At last week’s Black Hat USA 2014 conference, Ruben Santamarta, the principal security consultant at IOActive Security Services, raised the issue of whether satellite communications systems have security vulnerabilities that might allow hackers to gain access to aircraft systems. Santamarta and IOActive published a white paper that discusses security vulnerabilities in air, sea and land satcom systems. “Today we are disclosing details to help people verify those findings,” Santamarta explained.
While the DOT has made some progress in its information security program, some systems remain vulnerable to significant security threats stemming from deficiencies in policies and procedures, enterprise-level controls, system controls and management of known security weaknesses, according to a recent audit report from the department’s office of the inspector general (IG). The IG made a number of recommendations.
With around 1,000 employees, the electronic warfare arm of Selex ES is a major player in the EW marketplace, as a lead integrator on programs, such as the Praetorian defensive system of the Eurofighter Typhoon; a provider of equipment; and as a developer of new technology. It is also increasingly involved in supporting EW operations of air arms as nations move toward greater control over their own electronic warfare resources.
The Flight Safety Foundation (FSF) signed a memorandum of understanding with Mitre on October 31 to collaborate on developing database solutions to emerging aviation safety issues at both the local and regional level around the world.
Rockwell Collins is warning that there are considerable risks that operators run when hooking up various web-based systems, Wi-Fi, satcoms–in fact anything where they are opening up ways for would-be cyber-attackers.
Rockwell Collins is warning that there are considerable risks that operators run when hooking up various web-based systems, Wi-Fi, satcoms–in fact anything where they are opening up ways for would-be cyber-attackers. Steve Timm, the company’s v-p and general manager of Flight Information Solutions, told AIN at EBACE that the main risk arises not when the aircraft is en route, but on the ground.
During World War II, “Loose Lips Sink Ships” was a familiar slogan on both sides of the Atlantic at a time when German U-boats (U for unterwasserboot, submarine) were wreaking a deadly toll on cargo vessels transporting Allied supplies from North America to the beleaguered British Isles.
An article in AIN’s September issue addressed concerns that have been raised about the security of the ADS-B system, which is headed for widespread deployment around the world. ADS-B is designed to replace radar as the primary method for surveillance of airborne traffic.
Newly released information on cyber attacks against the U.S. government and defense industry suggest that classified information may have been compromised on a grand scale. Web security company McAfee reported last week that at least six U.S. federal government agencies and 13 defense contractors had been attacked as part of a wider operation that penetrated 72 organizations in 14 countries since at least 2006.
Establishing stronger cyber security must become a top national imperative, according to industry and government cyber security specialists at a recent FAA/Air Traffic Control Association Technical Symposium in Atlantic City who described–in understandably guarded terms–the general approach certain government and industry organizations are taking.
- Page 1