Publication
Electronic Distribution of Airplane Software and the Impact of Information Security on Airplane Safety
The 26th International Conference on Computer Safety, Reliability and Security (SAFECOMP 2007)
Author(s): Richard Robinson, Mingyan Li, Scott Lintelman, Krishna Sampigethaya, Radha Poovendran, David von Oheimb, Jens-Uwe Bußer, Jorge Cuellar
Year: 2007
Publisher: Springer LNCS
Editors: Francesca Saglietti and Norbert Oster
Keywords:Airplane software, information technology, infrastructure,
software engineering, safety, security, certification
Abstract:
The general trend towards ubiquitous networking has reached the
realm of airplanes. E-enabled airplanes with wired and wireless network
interfaces offer a wide spectrum of network applications, in particular electronic
distribution of software (EDS), and onboard collection and off-board retrieval
of airplane health reports. On the other hand, airplane safety may be heavily
dependent on the security of data transported in these applications. The FAA
mandates safety regulations and policies for the design and development of
airplane software to ensure continued airworthiness. However, data networks
have well known security vulnerabilities that can be exploited by attackers to
corrupt and/or inhibit the transmission of airplane assets, i.e. software and
airplane generated data. The aviation community has recognized the need to
address these security threats. This paper explores the role of information
security in emerging information technology (IT) infrastructure for distribution
of safety-critical and business-critical airplane software and data. We present
our threat analysis with related security objectives and state functional and
assurance requirements necessary to achieve the objectives, in the spirit of the
well-established Common Criteria (CC) for IT security evaluation. The
investigation leverages our involvement with FAA standardization efforts. We
present security properties of a generic system for electronic distribution of
airplane software, and show how the presence of those security properties
enhances airplane safety.
Copyright © 2007 Boeing, Siemens, and University of Washington
Preprint
Slides
BibTeX entry:
@inproceedings{SAFECOMP07-Boeing-Siemens-UW,
author = {Richard Robinson and Mingyan Li and Scott Lintelman and Krishna Sampigethaya
and Radha Poovendran and Oheimb, David von and Jens-Uwe Bu\ss{}er and Jorge Cuellar},
title = {Electronic Distribution of Airplane Software and the
Impact of Information Security on Airplane Safety},
booktitle = {Proc. of the 26th International Conference on Computer Safety, Reliability and Security (SAFECOMP)},
editor = {Francesca Saglietti and Norbert Oster},
publisher = {Springer},
series = {LNCS},
volume = 4680,
year = 2007,
note = {\url{http://ddvo.net/papers/SAFECOMP07.html}},
abstract = {
The general trend towards ubiquitous networking has reached the
realm of airplanes. E-enabled airplanes with wired and wireless network
interfaces offer a wide spectrum of network applications, in particular electronic
distribution of software (EDS), and onboard collection and off-board retrieval
of airplane health reports. On the other hand, airplane safety may be heavily
dependent on the security of data transported in these applications. The FAA
mandates safety regulations and policies for the design and development of
airplane software to ensure continued airworthiness. However, data networks
have well known security vulnerabilities that can be exploited by attackers to
corrupt and/or inhibit the transmission of airplane assets, i.e. software and
airplane generated data. The aviation community has recognized the need to
address these security threats. This paper explores the role of information
security in emerging information technology (IT) infrastructure for distribution
of safety-critical and business-critical airplane software and data. We present
our threat analysis with related security objectives and state functional and
assurance requirements necessary to achieve the objectives, in the spirit of the
well-established Common Criteria (CC) for IT security evaluation. The
investigation leverages our involvement with FAA standardization efforts. We
present security properties of a generic system for electronic distribution of
airplane software, and show how the presence of those security properties
enhances airplane safety.}
}