Security Concept for Unoccupied Aerial Systems

Perner, Cora; Schmitt, Corinna

doi:10.1109/dasc50938.2020.9256659

Cited by 5 publications

(7 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In addition to the findings of Smith et al, practical attack surface against ACARS has been well-established in the recent years. Spoofing attacks have been demonstrated by Zhang, Liu, Liu and Nees (2018), by Bresteau, Guigui, Berthier and Fernandez (2018), by , and by Perner and Schmitt (2020), to name some. These factors warrant the relevance of experimentation using the legacy POA in dissemination of cyberattack vectors.…”

Section: Aircraft Communication Addressing and Reporting Systemmentioning

confidence: 99%

“…Implementing the protocol is within the reach of virtually any motivated actor. Additionally, methods for POA signal generation have been published before Zhang et al (2018), by Bresteau et al (2018), by , and by Perner and Schmitt (2020), so the developed methodology has no inherent scientific novelty value. Secondly, the methodology for POA signal generation was made specifically for this study as student work, which promotes its release as a part of this master's thesis.…”

Section: Signal Transmittance Chain Developmentmentioning

confidence: 99%

See 1 more Smart Citation

On Apache Log4j2 Exploitation in Aeronautical, Maritime, and Aerospace Communication

Juvonen¹,

Costin²,

Turtiainen³

et al. 2022

IEEE Access

View full text Add to dashboard Cite

In this master's thesis on cyber security accessible methodology for over-the-air experiments using ACARS, ADS-B, and AIS telecommunication protocols is proposed, using software-defined radios, and utilising open-source and freeware software. The protocols are used as attack vectors for exploitation of Apache Log4j2 Java-library's vulnerabilities. Methods for studying CVE-2021-44228 "log4shell" remote code execution and related vulnerabilities using intentionally vulnerable software are presented. The telecommunication protocols' capabilities in transmitting CVE-2021-44228 and related cyberattack strings are evaluated by studying protocol specifications to identify probable attack vectors. Practical scenarios, in which mission critical and safety-of-life information systems could be exploitable, are experimentally demonstrated. All three studied protocols are found to be susceptible for wireless log4shell-cyberattacks, when identified preconditions are met. Moreover, novel findings concerning a high-severity Log4j2 denial of service vulnerability are presented.

show abstract

Section: Aircraft Communication Addressing and Reporting Systemmentioning

confidence: 99%

Section: Signal Transmittance Chain Developmentmentioning

confidence: 99%

On Apache Log4j2 Exploitation in Aeronautical, Maritime, and Aerospace Communication

Juvonen¹,

Costin²,

Turtiainen³

et al. 2022

IEEE Access

View full text Add to dashboard Cite

show abstract

“…ADS-B's main security issues are its lack of authentication and encryption [69,70]. Since the ADS-B an inherent insecure protocol, it is vulnerable to any kind of cyber-attack [71]. Although the ADS-B transponder broadcasts the message automatically, in some incidents, it was found that the pilot can turn it off [72].…”

Section: Securitymentioning

confidence: 99%

“…Some critiques of ADS-B usage in UAVs arise, such as that there are too many vehicles that are very close to each other, causing a lot of congestion; the communication range near the ground is much shorter; and that interference is caused for airliner pilots during take-off and landing near airports [70]. Another issue related to the insecure protocol is that authentication of detected nearby vehicles comes into question [71].…”

Section: Safetymentioning

confidence: 99%

UAS Traffic Management Communications: The Legacy of ADS-B, New Establishment of Remote ID, or Leverage of ADS-B-Like Systems?

Ruseno

Lin

Chang

2022

Drones

View full text Add to dashboard Cite

Unmanned aerial system (UAS) traffic management (UTM) requires each UAS to communicate with each other and to other stakeholders involved in the operation. In practice, there are two types of wireless communication systems established in the UAS community: automatic dependent surveillance broadcast (ADS-B) and remote identification (Remote ID). In between these two systems, there is ADS-B-like communication which leverages using other types of communications available in the market for the purpose of UTM. This review aims to provide an insight into those three systems, based on the published standard documents and latest research development. It also suggests how to construct a feasible communication architecture. The integrative approach is used in this literature review. The review categorization includes definition, data format, technology used, and research applications, and any remaining issues are discussed. The similarities and differences of each system are elaborated, covering practical findings. In addition, the SWOT analysis is conducted based on the findings. Lastly, multi-channel communication for UTM is proposed as a feasible solution in the UTM operation.

show abstract

“…Furthermore, the IPv6 protocol can be part of the future ACARS; however, datalink security remains a major concern [57]. Therefore, the study, [58], proposed a detection and authentication-based safety architecture.…”

Section: A Airplanesmentioning

confidence: 99%

A Survey of Wireless Networks for Future Aerial COMmunications (FACOM)

Baltaci,

Dinc,

Ozger

et al. 2021

Preprint

View full text Add to dashboard Cite

Electrification turned over a new leaf in aviation by introducing new types of aerial vehicles along with new means of transportation. Addressing a plethora of use cases, drones are gaining attention in the industry and increasingly appear in the sky. Emerging concepts of flying taxi enable passengers to be transported over several tens of kilometers. Therefore, unmanned traffic management systems are under development to cope with the complexity of future airspace, thereby resulting in unprecedented communication needs. Moreover, the long-term increase in the number of commercial airplanes pushes the limits of voice-oriented communications, and future options such as single-pilot operations demand robust connectivity. In this survey, we provide a comprehensive review and vision for enabling the connectivity applications of aerial vehicles utilizing current and future communication technologies. We begin by categorizing the connectivity use cases per aerial vehicle and analyzing their connectivity requirements. By reviewing more than 500 related studies, we aim for a comprehensive approach to cover wireless communication technologies, and provide an overview of recent findings from the literature toward the possibilities and challenges of employing the wireless communication standards. After analyzing the proposed network architectures, we list the open-source testbed platforms to facilitate future investigations by researchers. This study helped us observe that while numerous works focused on cellular technologies to enable connectivity for aerial platforms, a single wireless technology is not sufficient to meet the stringent connectivity demands of the aerial use cases, especially for the piloting operations. We identified the need of further investigations on multi-technology heterogeneous network architectures to enable robust and real-time connectivity in the sky. Future works should consider suitable technology combinations to develop unified aerial networks that can meet the diverse quality of service demands of the aerial use cases.

show abstract

Security Concept for Unoccupied Aerial Systems

Cited by 5 publications

References 13 publications

On Apache Log4j2 Exploitation in Aeronautical, Maritime, and Aerospace Communication

On Apache Log4j2 Exploitation in Aeronautical, Maritime, and Aerospace Communication

UAS Traffic Management Communications: The Legacy of ADS-B, New Establishment of Remote ID, or Leverage of ADS-B-Like Systems?

A Survey of Wireless Networks for Future Aerial COMmunications (FACOM)

Contact Info

Product

Resources

About