1 / 16

Photos: Corel, Photodisk; Photodisk; Photodisk; Comstock; DOT

Airborne Network Security Simulator (ANSS) Master Plan Overview Presented by: Chris Riley (DOT/Volpe) November 3, 2010. Photos: Corel, Photodisk; Photodisk; Photodisk; Comstock; DOT. Agenda. ANSS Experiment 1 ANSS Experiment 2 ANSS Master Plan. 2.

thanos
Download Presentation

Photos: Corel, Photodisk; Photodisk; Photodisk; Comstock; DOT

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. Airborne Network Security Simulator • (ANSS) Master Plan Overview • Presented by: Chris Riley (DOT/Volpe) • November 3, 2010 Photos: Corel, Photodisk; Photodisk; Photodisk; Comstock; DOT

  2. Agenda ANSS Experiment 1 ANSS Experiment 2 ANSS Master Plan 2

  3. Airborne Network Security Simulator (ANSS) Goals Identify potential information security threats in synthetic environmentby simulating next generation aircraft communications systems Share knowledge, tools and methodologieswith academia and other interested stakeholders to extend research value Act as coordinating authority for cyber security risk mitigationwithin the international aerospace & aviation community Recommend appropriate technical & procedural standards for security risksto aid in the development of regulatory guidelines and policies Influence industry bodies on cyber security best practiceswith respect to specifications, procedures, and recommendations used by the industry 3

  4. Master Plan Overview – Phase 1 • Inside Aircraft Network • Simulates a standard airborne network architecture including real and synthetic components • Interconnects with disparate aviation simulators to include real-world information in its experiments • Engages industry, academia and government in its experiments and recommendations • Design experiments to explore stakeholder identified issues and concerns

  5. Demonstration Scenario; Airline AOC to Aircraft IEEE HLA /RTI Via Internet Performance Calculation Performance Calculation Load & Balance Data Firewall Control Domain OPS Controller LaTech Ops-Center Simulator Information Domain EFB Gatelink TWLU Passenger Domain ANSS Operational Enclave Aircraft Network 5 ANSS at WSU

  6. Experiment 1 Scenario Hacker Final Pre-Flight Data Man-in-the-Middle device captures data and sends it to the Internet Modified Pre-Flight Data

  7. ANSS Experiment 2 7

  8. ANSS Phase 1 Experiment 2 • Working with several aviation vendors to add Experiment 2 Functionality • Aircraft Control Domain (ACD) – Pratt & Whitney (P&W) • FAST (Flight-data Acquisition, Storage and Transmission ) -- Engine Wireless Maintenance Toolset • ACD – General Electric (GE) Intelligent Platforms • AFDX (Avionics Full Duplex Network, Switched Ethernet) simulated configuration • In Flight Entertainment (IFE) – Panasonic Inc. • Simulated 3 seat suite of Wi-Fi equipment • Developing operational scenarios/uses cases, e.g. • Intrusion Detection, Wireless data transfer, Engine Data/Gatelink interfaces • UK Partners to provide Penetration Testing support 8

  9. Aircraft Data Network (ADN) ANSS Phase 1 – Experiment 2 Aircraft control Airline Information Services Passenger Information and Entertainment Services Passenger-Owned Devices Flight and Embedded Control Systems Admin EFB/Gatelink FAST (P&W) IFE(Panasonic) Cabin Core Passenger Support AFDX (GE) Control the Airplane Operate the Airline Entertain the Passengers Entertain the Passengers Closed Private Public Source –ARINC 664, Aircraft Data Network, Part 5, Network Domain Characteristics and Interconnection 9

  10. ANSS Master Plan 10

  11. Master Plan Overview – Phase 2 • External Interconnections • Include a SOA interface based on current Nextgen Standards • Build synthetic capabilities to evaluate cyber issues when the aircraft is both a SOA provider and consumer • Participate in FAA/DOD experiments to understand the commercial impact of cyber security in this environment • Identify issues and restrictions of global trust in the AN environment • Identity issues associated with centralized auditing, intrusion detection/prevention and a global view of the operation’s theater.

  12. NNEW ERAM ERAM TDLS TDLS TFM TFM ANSS Phase 2NEXTGEN Simulations Weather Airspace status NOTAMS Deviation requests Acknowledgments Trajectory/clearance changes Acknowledgments • Characteristics • Situational awareness - advisory • Commercial spectrum • Limited or No source Authentication • Low or no design assurance • User specified QoS • RMA • Delivery (e.g. best effort) • Latency • International usage based on reach of service provider • User designed/directed controls and displays • User specified FMS integration • Characteristics • Command and Control – safety critical • Protected spectrum • Source Authentication • High safety assurance levels • QoS dictated by safety case • High reliability, maintainability & availability • Guaranteed delivery • Low latency • Harmonization based on International agreements • Standardized controls and displays • FMS integration

  13. Master Plan Overview – Phase 3 • Virtual World Training, Modeling and Simulation • Skill development plays a critical role in the cyber protection. Special skills will be needed to address the mobility, public safety and critical infrastructure components of this environment. • Gaming technology is successfully used to build virtual worlds and train the workforce through realistic scenarios. Scenario based training also allows researcher to observe student attack strategies in anticipation of the next level of attack. Learning attack approaches and exploits in a controlled environment feeds the development of predictive and adaptive defense strategies • Leveraging all of these assets, ANSS would develop a gaming environment where security teams from government, academia and industry will compete in “capture the flag” type scenarios. First line defenders, modes, methods and approaches captured in the experiments would prove invaluable to researchers in proactively protecting the AN environment

  14. ANSS Phased Approach External Interconnections Experiment 1 – EFB/Gatelink (June 2010) Experiment 2 – Databuses, Wireless Maintenance, and In Flight Entertainment (Spring 2011) NextGen Simulations Experiment 1 - TBD Experiment 2 - TBD Virtual World Training, Modeling and Simulation Experiment 1 - TBD Experiment 2 - TBD 14

  15. Contributing Organizations to the ANSS Demonstration/Technical Workshop Astronautics Corporation of America 15

  16. Kevin Harnett, Volpe Center Cyber Security Program Manger Email: kevin.harnett@dot.gov Email: Phone: 617-699-7086 Chris Riley, Volpe Center Cyber Security Researcher Email: riley@info-tools.com Email: Phone: 508-672-6032 Contact Information

More Related