Thanks to Mike (ghostop14) for submitting another interesting article this time about his work with spectral fusion on the WiFi and Bluetooth bands. In the article Mike describes his new Sparrow-WiFi tool, which is a tool that allows you to visualize the WiFi and Bluetooth signal spaces all in one spectral display. The hardware consists of a WiFi and Bluetooth dongle as well as optionally an SDR like the HackRF. The software displays all data simultaneously on the same display, so you can easily tell if there is some channel clashes occurring, or if there is some other source of interference. In Addition Sparrow-WiFi also works remotely and even with a Raspberry Pi mounted on a drone.
From the article he writes:
Thinking about the 2.4 and 5 GHz bands, my biggest issues with traditional wifi tools were always that apps such as inSSIDer which are great on the Windows side didn’t have a nice polished Linux GUI equivalent so I’d have to run a Windows system or virtual machine to visualize the signal space. On the flip side, some of the great Linux-only capabilities didn’t have a nice polished integrated UI and I’d have a lot of textual data, some of which the Windows tools didn’t provide, but it was harder to visualize. Then there’s the fact that wifi tools can’t “see” Bluetooth (and vice versa), and SDR historically didn’t have enough instantaneous bandwidth to show the whole 2.4 GHz or 5 GHz spectrum at one time. And, did I mention the tools don’t integrate or talk to each other so I can’t get a “single pane of glass” perspective of all the different ways to look at the same RF space simultaneously? It would be great if I could get one single view of the most common protocols and see the actual spectrum all in one place at the same time.
Now enter the era of the Internet-of-Things, new SDR receivers, and even drones and my old wifi tools seem to have been left a bit behind. Why do I say that? I can’t “see” all of the chatter from wireless networks, Bluetooth, ZigBee, NEST devices, remotes, etc. scattered all over my wireless bands in one view. Sure, I can run 3 or 4 tools independently to find the signals and try to see what they are, but it becomes tough to get a single integrated perspective. Especially when I can’t see my RF spectrum overlaid on top of the wifi SSID’s and Bluetooth advertisements to sort out what may be related to a a signal I know about and what may be something else. Ultimately, it means that I can’t clearly explain why I have poor wifi connections in one area versus another even though I may not have overlapping channels (I know, use 5 GHz and sparrow-wifi supports that too). The reason for this is simple; current tools don’t have true spectral awareness based on the most common possibilities in one integrated solution.
Now, let’s ask even harder questions. What if I want to step up my wifi “wardriving” and start “warflying”? Or, what if I need a mobile platform that can be sent into an area on a rover? Can I bring the same spectral awareness in a small enough platform to fly for example as an under-350-gram payload complete with power, wifi, spectral scans, and even pull GPS for anything we see? And, can I interact with it remotely for real-time visibility or have it work autonomously? Okay, now you’re just asking a lot. These were all goals of a new tool I just released called “Sparrow-wifi” which is now available on GitHub (https://github.com/ghostop14/sparrow-wifi.git). Sparrow-wifi has been purpose-built from the ground up to be the next generation 2.4 GHz and 5 GHz spectral awareness and visualization tool. At its most basic, it provides a more comprehensive GUI-based replacement for tools like inSSIDer and linssid and runs specifically on Linux. In its most comprehensive use cases, Sparrow-wifi integrates wifi, software- defined radio (HackRF), advanced Bluetooth tools (traditional and Ubertooth), GPS via gpsd, and drone/rover operations using a lightweight remote agent and GPS using the Mavlink protocol in one solution.
Sparrow-Wifi Spectral Fusion. Wifi & Bluetooth dongle data + Live spectrum from a HackRF.
A full list of the possible scenarios that Sparrow-WiFi was designed for is pasted bleow.
Basic wifi SSID identification.
Wifi source hunt - Switch from normal to hunt mode to get multiple samples per second and use the telemetry windows to track a wifi source.
2.4 GHz and 5 GHz spectrum view - Overlay spectrums from Ubertooth (2.4 GHz) or HackRF (2.4 GHz and 5 GHz) in real time on top of the wifi spectrum (invaluable in poor connectivity troubleshooting when overlapping wifi doesn't seem to be the cause).
Bluetooth identification - LE advertisement listening with standard Bluetooth, full promiscuous mode in LE and classic Bluetooth with Ubertooth.
Bluetooth source hunt - Track LE advertisement sources or iBeacons with the telemetry window.
iBeacon advertisement - Advertise your own iBeacons.
Remote operations - An agent is included that provides all of the GUI functionality via a remote agent the GUI can talk to.
Drone/Rover operations - The agent can be run on systems such as a Raspberry Pi and flown on a drone (it’s made several flights on a Solo 3DR), or attached to a rover in either GUI-controlled or autonomous scan/record modes. And yes, the spectrum output works over this connection as well.
The remote agent is HTTP JSON-based so it can be integrated with other applications
Import/Export - Ability to import and export to/from CSV and JSON for easy integration and revisualization. You can also just run 'iw dev <interface> scan' and save it to a file and import that as well.
Produce Google maps when GPS coordinates are available for both discovered SSID's / Bluetooth devices or to plot the wifi telemetry over time.
Over on YouTube user IW2DZX has uploaded a video showing him using an old EeePC 900 to receive HF with an RTL-SDR V3 running in direct sampling mode on a Raspberry Pi 3 which is running a SpyServer. An EeePC 900 is an old netbook that was released in 2008 which is lightweight, portable and was fairly cheap. Second hand Eeepc's can now be found on eBay for less than $60 US.
By running the RTL-SDR on a Raspberry Pi 3 with SpyServer the need to have the dongle connected to the netbook is eliminated. Instead the radio data from the RTL-SDR is efficiently sent over a network connection and received via the WiFi on the Eeepc.
In his area of Barajas, Spain the meteorological agency recently switched to the newer RS41-SGP radiosondes. To decode these Daniel uses the open source "RS" software which is capable of decoding various radiosondes including RS41. He notes that for now it is better to use his fork of "RS" as the base version contains a bug. He also shows how the received data can be plotted in Viking, which is a program used for plotting things like GPS tracks on a map.
Finally he shows how to feed the radiosonde data to the APRS-IS network. APRS is a packet radio system used by hams which works via radio and the internet, allowing for worldwide communication by radio. Feeding the data into APRS-IS allows anyone to see the flightpath on a site like aprs.fi.
RS41 Radiosonde Flight Path recorded by Daniel Estevez
An antenna rotator can be used to automatically point a high gain directional antenna such as a Yagi at a low earth orbit satellite which passes overhead relatively quickly. Such as antenna can be easily connected to an SDR like the RTL-SDR to receive data such as HRPT weather satellite images from satellites.
Manuel's antenna tracker is inspired by the SatNOGs rotator, but he writes that his one was designed to slightly to be smaller and more powerful. For the driving motors he uses NEMA23 steppers which are mounted in a frame made out of 2020 aluminum extrusions. An Arduino Nano with optical end stops controls two TB6600 stepper drivers which control the motors. The rest of the parts such as brackets and gears are all 3D printed.
Attached to the antenna rotator is Manuel's home made carbon Yagi antenna. He also attempted to use his 1.2m dish but found that the rotator could not handle the weight.
Moments ago we posted our own review of the RSP1A. But other radio bloggers, YouTubers and websites have also recently released reviews. Below is a summary of those other reviews.
But what of this SDR’s performance? In a nutshell: as of today, I’d contend that the RSP1A will simply be the best SDR value on the market. End of story. There is nothing I know in the $99 price bracket that can beat it.
NN4F.com
In his post NNF gives a quick review of the new unit from the perspective of an average user. He notes that spurious signals that were visible on HF with the RSP1 as now gone, at that the RSP1A is on par with the RSP2, if not better.
HamRadioScience
Here the author of hamradioscience.com compares his RSP1A with the RSP1 and RSP2. He notes better sensitivity with the RSP1A compared to the RSP1, but comparable performance with the RSP1A vs the RSP2. He has also uploaded a video demonstrating a comparison between the RSP1 and RSP1A.
RSP1A First Look
Laboenligne.ca
Over on YouTube user Laboenligne.ca (aka Pascal Villeneuve VA2PV) has uploaded an interview that he did with Jon Hudson of SDRplay. The interview discusses the RSP1A product as well as the development around it.
NEW SDRplay RSP1A 14 bit SDR receiver - Interview with Jon Hudson
Yesterday the SDRplay team released the $99 US RSP1A, which is a revision of the RSP1A. In this post we present a review comparing its performance against the older RSP1 and the currently selling $169.95 US RSP2. We aim to mainly show demonstrations of improvements that we've found on the RSP1A in areas where we discovered problems on the RSP1 or RSP2.
Discussion of Improvements
First we present a discussion on the improvements made.
TCXO: The first noticeable improvement is that the RSP1A now comes with a 0.5PPM TCXO. This was one of the main criticisms of the RSP1 as the RSP1 only came with a standard oscillator which can drift as the temperature changes. But as mentioned in our previous review that included the RSP1, the drift was fairly small after warmup due to the good heat dissipation of the large PCB, and the relatively low power usage and thus less heating of the Mirics chips used on RSP units. Nevertheless, a TCXO is a good upgrade and brings it back in line with most low cost SDRs on the market now.
Enhanced RF Preselectors + Notches: Strong out of band signals can overload an SDR causing problems like imaging and reduced sensitivity. Preselectors are RF filters which help to filter out unwanted signals for the band that you are listening to.
The RSP1 had 8 preselector bands and the RSP1A brings this number up to 12, which is even more than the 10 preselectors on the RSP2.
In testing we found that the new preselectors certainly do help out a lot. The new 2 MHz low pass and 2 - 12 MHz certainly help to reduce interference from the MW broadcast AM band. Changes in the VHF filters reduce problems from strong broadcast FM and DAB stations. The filters have also been sharpened considerably making the existing filters even more effective. The RSP-1 in some cases suffered quite severely from out of band signal interference, and the RSP-2 made it a bit better, but the RSP-1A solves the interference problem much more.
The new FM/AM and DAB notch filters also do a good job at notching out these often problematic very strong signals.
Preselectors on the RSP1, RSP1A and RSP2
Improved LNA Architecture: In the RSP1 the front end LNA could only be turned on or off. Turning it on reduces the noise figure and improves performance, especially at UHF frequencies. The single gain step was problematic as often the LNA could overload on strong signals if turned on. The RSP1A introduces a gain control block which allows the LNA to have variable gain steps.
This new architecture helps to maximise the dynamic range of the RSP1A, thus reducing overloading.
Extended frequency coverage down to 1kHz: The lower limit of the RSP1 was 10 kHz, so really low LF reception is now available on the RSP1A.
Bias-T: Just like with the RSP2, the bias-t allows you to power external devices over the coax cable. Such as remote LNAs, switches etc. Running a good LNA next to the antenna is optimal, as this helps push signals through the coax cable losses.
RF Shielding: Like the RSP2 the plastic case is now spray painted with metallic paint on the inside. This works almost as well as a full metal case to shield from unwanted signals entering directly through the PCB, instead of through the antenna. We do still notice some leakage making its way in through the coax shield, but it is relatively minor with the shielding.
ADC Resolution Increased to 14-bits: The RSP1A uses the same ADC chip as the RSP1, but now has unlocked 14-bit ADC capability for bandwidths below 6 MHz thanks to onboard decimation and oversampling. So now 14-bit data comes directly into the PC if using a bandwidth below 6 MHz. Further decimation can still be achieved within software like SDRuno.
A higher bit ADC can improve dynamic range, meaning that strong signals are less likely to overload the SDR.
We asked SDRplay how 14-bits was achieved with the same chips used by the RSP1 and they explained that it is through oversampling and decimation onboard the chip. They also wrote the following technical reply which is a very good read (collapsed as the reply is quite long, click on "Read the Reply" to expand):
[expand title = "READ THE REPLY"]
The ADCs on the MSi2500 use a sigma-delta topology where a highly oversampled multi-bit ADC uses decimation filtering to provide the desired resolution. As the original spec for the MSi2500 called for 12 bit resolution, the fact that the converter was capable of delivering 14 bits for final sample rates of less than 6.048 MHz was ignored. Working with the Mirics team, we have been able to unlock the extra two bits of resolution that the MSi2500 was always capable of delivering. Using sample rates above 6.048 MHz, the ADC defaults back to 12 bit resolution.
They also explained:
If we take an 8 bit ADC for example, we can expect around 48 dB of instantaneous dynamic range. This will most likely be far lower than that achievable from the RF front end whose dynamic range will be influenced by factors such as noise figure, intermodualtion, cross modulation and synthesizer phase noise (reciprocal mixing). A decent tuner front end should be capable of delivering 65-70 dB of instantaneous dynamic range, which is also roughly what you can expect from a 12 bit ADC. In other words, we believe that in the RSP1, the instantaneous dynamic range of the tuner and ADCs were approximately the same. The limitation that the RSP1 had was because of the single gain step in the LNA, it was not always possible to utilise the available dynamic range in the most effective way. The RSP1A gives much greater (and finer) control over the RF gain and this allows for better alignment of the signal level into the tuner to better exploit the available dynamic range. In our tests in the broadcast FM band, we believe that the RSP1A gives around 10 dB more ‘usable’ dynamic range than the RSP1. In other words, if we combine multiple controlled modulated signals (for RF signal generators), with real weak off-air signals, the RSP1A is capable of handling interferers that are around 10 dB greater than the RSP1. Benchmarking against other products, in our tests, the RSP1A seems to give better performance now than anything else in the same price range, both in terms of sensitivity and in terms of in-band overload performance.
The RSP1 always gave very good sensitivity but in optimising it in this way, we gave up some performance in terms of in-band overload performance. Our objective with the RSP1A was to address this without sacrificing sensitivity.
Now, going back to the issue of 14 bits vs 12 bits and instantaneous dynamic range. If we increase the ADC dynamic range from 12 to 14 bits, then the ADC dynamic range should no longer influence the performance of the receiver. Indeed, it is our view, that for any receiver that needs to use a tuner as part of the front end (and any receiver that operates across the frequency range of the RSP will have to use a tuner for the foreseeable future), there is little benefit to be gained with ADC resolutions in excess of 14 bits, as to utilise the extra dynamic range that a higher resolution ADC can give, a much higher performance tuner would be required. Tuner technology has come a very long way in the last 10-15 years and the performance of modern integrated devices is actually very good. To get 12 dB of better dynamic range from a tuner is extremely difficult and can really only be achieved by using very much greater levels of power and esoteric semiconductor technologies. One possible area where you might see better performance is where you have multiple strong interfering signals to the extent that the RF gain needs to be turned down to such a level that the ADC quantisation noise effectively limits the noise floor of the receiver. In this case, you ought to see improved performance in 14 bit mode when compared to 12 bit mode, but please note that the improvement may only be a few dBs in the weak signal reception. If the noise floor of the receiver is still limited by the external LNA, then improved ADC dynamic range will give no perceptible improvement whatsoever.
A direct sampling receiver that does not use a tuner should in principle allow greater dynamic range than one that does, but in practice any direct sampling ADC needs some form of external low noise amplification to ensure a reasonable noise figure and the dynamic range (noise, intermodulation performance etc) of this external amplification block becomes a limiting factor. This is certainly true at VHF and above. At HF, as you will be well aware, the receiver noise figure is not really very important because the atmospheric noise floor is so high. In principle, you might therefore think that our best approach would be to bypass the tuner and use the decimated 16 bit performance of our ADCs. This would still give an effective receiver bandwidth of 375 kHz with 16 bit performance. The reality though is that the real dynamic range of signals coming into the antenna is limited by propagation conditions and atmospheric noise. It is rare to find signals that are above the atmospheric noise floor that vary by more than 60 dB. In practical terms, we believe that equivalent performance can be achieved, simply by the addition of RF pre-selection and AM-band notch filters and in this way we avoid some of the other compromises of direct sampling systems.
So, in a nutshell, when transitioning from 12bit mode to 14 bit mode, don’t expect to see 12 dB more dynamic range. In the real world, it doesn’t work this way. This is why 12 bit devices can give quite favourable performance to higher end 16 bit SDRs such as the Elad FDM-S2, particularly when you consider the difference in cost. We fully expect the Elad to be better, but the difference will not be 24 dB or anything close to it.
Without wishing to labour the point about myths and misunderstandings, it is worth adding a bit of clarification regarding the term ‘dynamic range’. This is a much misunderstood term which can mean very different things depending upon the circumstances and type of signal being received. There is also a difference between ‘dynamic range’ and ‘instantaneous dynamic range’. If you ask 10 different radio engineers what they mean by the term dynamic range, you are sure to get more than one different answer! Another important point to note is that ADC dynamic range is NOT the same as receiver dynamic range. When referring to ADCs, the term dynamic range generally refers to the Spurious Free Dynamic Range (SFDR). This is measured using a CW tone and refers to the ratio between the maximum RMS signal that the ADC can handle and the largest spur or level or quantisation noise within the ADC bandwidth. This is a measure of both noise and linearity of an ADC. As a case in point, it is worth noting that a 16 bit ADC may not necessarily have a higher SFDR than a 12 bit ADC despite having a greater resolution. The greater resolution will generally result in a lower level of quantisation noise, but not necessarily a lower level of harmonic distortion and spurs. In a multi-channel/multi-signal SDR system a lower level of quantisation noise is generally helpful, even if the SFDR is not better, but is not guaranteed to give better performance if the weak signal of interest happens to fall on top of an ADC spur. Where a single signal occupies the entire ADC bandwidth, it is ONLY the SFDR that matters and not the resolution or quantisation noise. Sometimes you will hear people refer to the Effective Number Of Bits ENOB. ENOB is related to the SFDR in that it is a measure of the maximum SINAD that can be attained with an ADC at a give sample rate and so is also a measure of both linearity and noise performance. ENOB is actually = (SINAD – 1.76)/6.02 In the ADC subsystem used in the RSP, whilst the ADCs are 12 bit at 8 MHz sampling the ENOB is 10.4 (for both I and Q). At lower sample rates, the ENOB improves and gets closer to the idealised performance of the converter.
In a receiver system as a whole, the term dynamic range will generally be interpreted to mean the difference (in dB) between the minimum discernible signal and the maximum level of signal that can be handled. But this is different from the term instantaneous dynamic range, which generally refers to the difference between the minimum discernible signal in the presence of the largest signal that can be handled at the same time. What this ‘number’ is in each case will depend upon the type of signal. So for example, a receiver with a given noise figure and linearity performance will have a different instantaneous dynamic range when receiving a 8 MHz wide 256-QAM CATV signal than when receiving a FM signal that is a few kHz wide. This is simply because the SINR (Signal to Interference + Noise Ratio) requirement for a given BER for a 256-QAM signal is very different than that required for a FM signal and also the peak to average ratio of the two signals is very different.
[/expand]
PCB Photos
Compared to the RSP1 the RSP1A PCB is significantly more populated due to the additional filter banks.
Testing the RSP1A
Below we show some screenshots of tests that we made to compare the three RSP units. We focused on bands where the RSP1 or RSP2 had issues, and try to show how much improvement you can get from the RSP1A.
Medium Wave Broadcast AM Band
In the screenshots below we compare the three SDRs on the broadcast AM band which has some very strong signals. The RSP1 definitely shows signals of overloading and turning the gain down did not reduce the interference shown between 0 - 500 kHz.
The RSP1A on the other hand does not overload that easily. In the third screenshot we turn the MW notch on half way through the waterfall. The notch does not cover the entire AM band and signals at around 500 - 700 kHz are attenuated less. But turning it on does seem to do enough to solve most imaging problems as will be seen in the next tests.
SDRplay Limited has today announced the launch of a new Software Defined Radio product – the RSP1A.
The SDR-play RSP1A is a major upgrade to the popular RSP1 and is a powerful wideband full featured 14-bit SDR which covers the RF spectrum from 1 kHz to 2 GHz.
Due to its exceptional combination of performance and price, the RSP1 has proved to be a very popular choice as an “entry level” SDR receiver. Since launching the RSP1, we have learned a great deal about what people are looking for in SDR receivers, and where possible, we have incorporated these improvements and new features into the RSP1A.
The RSP1A therefore delivers a significant number of additional features which result in benefits to amateur radio enthusiasts as well as significant benefits for the scientific, educational and industrial SDR community.
Here are the main additional features of the RSP1A compared to the original RSP1:
ADC resolution increased to 14-bit native for sample rates below 6 MHz, increasing to 16 bits with decimation.
Enhanced RF pre-selection (greater filter selectivity plus 4 additional sub-bands compared to the original RSP1) for reduced levels of spurious responses
Improved LNA architecture with variable gain. The RSP1 had just a single gain step.
Improved intermodulation performance
Performance extended to cover 1kHz to 2GHz with a single antenna port.
Bias-T facility
Improved frequency stability incorporating a 0.5ppm TCXO (software trimmable to 0.01ppm)
Selectable broadcast AM/FM/DAB notch filters
RF shielding within the robust plastic casing
When used together SDRplay’s own SDRuno software, the RSP1A becomes a high performance SDR platform. The benefits of using the RSP1A with SDRuno include:
Highly integrated native support for the RSP1A
Calibrated RF Power Meter with more than 100 dB of usable range
Calibrated S-Meter including support for IARU S-Meter Standard
The ability to save power (dBm) and SNR (dB) measurements over time, to a CSV file for future analysis
The IQ output wav files can be accessed for 3rd party applications
SDRplay has also worked with developers of the popular HDSDR, SDR-Console and Cubic SDR software packages to ensure compatibility. As with the RSP1, SDRplay provides multiplatform driver and API support which includes Windows, Linux, Mac, Android and Raspberry Pi 3. There is even a downloadable SD card image available for Raspberry Pi3 which includes Cubic SDR.
The RSP1A is expected to retail at approximately £76 (excluding taxes) or $100 (excluding taxes) For more information visit our website on www.sdrplay.com
About SDRplay:
SDRplay limited is a UK company and consists of a small group of engineers with strong connections to the UK Wireless semiconductor industry. SDRplay announced its first product, the RSP1 in August 2014
We've had a RSP1A beta preproduction unit for a few weeks now and will be releasing a full review comparing it against the RSP1 in a day or so. For a quick review conclusion we note that we've noticed that the filters are significantly more effective on the RSP1A compared to the RSP1, and the inclusion of the MW/FM and DAB notch filters help a lot in certain situations. The increased ADC resolution is due to decimation on board the MSi2500 chip and is noticeable in some situations, but does not seem to cause a huge improvement. Overall compared to the RSP1 some overloading problems are still present with strong signals, but intermodulation and imaging is reduced significantly and in some cases the RSP1A even outperforms the RSP2.
Also, Mike Ladd KD2KOG a member of the SDRplay technical support team has uploaded a video announcing and demoing the RSP1A.
SDR#'s SpyServer streaming server now supports the direct sampling mode on RTL-SDR dongles and it's probably the cheapest way to set up a HF streaming server. SpyServer is a streaming server for SDR# and Airspy products. Although it's designed for Airspy products it also works well with RTL-SDR dongles.
On RTL-SDR dongles the direct sampling mode allows you to receive HF frequencies by bypassing the tuner. The dynamic range is not quite as good as using an upconverter and there are Nyquist images from sampling at 28.8 MHz centered around 14.4 MHz, but in most cases it is good enough to give people decent HF results especially if filtering is used. Normally a hardware hack is required to enable direct sampling, but our RTL-SDR Blog V3 units have direct sampling built in and ready to go just by connecting an HF antenna to the SMA port, and enabling the Q-branch direct sampling mode.
There is a sample server set up at sdr://151.20.181.90:5555.
SpyServer Direct Sampling Mode
Direct Sampling for #RTLSDR was added to Spy Server. This must be the most affordable networked HF radio ever.
![[EN subs] DIY AZ/EL Antennen Rotor / Sat Tracker](https://www.rtl-sdr.com/wp-content/plugins/wp-youtube-lyte/lyteCache.php?origThumbUrl=https%3A%2F%2Fi.ytimg.com%2Fvi%2FIhUJTr5AOW4%2F0.jpg)
