Feb 2009 Introducing ARTIST - Airbus Deutschland GmbH - TBCEI33 Introducing ARTIST Trust and Identification Aircraft Security Presented by Michel Messerschmidt.

Slides:

Advertisements

Similar presentations

Smart Certificates: Extending X.509 for Secure Attribute Service on the Web October 1999 Joon S. Park, Ph.D. Center for Computer High Assurance Systems.

Advertisements

PKI Trust Root Concepts ACP Working Group – I April 2009.

CM like a transversal process enabler for a distributed but integrated PLM - Moises MARTINEZ-ABLANEDO February 2012 Centre of Competence of CM CM like.

Ensuring Aviation Safety in a changing world

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

AIRCRAFT FIRE AND CABIN SAFETY RESEARCH CONFERENCE Dr. A. Freiling - Ref. X26PR Issue 1 Relation between active and passive Fire Protection.

WG78 / SC214 – Plenary 12 (Berlin)

VSG – CPDLC Msg Set Validation WG78/SC214 SG (Luxembourg) Feb 2012VSG - CPDLC Msg Set Validation Presented by VSG (Greg Saccone / Jerome Condis)

VSG Input WG78/SC214 SG (Luxembourg) Feb 2012VSG - Input Presented by VSG (Greg Saccone / Jerome Condis)

Standards for Seamless ATS communications transition between different datalink technologies Presented by CONDIS Jerome Airbus May 2010.

The revenue crisis: when will the airline industry recover? Narjess Teyssier ICAO n Chief Economic Analysis & Policy Section Montréal 26 September 2010.

ESign-Online Digital Signature Service February 2015 Controller of Certifying Authorities Department of Electronics and Information Technology Ministry.

Cabin Component Design Features Fire Properties of Corefiller, Adhesive, „Ditch and Pot“ March 2009 Presented by Ingo WEICHERT TBCEE12.

HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.

DESIGNING A PUBLIC KEY INFRASTRUCTURE

Figure 1: SDR / MExE Download Framework SDR Framework Network Server Gateway MExE Download + Verification Using MExE Repository (Java sandbox) MExE Applet.

E-Procurement: Digital Signatures and Role of Certifying Authorities Jagdeep S. Kochar CEO, (n)Code Solutions.

State of Air Transport focus on MID Region 1 ICAO Aviation Data Analyses Seminar Middle East (MID) Regional Office October Economic Analysis and.

Southampton 1 P Bradshaw EDXCW. Commercial Aircraft Conceptual Design - Some Considerations 15 th November 2005 P Bradshaw EDXCW Wing & Aerodynamics Skill.

Southampton 2 P Bradshaw EDXCW. © AIRBUS S.A.S. All rights reserved. Confidential and proprietary document. Develop Capabilities for Multiple Challenges.

ICAO Aviation Data Analyses Seminar Middle East (MID) Regional Office October Economic Analysis and Policy (EAP) Section Air Transport Bureau (ATB)

R&R Consulting Approach

Web services security I

TrustPort Public Key Infrastructure. Keep It Secure Table of contents  Security of electronic communications  Using asymmetric cryptography.

© COPYRIGHT ABCONSULTING Understanding Flight Operations For Manufacturers by Antoine BRU.

Key Management in Cryptography

© COPYRIGHT ABCONSULTING Understanding Flight Operations - Part Two by Antoine BRU.

Key Management Guidelines. 1. Introduction 2. Glossary of Terms and Acronyms 3. Cryptographic Algorithms, Keys and Other Keying Material 4. Key Management.

Controller of Certifying Authorities Public Key Infrastructure for Digital Signatures under the IT Act, 2000 : Framework & status Mrs Debjani Nag Deputy.

Fuel Tank Inerting Joint Airbus/FAA, A320 Flight Tests

E-TSI light user manual for Instructors Questionnaire online: How can I show to my Customer to fill in a questionnaire? How can I print directly from the.

AIRBUS SUPPORT IN SOUTH ASIA Contributing to the Safety of Aviation Community April, 2011To 8 th 5 th Presented by Captain Michel MENESTROT Flight Ops.

Introduction to Secure Messaging The Open Group Messaging Forum April 30, 2003.

Airbus Training Perspective

9-Apr-2008 WALLTURB meeting at ONERA Toulouse WALLTURB: CFD results on Surrey Bump WALLTURB Presented by Jerry Benton.

Southampton 3 P Bradshaw EDXCW. © AIRBUS S.A.S. All rights reserved. Confidential and proprietary document. Pop-Up Spoilers Description  High lift: Slats,

Aviation Safety in a changing world FSF MED MAY 2014 Airbus Product Safety Frédéric COMBES Head of Accident / Incident Investigation.

sec1 IEEE MEDIA INDEPENDENT HANDOVER DCN: sec Title: TGa_Proposal_Antonio_Izquierdo (Protecting the Information Service.

Jean-Pierre DANIEL, Airbus at AIAA CANEUS 2004, Monterey CA, USA Structural Health Monitoring for Airliners from research to user requirements, a European.

DCIT / Media Management Session FAA DataComm – OTA FANS Validation Airbus FANS comm media management 17 Nov 2011Airbus FANS comm media management Presented.

1 SeGW Certificate profile (Revised) 3GPP2 TSG-S WG4 /TSG-X WG5 (PDS) S X xx Source: QUALCOMM Incorporated Contact(s): Anand.

Security in ebXML Messaging CPP/CPA Elements. Elements of Security P rivacy –Protect against information being disclosed or revealed to any entity not.

Airbus Status on ADS-B In / Out Update

DIGITAL SIGNATURE.

Security fundamentals Topic 5 Using a Public Key Infrastructure.

C-Band for AIRBUS Telemetry : status and improvement June 2015 ETTC 2015 Gilles Freaud /Luc FALGA ETTC 2015 Toulouse.

Big Data in Airbus Flight Test and Integration Center

Using Public Key Cryptography Key management and public key infrastructures.

Friends and Partners of Aviation Weather, Fall 2015, Las Vegas, NV Determining Runway Conditions in Real Time Using Data Obtained from Airplanes during.

Fuel Cell By-Products for Cargo Hold Fire Suppression

Training & Flight Operations Support and Services

Greener Skies 4th Aviation and Environment Conference Hong Kong - September 27, 2011 Presented by Frederic Eychenne, Airbus New Energies Programme Manager.

C.B.T. Administrator course

Novec 1230 cold testing outcomes IAFPSWG meeting Nov 2011 Month 200XNovec 1230 cold testing outcomes - IAFPSWG meeting Nov 11 - EET13 - Ref. V26PR

State of the Art of Contaminated Runways Work at Airbus October 20133rd International Winter Operations Conference Presented by Logan JONES – Aircraft.

UBAX14 Microsoft Convention 2013 ‘If you’re trying to get to there…..’

© AIRBUS all rights reserved. Confidential and proprietary document. An Active Safety Net for Runway Overruns Presented by Logan JONES Airbus Flight Operations.

TAG Presentation 18th May 2004 Paul Butler

State of Air Transport focus on MID Region

Trust and Identification

ESign Aashutosh.

AMASIS Exercises Airbus FHS Campinas, October 2016 Thomas Lefrançois

TAG Presentation 18th May 2004 Paul Butler

Public Key Infrastructure (PKI)

ICAO CO2 Reporting and Analysis System (ICORAS)

Security in ebXML Messaging

ICAO Strategic Objective: Economic Development of Air Transport

Economic Analysis and Policy (EAP) Section Air Transport Bureau (ATB)

A family of Smart-Galley

PKI (Public Key Infrastructure)

Presentation transcript:

Feb 2009 Introducing ARTIST - Airbus Deutschland GmbH - TBCEI33 Introducing ARTIST Trust and Identification Aircraft Security Presented by Michel Messerschmidt Aircraft Information System Security Engineer

© AIRBUS DEUTSCHLAND GMBH. All rights reserved. Confidential and proprietary document. Feb 2009Introducing ARTIST - Airbus Deutschland GmbH - TBCEI33Page 2 Introducing... ARTIST A unique, electronic Vehicle Identification Number (VIN) for the lifetime of the aircraft An onboard Certificate Authority (CA) providing digital certificates and PKI services Onboard validation of all certificates against Certipath (without the need for ground communication) Provide services for all aircraft systems and applications ARTIST consists of two modules... to keep the critical part small and simple, while providing full services in a flexible way ARTIST = Aircraft Root of Trust and Identification System ARTIST

© AIRBUS DEUTSCHLAND GMBH. All rights reserved. Confidential and proprietary document. Feb 2009Introducing ARTIST - Airbus Deutschland GmbH - TBCEI33Page 3 Introducing... TIM ARTIST TIM Private Storage - VIN - Aircraft root private key Trusted Storage - Trusted public certificates Trusted Service - Processor - OS / Firmware - RNG - Algorithms API I/F TIM = Trusted Identity Module Non-modifiable and non-removable (without destruction) for the lifetime of the aircraft Contains the VIN An aircraft root certificate (i.e. a CA certificate) and private key as the root of trust for all aircraft purposes. signed by a ground CA that is cross-certified by Certipath. Trusted public information to validate the aircraft root certificate (e.g. the signing certificates of the ground CA and Certipath) Hardware and Firmware to facilitate all sensitive cryptographic operations (i.e. involving the private key) within TIM No access to Private Storage from outside of TIM

© AIRBUS DEUTSCHLAND GMBH. All rights reserved. Confidential and proprietary document. Feb 2009Introducing ARTIST - Airbus Deutschland GmbH - TBCEI33Page 4 Introducing... SARCASM SARCASM = Secure Aircraft Root Certificate Authority Services Module A centralized onboard certificate authority providing digital certificates and PKI services A non-volatile CA storage for public keys and certificates Separate, but identical services for all aircraft domains to ensure domain separation An isolated Secure TRUsted Power & Programming Interface (STRUPPI) for maintenance access to all services that require authentication ARTIST SARCASM ACD CA Service - Processing - Algorithms CA Storage - Certificates - Certificate Revocation Lists AISD CA Service - Processing - Algorithms PIESD CA Service - Processing - Algorithms TIM API I/F API I/F API I/F API I/F STRUPPI

© AIRBUS DEUTSCHLAND GMBH. All rights reserved. Confidential and proprietary document. Feb 2009Introducing ARTIST - Airbus Deutschland GmbH - TBCEI33Page 5...putting it all together... ARTIST SARCASM ACD CA Service - Processing - Algorithms CA Storage - Certificates - Certificate Revocation Lists AISD CA Service - Processing - Algorithms PIESD CA Service - Processing - Algorithms TIM Private Storage - VIN - Aircraft root private key Trusted Storage - Trusted public certificates Trusted Service - Processor - OS / Firmware - RNG - Algorithms API I/F API I/F STRUPPI API I/F API I/F

© AIRBUS DEUTSCHLAND GMBH. All rights reserved. Confidential and proprietary document. Feb 2009Introducing ARTIST - Airbus Deutschland GmbH - TBCEI33Page 6 Finally... services SARCASM public API services include: Aircraft identification (using VIN) Validation of certificates (from onboard systems and external entities) Verification of signatures Generation of keys for aircraft systems and applications (TBC) Data signatures (TBC, requires a second key pair and certificate in TIM) SARCASM maintenance STRUPPI services include: Issuance of certificates for aircraft systems and applications Processing of certificate requests Revocation of certificates Generation and publication of certificate revocation lists for onboard certificates Storage and management of certificates and certificates revocation lists from external entities (.e.g. airline ground services, airport services)

© AIRBUS DEUTSCHLAND GMBH. All rights reserved. Confidential and proprietary document. Feb 2009Introducing ARTIST - Airbus Deutschland GmbH - TBCEI33Page 7 © AIRBUS DEUTSCHLAND GMBH. All rights reserved. Confidential and proprietary document. This document and all information contained herein is the sole property of AIRBUS DEUTSCHLAND GMBH. No intellectual property rights are granted by the delivery of this document or the disclosure of its content. This document shall not be reproduced or disclosed to a third party without the express written consent of AIRBUS DEUTSCHLAND GMBH. This document and its content shall not be used for any purpose other than that for which it is supplied. The statements made herein do not constitute an offer. They are based on the mentioned assumptions and are expressed in good faith. Where the supporting grounds for these statements are not shown, AIRBUS DEUTSCHLAND GMBH will be pleased to explain the basis thereof. AIRBUS, its logo, A300, A310, A318, A319, A320, A321, A330, A340, A350, A380, A400M are registered trademarks.