Presenter: Robert Klein Date:August 27, 2014 Federal Aviation Administration AAtS Information Exchange Vulnerability Assessment Threat-Scenario-Based.

Slides:



Advertisements
Similar presentations
Emergency COA Process Presented to: UAS All Users TELCON
Advertisements

FAA / Eurocontrol TFM/CDM Technical Interchange Meeting
Air Traffic Analysis, Inc Using WITI for Airport Arrival Performance Analysis A report on work-in-progress December 2010.
AgendaAppendix TEMPLATE HEMS Tool Project History, Status and Future James H. Hartman FAA Aviation Weather Division, ANG-C6 Aviation Weather Research Program.
Aeronautical Information Services (AIS) Data Link Ernie R. Dash FAA EnRoute Wx Support (AvMet)‏ RTCA SC-206/EUROCAE WG-76 Harmonization – Thoughts by Ernie.
Federal Aviation Administration 1 35 th Annual Airports Conference – April 3, 2012 FAA Air show Waiver Reviews Presentation to: Name: Date: 35 th Annual.
Federal Aviation Administration 1 June 2013 Federal Aviation Administration 1 October 2013 WET Update to NBAA and FPAW Federal Aviation Administration.
Federal Aviation Administration Presented to: Network Centric Demonstrations and Prototypes Technical Interchange By: Deborah Young Date: November 4, 2009.
Aircraft Access to SWIM (AAtS) Demonstration
Ames Research Center 1October 2006 Aviation Software Systems Workshop FACET: Future Air Traffic Management Concepts Evaluation Tool Aviation Software Systems.
1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection.
External Consumer Access to FAA Data Sets via SWIM
Mr. Hooper Harris FAA/JAA Annual Meeting Phoenix, AZ June 3 - 7, 2002
1 National Workshop on Aviation Software Systems: Design for Certifiably Dependable Systems Natasha Neogi October 5-6, 2006 Arlington, VA.
Delivering NextGen June 5, 2015 Maryland Airport Managers Association Presented by Carmine Gallo, Eastern Regional Administrator Federal Aviation Administration.
Presented to: MPAR Working Group By: William Benner, Weather Processors Team Manager (AJP-1820), FAA Technical Center Date: 19 March 2007 Federal Aviation.
TARGETS Enabling NextGen With Advanced Procedure Design Software October 22, 2013.
Date: 18 February 2008 Federal Aviation Administration Collaborative Decision Making at the FAA/ATO A look at how CDM is applied in the U.S.
Weather Satellite Data in FAA Operations Randy Bass Aviation Weather Research Program Aviation Weather Division NextGen Organization Federal Aviation Administration.
Integrating information towards Digital ATM Mini Global Demonstration Presented By: Thien Ngo Date:August 28, 2013.
Storage Security and Management: Security Framework
Integrating information towards Digital ATM FIXM – Flight Information Exchange Model Presented By: Richard Jehlen Director, FAA, Air Traffic Organization,
. Center TRACON Automation System (CTAS) Traffic Management Advisor (TMA) Transportation authorities around the globe are working to keep air traffic moving.
1 NGATS Weather System Concept JPDO Weather IPT “Friends/Partners in Aviation Weather” Vision Forum FAA Headquarters – 800 Independence Avenue – Washington,
Aviation Weather: Opportunities for Implementation Training Robert A. Wright Manager, Flight Technologies and Procedures Division, AFS-400 Federal Aviation.
Performance Based Navigation Aviation Industry Forum 18 November 2009.
Presented to: NWS Aviation Weather Users By: Danny Sims, Manager of Traffic Flow Management Weather Programs, FAA Date: 18 November 2008 Federal Aviation.
Doc.: IEEE ai Submission Paul Lambert, Marvell Security Review and Recommendations for IEEE802.11ai Fast Initial Link Setup Author:
FAA System-Wide Information Management Program Overview for SWIM-SUIT Public Lauch Donald Ward Program Manager FAA SWIM Program April 2007.
Presented to: By: Date: Federal Aviation Administration Non-Federal AWOS A/V Connection to the WMSCR.
By: Michael McCormick, Manager Tactical Operations Date: June 28, 2007 Federal Aviation Administration System Operations Security NSARC Temporary Flight.
Presented to: NAS-Wide Simulation Workshop By: Kimberly Noonan, FAA NextGen and Ops Planning Date: January 28, 2010 Federal Aviation Administration NextGen.
Performance Based Navigation (PBN) Canadian Implementation Presentation to Air Transport Association of Canada 9 November 2010.
Federal Aviation Administration Data Communications Program Operational Trials in Domestic Airspace Presented to:Data Comm Implementation Team (DCIT) By:Jerry.
Ray Moy December 01, 2010 Federal Aviation Administration Research, Requirements and Transition.
Presented to: Net-Centric Demos/Prototypes TIM By: Mike Hritz Date: May 4, 2011 Federal Aviation Administration System Wide Information Management (SWIM)
Federal Aviation Administration TAIWIN By: Jim Riley, ANG-E282 To: Icing Wx Tools Meeting Date: 11/19/13 – 11/21/13.
APPLICATION PENETRATION TESTING Author: Herbert H. Thompson Presentation by: Nancy Cohen.
© 2015 The MITRE Corporation. All rights reserved. Dr. Christine Taylor Principal Simulation and Modeling Engineer 25 August 2015 Automation to Support.
NextGen Next Generation Air Transportation System
Presented to: Demonstrations and Prototypes TIM By: Steve Hodges Date: 05/04/2011 Federal Aviation Administration Aircraft Access to SWIM (AAtS) FY11 planned.
The Evolution of NWS Aviation Weather Services in Chicago Mike Bardou National Weather Service Chicago.
Lecture 24 Wireless Network Security
Research Project #1 Reengineering DOT Data Programs.
© 2015 The MITRE Corporation. All rights reserved. Friends and Partners of Aviation Weather Claudia McKnight ATM-Weather Integration Gap Analysis CAASD.
Federal Aviation Administration 1 Collaborative Decision Making Module 7 “Formulating CDM Strategies”
How do we mitigate weather impacts to the NAS?
Presented to:GMU System-Wide Modeling Workshop By: Joseph Post, ATO NextGen & Ops Planning Date: 10 December 2008 Federal Aviation Administration FAA System-Wide.
1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection.
Federal Aviation Administration 1 Collaborative Decision Making Module 5 “The Collaborative Environment”
Using Simulation in NextGen Benefits Quantification
Presented to: Friends and Partners of Aviation Weather at NBAA 2005 By: Les Smith, Manager AFS-410 Flight Operations Date:11 Nov Federal Aviation.
A Technology Partnership for the New Millennium Anne Harlan, Director William J. Hughes Technical Center 68th NASAO Annual Convention September 20, 1999.
Module 7: Designing Security for Accounts and Services.
Federal Aviation Administration 1 Safety and Certification Conference January Tarmac Diversion Plans Federal Aviation Administration Prepared for:35.
Presented by Mike Sues, Ethical Hack Specialist Threat Modeling.
Presented By: FAA, ATO, Western Service Center Date: March 7, 2016 Federal Aviation Administration FAA Initiative to Address Noise Concerns of Santa Cruz/Santa.
1 EUROCONTROL S TRATEGIES FOR The ATM Strategy for the Years As from MATSE/6 decision (Jan. 2000): To cater for forecast increase in demand.
Presented to: Friends of Aviation Weather Forum By: Dan Citrenbaum, FAA, Investment Planning and Analysis Office, Operations Research Group Date: October.
Federal Aviation Administration Integrated Arrival/Departure Flow Service “ Big Airspace” Presented to: TFM Research Board Presented by: Cynthia Morris.
Topics for Remote Pilot Certification Exam Alexus Garcia Unmanned Aircraft System Safety Center of Excellence University of California.
Jon Hadler and Dr. David Ison
Friends and Partners of Aviation Weather
SIP/2012/ASBU/Nairobi-WP/19
Weather Information.
A Data Focussed Approach to Mapping Security Issues to Safety Impacts Dr Robert Oates Private – Rolls-Royce Proprietary Information.
Global Air Navigation Plan (GANP) Aviation System Block Upgrade (ASBU)
4D Trajectory Management
Copyright Gupta Consulting, LLC.
A Concept for Launch and Reentry Collaborative Decision Making (CDM)
Presentation transcript:

Presenter: Robert Klein Date:August 27, 2014 Federal Aviation Administration AAtS Information Exchange Vulnerability Assessment Threat-Scenario-Based Hazard Analysis and Risk Assessment

2 Federal Aviation Administration Data Exchange Comparison Reference Data Exchange Reference Model DATA Format AIXMFIXMWXXM Information Product NAS Standard TemplatesIndividual Flight ObjectsNAS Standard Weather Cal / Val Geospatially Corrected with Occasional Updates Geospatially Corrected with Dynamical Updates Geospatially Corrected with Dynamical Updates Authentication FAA Operator – to NESG (pub.) FAA - to NESG (pub.) Operator - to NESG (pub.) FAA - to NESG (pub.) Data & Information Description 1.Airport / Surface Templates 2.OCS, ICA, etc. 3.Flow Constrained Area 4.Standard Terminal Arrival Route (STAR) 5.Standard Instrument Departure (SID) 6.RNP Approaches, J-Routes, 7.Q-Routes, etc. 8.Temporary Flight Restriction (TFR) 9.Special Use Airspace (SUA) 10.eNOTAMs 11.Traffic Management Initiatives (TMIs) 12.Air Traffic / Traffic Flow Management 1.Flight Plan(s) 2.Approved RNAV Routing 3.RTAs 4.Flight History 5.Flight Object 6.Trajectory Option Set (TOS) 7.FF-ICE (Flight & Flow Information for a Collaborative Environment 1.METARs 2.SIGMETs and Convective SIGMETs 3.TAFs 4.Winds and Temps Aloft 5.AIRMETs 6.Real-time Surface Winds / Wind Field Profiles 7.PIREPs Primary Source FAAOperatorsNWS, FAA, and Operators

3 Federal Aviation Administration So what-? Why do we care? Collaborative Decision Making (CDM) Because... And... CDM = Operational Efficiency (η)

4 Federal Aviation Administration The Concern...

5 Federal Aviation Administration Meanwhile, in 12-A...

6 Federal Aviation Administration Airborne WiFi in the News

7 Federal Aviation Administration ‘Original Article’

8 Federal Aviation Administration AAtS Threat Portals Spoofing identity Information disclosure Elevation of privilege Denial of service Tampering with data Repudiation

9 Federal Aviation Administration Threat Categories & Descriptions Threat Number CategoryDescription TS-1 DImproper traffic originating from the EFB TS-2 E, DCabin gaining unauthorized access to DLS TS-3 E, TCabin user gains unauthorized access to Wireless Access Point TS-4 DConsumption of DLS Bandwidth TS-5 S, I, DUnauthorized Network Mapping by Authenticated User TS-6 S, E, DExternal Attacks with IP Address or Hostname TS-7 DWireless Access Point/Router DoS TS-8 S, E, IRogue access point impersonating Wireless Access Point TS-9 S, DEFB may make excessive queries, conducting a DoS TS-10 IUser in the cabin sniffing flight deck traffic TS-11 S, T, I, EAttack on the Certificate Authority and Rogue Certificates

10 Federal Aviation Administration FAA Risk Assessment Matrix Safety Risk Assessment Matrix from FAA ORDER A

11 Federal Aviation Administration Threat Scenario Risk Assessment Assessed Risk Number of Threats Unacceptable risk0 Acceptable Risk with Mitigations 5 Acceptable risk 6

12 Federal Aviation Administration Conclusions The ERAU report presents several interesting network security threat scenarios. There may be others... Threat Scenarios 1 thru 11 do not represent either Hazardous or Catastrophic risk severity from an operational perspective. We are continuing to evaluate this important issue.

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.