DRM, FM and DAB bands can be significantly improved, offering maximum flexibility between different broadcasting standards.
Installing the plug-and-play GR-227 adaptor to your car is easy and doesn’t require changing your car stereo. It is one of the easiest ways to upgrade your car radio to digital without replacing anything.
The Gospell’s aftermarket car adaptor range starts with USB model but more will follow to support more car stereo types.
Haochun Liu, DRM director, Gospell, said: “By leveraging SDR, we can now combine multiple broadcasting standards together to offer flexibility and cost advantages, coupled with easy installation without the necessity of buying a new car stereo as in traditional solutions.”
For additional information, please visit www.goscas.com or contact Gospell sales at [email protected].
About Gospell
Founded in 1993, Gospell Digital Technology Co Ltd (GOSPELL). is a private hi-tech enterprise with R&D, manufacturing, business consultancy and planning, trade, delivery, project implementation and after sales service, acting as a complete DTV and triple-play solution provider for Digital TV/OTT related projects. Headquartered in GOSPELL INDUSTRIAL PARK at Chenzhou, Hunan Province for CPE related production manufacturing, GOSPELL also has its office in Shenzhen for business/marketing management and administration, in Chengdu for R&D and headend/transmitter system production/debugging and Customer Service Center, and in 12 cities in China as well as international offices in India, Africa and Mexico.
Thank you to Adrian for submitting his video about using the Android App called QRadioLink and an RTL-SDR to decode digital amateur radio voice transmissions. Adrian writes that in the video the RTL-SDR connects to the Android phone with a USB OTG cable and uses a sample rate of 1 MSPS. He also writes the following about QRadioLink:
QRadioLink is a building platform which allows experimenting with VHF-UHF SDR transceivers using different modulation schemes for digital data transmissions. So far digital voice and text transmission is supported, using either a narrow band modem and Codec2 or a high bandwidth modem and Opus. Supported hardware includes the RTL-SDR, Ettus USRP, HackRF, BladeRF and in general all devices supported by libgnuradio-osmosdr.
QRadioLink running on Android (Debian chroot) with RTL-SDR
Back in June Gus Gorman showed us via a YouTube tutorial and demo how to monitor ATCS (Advanced Train Control System) signals from trains. ATCS is found in the USA and is used for things like communications between trains, rail configuration data, train location data, speed enforcement, fuel monitoring, train diagnostics and general instructions and messages. Gus used an RTL-SDR and the ATCS Monitor software to decode the signals and give us a view of the current state of the railway line.
In his latest video Gus gives a better demonstration of the software by parking outside a train station so that he can receive many more signals from the trains. At the start of the video he shows the track view of BNSF trains, and then later switches over to the Union Pacific track view.
