Presentation is loading. Please wait.

Presentation is loading. Please wait.

Presenter: Robert Klein Date:August 27, 2014 Federal Aviation Administration AAtS Information Exchange Vulnerability Assessment Threat-Scenario-Based.

Published byMoriah Shoesmith Modified over 9 years ago

Similar presentations

Presentation on theme: "Presenter: Robert Klein Date:August 27, 2014 Federal Aviation Administration AAtS Information Exchange Vulnerability Assessment Threat-Scenario-Based."— Presentation transcript:

1

2 Presenter: Robert Klein Date:August 27, 2014 Federal Aviation Administration AAtS Information Exchange Vulnerability Assessment Threat-Scenario-Based Hazard Analysis and Risk Assessment

3 2 Federal Aviation Administration Data Exchange Comparison Reference Data Exchange Reference Model DATA Format AIXMFIXMWXXM Information Product NAS Standard TemplatesIndividual Flight ObjectsNAS Standard Weather Cal / Val Geospatially Corrected with Occasional Updates Geospatially Corrected with Dynamical Updates Geospatially Corrected with Dynamical Updates Authentication FAA Operator – to NESG (pub.) FAA - to NESG (pub.) Operator - to NESG (pub.) FAA - to NESG (pub.) Data & Information Description 1.Airport / Surface Templates 2.OCS, ICA, etc. 3.Flow Constrained Area 4.Standard Terminal Arrival Route (STAR) 5.Standard Instrument Departure (SID) 6.RNP Approaches, J-Routes, 7.Q-Routes, etc. 8.Temporary Flight Restriction (TFR) 9.Special Use Airspace (SUA) 10.eNOTAMs 11.Traffic Management Initiatives (TMIs) 12.Air Traffic / Traffic Flow Management 1.Flight Plan(s) 2.Approved RNAV Routing 3.RTAs 4.Flight History 5.Flight Object 6.Trajectory Option Set (TOS) 7.FF-ICE (Flight & Flow Information for a Collaborative Environment 1.METARs 2.SIGMETs and Convective SIGMETs 3.TAFs 4.Winds and Temps Aloft 5.AIRMETs 6.Real-time Surface Winds / Wind Field Profiles 7.PIREPs Primary Source FAAOperatorsNWS, FAA, and Operators

4 3 Federal Aviation Administration So what-? Why do we care? Collaborative Decision Making (CDM) Because... And... CDM = Operational Efficiency (η)

5 4 Federal Aviation Administration The Concern...

6 5 Federal Aviation Administration Meanwhile, in 12-A...

7 6 Federal Aviation Administration Airborne WiFi in the News

8 7 Federal Aviation Administration ‘Original Article’

9 8 Federal Aviation Administration AAtS Threat Portals Spoofing identity Information disclosure Elevation of privilege Denial of service Tampering with data Repudiation

10 9 Federal Aviation Administration Threat Categories & Descriptions Threat Number CategoryDescription TS-1 DImproper traffic originating from the EFB TS-2 E, DCabin gaining unauthorized access to DLS TS-3 E, TCabin user gains unauthorized access to Wireless Access Point TS-4 DConsumption of DLS Bandwidth TS-5 S, I, DUnauthorized Network Mapping by Authenticated User TS-6 S, E, DExternal Attacks with IP Address or Hostname TS-7 DWireless Access Point/Router DoS TS-8 S, E, IRogue access point impersonating Wireless Access Point TS-9 S, DEFB may make excessive queries, conducting a DoS TS-10 IUser in the cabin sniffing flight deck traffic TS-11 S, T, I, EAttack on the Certificate Authority and Rogue Certificates

11 10 Federal Aviation Administration FAA Risk Assessment Matrix Safety Risk Assessment Matrix from FAA ORDER 8040.4A

12 11 Federal Aviation Administration Threat Scenario Risk Assessment Assessed Risk Number of Threats Unacceptable risk0 Acceptable Risk with Mitigations 5 Acceptable risk 6

13 12 Federal Aviation Administration Conclusions The ERAU report presents several interesting network security threat scenarios. There may be others... Threat Scenarios 1 thru 11 do not represent either Hazardous or Catastrophic risk severity from an operational perspective. We are continuing to evaluate this important issue.

Download ppt "Presenter: Robert Klein Date:August 27, 2014 Federal Aviation Administration AAtS Information Exchange Vulnerability Assessment Threat-Scenario-Based."

Similar presentations

Emergency COA Process Presented to: UAS All Users TELCON

Emergency COA Process Presented to: UAS All Users TELCON
FAA / Eurocontrol TFM/CDM Technical Interchange Meeting

FAA / Eurocontrol TFM/CDM Technical Interchange Meeting
Air Traffic Analysis, Inc Using WITI for Airport Arrival Performance Analysis A report on work-in-progress December 2010.

Air Traffic Analysis, Inc Using WITI for Airport Arrival Performance Analysis A report on work-in-progress December 2010.
AgendaAppendix TEMPLATE HEMS Tool Project History, Status and Future James H. Hartman FAA Aviation Weather Division, ANG-C6 Aviation Weather Research Program.

AgendaAppendix TEMPLATE HEMS Tool Project History, Status and Future James H. Hartman FAA Aviation Weather Division, ANG-C6 Aviation Weather Research Program.
Aeronautical Information Services (AIS) Data Link Ernie R. Dash FAA EnRoute Wx Support (AvMet)‏ RTCA SC-206/EUROCAE WG-76 Harmonization – Thoughts by Ernie.

Aeronautical Information Services (AIS) Data Link Ernie R. Dash FAA EnRoute Wx Support (AvMet)‏ RTCA SC-206/EUROCAE WG-76 Harmonization – Thoughts by Ernie.
Federal Aviation Administration 1 35 th Annual Airports Conference – April 3, 2012 FAA Air show Waiver Reviews Presentation to: Name: Date: 35 th Annual.

Federal Aviation Administration 1 35 th Annual Airports Conference – April 3, 2012 FAA Air show Waiver Reviews Presentation to: Name: Date: 35 th Annual.
Federal Aviation Administration 1 June 2013 Federal Aviation Administration 1 October 2013 WET Update to NBAA and FPAW Federal Aviation Administration.

Federal Aviation Administration 1 June 2013 Federal Aviation Administration 1 October 2013 WET Update to NBAA and FPAW Federal Aviation Administration.
Federal Aviation Administration Presented to: Network Centric Demonstrations and Prototypes Technical Interchange By: Deborah Young Date: November 4, 2009.

Federal Aviation Administration Presented to: Network Centric Demonstrations and Prototypes Technical Interchange By: Deborah Young Date: November 4, 2009.
Aircraft Access to SWIM (AAtS) Demonstration

Aircraft Access to SWIM (AAtS) Demonstration
Ames Research Center 1October 2006 Aviation Software Systems Workshop FACET: Future Air Traffic Management Concepts Evaluation Tool Aviation Software Systems.

Ames Research Center 1October 2006 Aviation Software Systems Workshop FACET: Future Air Traffic Management Concepts Evaluation Tool Aviation Software Systems.
1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection.

1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection.
External Consumer Access to FAA Data Sets via SWIM

External Consumer Access to FAA Data Sets via SWIM
Mr. Hooper Harris FAA/JAA Annual Meeting Phoenix, AZ June 3 - 7, 2002

Mr. Hooper Harris FAA/JAA Annual Meeting Phoenix, AZ June 3 - 7, 2002
1 National Workshop on Aviation Software Systems: Design for Certifiably Dependable Systems Natasha Neogi October 5-6, 2006 Arlington, VA.

1 National Workshop on Aviation Software Systems: Design for Certifiably Dependable Systems Natasha Neogi October 5-6, 2006 Arlington, VA.
Delivering NextGen June 5, 2015 Maryland Airport Managers Association Presented by Carmine Gallo, Eastern Regional Administrator Federal Aviation Administration.

Delivering NextGen June 5, 2015 Maryland Airport Managers Association Presented by Carmine Gallo, Eastern Regional Administrator Federal Aviation Administration.
Presented to: MPAR Working Group By: William Benner, Weather Processors Team Manager (AJP-1820), FAA Technical Center Date: 19 March 2007 Federal Aviation.

Presented to: MPAR Working Group By: William Benner, Weather Processors Team Manager (AJP-1820), FAA Technical Center Date: 19 March 2007 Federal Aviation.
TARGETS Enabling NextGen With Advanced Procedure Design Software October 22, 2013.

TARGETS Enabling NextGen With Advanced Procedure Design Software October 22, 2013.
Date: 18 February 2008 Federal Aviation Administration Collaborative Decision Making at the FAA/ATO A look at how CDM is applied in the U.S.

Date: 18 February 2008 Federal Aviation Administration Collaborative Decision Making at the FAA/ATO A look at how CDM is applied in the U.S.
Weather Satellite Data in FAA Operations Randy Bass Aviation Weather Research Program Aviation Weather Division NextGen Organization Federal Aviation Administration.

Weather Satellite Data in FAA Operations Randy Bass Aviation Weather Research Program Aviation Weather Division NextGen Organization Federal Aviation Administration.
Integrating information towards Digital ATM Mini Global Demonstration Presented By: Thien Ngo Date:August 28, 2013.

Integrating information towards Digital ATM Mini Global Demonstration Presented By: Thien Ngo Date:August 28, 2013.

Similar presentations

Ads by Google