Evaluating the Security of Aircraft Systems

09/08/2022
by   Edan Habler, et al.
0

The sophistication and complexity of cyber attacks and the variety of targeted platforms have been growing in recent years. Various adversaries are abusing an increasing range of platforms, e.g., enterprise platforms, mobile phones, PCs, transportation systems, and industrial control systems. In recent years, we have witnessed various cyber attacks on transportation systems, including attacks on ports, airports, and trains. It is only a matter of time before transportation systems become a more common target of cyber attackers. Due to the enormous potential damage inherent in attacking vehicles carrying many passengers and the lack of security measures applied in traditional airborne systems, the vulnerability of aircraft systems is one of the most concerning topics in the vehicle security domain. This paper provides a comprehensive review of aircraft systems and components and their various networks, emphasizing the cyber threats they are exposed to and the impact of a cyber attack on these components and networks and the essential capabilities of the aircraft. In addition, we present a comprehensive and in-depth taxonomy that standardizes the knowledge and understanding of cyber security in the avionics field from an adversary's perspective. The taxonomy divides techniques into relevant categories (tactics) reflecting the various phases of the adversarial attack lifecycle and maps existing attacks according to the MITRE ATT CK methodology. Furthermore, we analyze the security risks among the various systems according to the potential threat actors and categorize the threats based on STRIDE threat model. Future work directions are presented as guidelines for industry and academia.

READ FULL TEXT

page 1

page 5

page 10

page 13

page 20

page 21

page 22

page 23

research
05/24/2023

Towards Cyber Security for Low-Carbon Transportation: Overview, Challenges and Future Directions

In recent years, low-carbon transportation has become an indispensable p...
research
05/11/2021

Survey and Taxonomy of Adversarial Reconnaissance Techniques

Adversaries are often able to penetrate networks and compromise systems ...
research
12/13/2021

A Structured Analysis of Information Security Incidents in the Maritime Sector

Cyber attacks in the maritime sector can have a major impact on world ec...
research
07/15/2023

Understanding Cyber Threats Against the Universities, Colleges, and Schools

Universities hold and process a vast amount of valuable user and researc...
research
05/11/2020

Threat modeling framework for mobile communication systems

Due to the complex nature of mobile communication systems, most of the s...
research
09/09/2020

A Security Architecture for Railway Signalling

We present the proposed security architecture Deutsche Bahn plans to dep...
research
09/03/2021

A Survey of Practical Formal Methods for Security

In today's world, critical infrastructure is often controlled by computi...

Please sign up or login with your details

Forgot password? Click here to reset