Publication


Electronic Distribution of Airplane Software and the Impact of Information Security on Airplane Safety

The 26th International Conference on Computer Safety, Reliability and Security (SAFECOMP 2007)


Author(s): Richard Robinson, Mingyan Li, Scott Lintelman, Krishna Sampigethaya, Radha Poovendran, David von Oheimb, Jens-Uwe Bußer, Jorge Cuellar
Year: 2007
Publisher: Springer LNCS
Editors: Francesca Saglietti and Norbert Oster
Keywords:Airplane software, information technology, infrastructure, software engineering, safety, security, certification
Abstract: The general trend towards ubiquitous networking has reached the realm of airplanes. E-enabled airplanes with wired and wireless network interfaces offer a wide spectrum of network applications, in particular electronic distribution of software (EDS), and onboard collection and off-board retrieval of airplane health reports. On the other hand, airplane safety may be heavily dependent on the security of data transported in these applications. The FAA mandates safety regulations and policies for the design and development of airplane software to ensure continued airworthiness. However, data networks have well known security vulnerabilities that can be exploited by attackers to corrupt and/or inhibit the transmission of airplane assets, i.e. software and airplane generated data. The aviation community has recognized the need to address these security threats. This paper explores the role of information security in emerging information technology (IT) infrastructure for distribution of safety-critical and business-critical airplane software and data. We present our threat analysis with related security objectives and state functional and assurance requirements necessary to achieve the objectives, in the spirit of the well-established Common Criteria (CC) for IT security evaluation. The investigation leverages our involvement with FAA standardization efforts. We present security properties of a generic system for electronic distribution of airplane software, and show how the presence of those security properties enhances airplane safety.


Copyright © 2007 Boeing, Siemens, and University of Washington
Preprint
Slides

BibTeX entry:

@inproceedings{SAFECOMP07-Boeing-Siemens-UW, author = {Richard Robinson and Mingyan Li and Scott Lintelman and Krishna Sampigethaya and Radha Poovendran and Oheimb, David von and Jens-Uwe Bu\ss{}er and Jorge Cuellar}, title = {Electronic Distribution of Airplane Software and the Impact of Information Security on Airplane Safety}, booktitle = {Proc. of the 26th International Conference on Computer Safety, Reliability and Security (SAFECOMP)}, editor = {Francesca Saglietti and Norbert Oster}, publisher = {Springer}, series = {LNCS}, volume = 4680, year = 2007, note = {\url{http://ddvo.net/papers/SAFECOMP07.html}}, abstract = { The general trend towards ubiquitous networking has reached the realm of airplanes. E-enabled airplanes with wired and wireless network interfaces offer a wide spectrum of network applications, in particular electronic distribution of software (EDS), and onboard collection and off-board retrieval of airplane health reports. On the other hand, airplane safety may be heavily dependent on the security of data transported in these applications. The FAA mandates safety regulations and policies for the design and development of airplane software to ensure continued airworthiness. However, data networks have well known security vulnerabilities that can be exploited by attackers to corrupt and/or inhibit the transmission of airplane assets, i.e. software and airplane generated data. The aviation community has recognized the need to address these security threats. This paper explores the role of information security in emerging information technology (IT) infrastructure for distribution of safety-critical and business-critical airplane software and data. We present our threat analysis with related security objectives and state functional and assurance requirements necessary to achieve the objectives, in the spirit of the well-established Common Criteria (CC) for IT security evaluation. The investigation leverages our involvement with FAA standardization efforts. We present security properties of a generic system for electronic distribution of airplane software, and show how the presence of those security properties enhances airplane safety.} }