Secure Communications in Civil Aviation Paul Wells A presentation to ATN September 2002

© Copyright QinetiQ Ltd Contents 1Introduction 2Communications security overview 3Secure communications applications 4Conclusions

Introduction Section 1

© Copyright QinetiQ Ltd Introduction Comms security is not just about protection of the data but is protection of the whole end to end system You are as vulnerable as your weakest link Security in aviation applies to: –voice and data links (air/ground) –command & control –passenger communications –airport communications

Communications security overview Section 2

© Copyright QinetiQ Ltd Communications security overview Confidentiality –threat: eavesdropping Integrity –threat: alteration of data Authentication –threat: impersonation of originator, receiver Non-repudiation –threat: source subsequently denies originating information Denial Wireless bearers are notoriously flakey

© Copyright QinetiQ Ltd Secure wireless - link issues

© Copyright QinetiQ Ltd Public KEY Cryptography (PKC) Asymmetric Cryptography No shared secret Invented by Whitfield Diffie and Martin Hellman (1976) Invented by Ellis, Cox & Williamson (around 1970, see

© Copyright QinetiQ Ltd Security between networks GPRSL2PPP IP UDP IP UDP PPP IP Crypto SGSNGGSN DHCP Internet MSTEISPTE PPP Serial PPP Dial up V. Series BTS

Secure comms applications Section 3

© Copyright QinetiQ Ltd Secure communications applications VIP, business and airline operations Airline operations Remote video from airframe Secure voice from helicopters QinetiQ Intruder Protection Systems (QIPS) Wireless access for passengers (ground & air) ATN applications

© Copyright QinetiQ Ltd Airborne secure comms

© Copyright QinetiQ Ltd VIP, business and airline operations Communications via Inmarsat Aero Global connectivity Voice, data & video Protocol enhancement for maximum data throughput Scalable architecture

© Copyright QinetiQ Ltd Airline operations Use of Iridium for low-rate voice or secure data Demonstrated airborne polar to land mobile direct links Secure messaging via Iridium paging

© Copyright QinetiQ Ltd Remote video from airframe

© Copyright QinetiQ Ltd Streamed IP video from airframe on demand Also can stream TV to the airframe - suitable for live news update

© Copyright QinetiQ Ltd Crypto Example of secure voice from helicopters

© Copyright QinetiQ Ltd QinetiQ Intruder Protection Systems (QIPS) Based upon intelligent control of UAV’s QIPS is remote control of airframes via highly secure comms links and EFIS Dual secure encrypted bearers provide redundancy for fail safe system control Allows remote switching of airframe into emergency flight mode to reach auto land phase Authentication and integrity of encrypted link enables this

© Copyright QinetiQ Ltd

© Copyright QinetiQ Ltd Wireless access for passengers Wireless LAN access at Airports Desire for Wireless LAN onboard! Wireless LAN security is weak –Recent press activity showing ease of access to corporate information via low cost WLAN intercept –Authentication of users to bill for service is required Must use widely available WLAN implementations Solution is a security overlay for privacy and billing

© Copyright QinetiQ Ltd Wireless access for passengers

© Copyright QinetiQ Ltd ATN applications Air to ground security study for Eurocontrol –Analogue VHF DSB - AM voice –VDL mode 2 supporting ATN –ACARS Key management is an issue Broadcast needs to be supported

Conclusions Section 4

© Copyright QinetiQ Ltd Conclusions Wireless security is now emerging for other aviation applications as well as for ATN A wireless security overlay can provide privacy of data, authentication of users and prevent alteration of data Wireless security has to be implemented carefully to enable fully secured solutions - it must also be reasonably transparent to the user Any solution must taken into account errored bearers The technology is available today - implementation is the ‘secret sauce’

© Copyright QinetiQ Ltd Inmarsat Aero coverage