Security risk assessments and countermeasures for future aeronautical communication network architecture

Ali, Muhammad, Hu, Yim Fun, Asif, Rameez and Li, Jiang Ping (2021) Security risk assessments and countermeasures for future aeronautical communication network architecture. In: Aviation Cybersecurity. Institution of Engineering and Technology, pp. 141-180. ISBN 9781839533228

Full text not available from this repository. (Request a copy)

Abstract

Cybersecurity vulnerabilities are relatively new regarding airworthiness in comparison with those encountered in terrestrial networks. The latest generation of aircraft such as Boeing and Airbus have included onboard aircraft data networks, which, on the one hand, offer innovative and robust ways of communications but, on the other hand, also introduce cybersecurity vulnerabilities to avionic communications. If these vulnerabilities are exploited, they may lead to irreparable damage to the information system that may cause a catastrophic failure. With this in mind, protection to the onboard data network and the data links between the air and ground communication infrastructure are of paramount importance. This chapter focuses on defining the future avionics communication system security architecture with security risk assessment and risk mitigation. It identifies the security requirements that future avionics communication system needs to comply with.A risk analysis is carried out to identify security assets and their security perimeters, vulnerability points, threats and attacks, the impacts of such threats, and the risk levels of threats with reference to the target future avionics communication network architecture. According to the risk analysis, security countermeasures are identified, which leads to the target network security architecture design. The method in the identification of the target network security architecture primarily follows the guidelines specified in EUROCAE ED-202 and CESG IAS standards. The future avionics communication network security architecture is directly related to airworthiness security, which is defined as the protection of the airworthiness of an aircraft from information security threats. EUROCAE and ARINC define frameworks in assessing security threats and the risks that they impose on aircraft safety. Examples of security countermeasures to detect and prevent malicious attacks on information security will also be provided. This chapter mainly serves as a recommendation for defining security processes and their implementation concerning the target network architecture.

Item Type: Book Section
Additional Information: Publisher Copyright: © The Institution of Engineering and Technology 2022.
Uncontrolled Keywords: engineering(all) ,/dk/atira/pure/subjectarea/asjc/2200
Faculty \ School: Faculty of Science > School of Computing Sciences
Related URLs:
Depositing User: LivePure Connector
Date Deposited: 08 Sep 2022 11:31
Last Modified: 20 Oct 2022 23:49
URI: https://ueaeprints.uea.ac.uk/id/eprint/87944
DOI:

Actions (login required)

View Item View Item