Challenges of security and trust of mobile devices as digital avionics component

Akram, Raja Naeem; Markantonakis, Konstantinos

doi:10.1109/icnsurv.2016.7486323

Cited by 7 publications

(4 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The concepts discovered are very similar to the revelation of how cyber threats have greatly affected online credibility. Akram and Markantonakis [15] presented an article that evaluated the security and trust challenges presented by mobile devices in various domains. They argue that the trust and security that would be required to prevent access to the information in enterprise mobility include; secure decommissioning, closely managing and monitoring the provision of applications to users, and utilize a trusted execution environment [16].…”

Section: Related Workmentioning

confidence: 99%

“…They argue that the trust and security that would be required to prevent access to the information in enterprise mobility include; secure decommissioning, closely managing and monitoring the provision of applications to users, and utilize a trusted execution environment [16]. Generally, Ratchford et al, [14], Akram and Markantonakis [15], and Raj [16] present literature reviews that are purposely in-depth on responding to security issues associated with enterprise mobility. They form many concepts of security mitigation that are similar to current demand for securty integrations.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Managing access control issues in the choose your own device environment

Almarhabi

2022

THERM SCI

View full text Add to dashboard Cite

Enterprise mobility is taking the business to another level. Organizations are nowadays managing to adopt varying enterprise mobility that helps run the transactions conducted in a bigger and better way. Despite their huge assistance, most enterprise mobilities are causing mayhem to most organizations that have integrated them as the sole strategy to keep things running. They are becoming inevitable and unstoppable trends that pose new security risks and challenges in controlling and managing corporate data and networks. If not well monitored, they can unwontedly lead to disclosing vital information, disruption of services, legal implications, financial issues, loss of productivity, and modify access policies. One such largely implemented enterprise mobility is choose your own de-vice. The intention of this paper is to propose a new framework that would help in managing the access control issues in the environment of choose your own device. The main aim of the proposed architecture is to reduce restrictions and enforce access control policies in choose your own device and the cloud.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Managing access control issues in the choose your own device environment

Almarhabi

2022

THERM SCI

View full text Add to dashboard Cite

show abstract

“…In addition, a crucial component that supports aircraft devices security is the trusted boot process discussed in [5]. The security, trust and assurance issues related to the fact of bringing a user device into an aircraft network are evaluated in [21].…”

Section: B Related Work On Awn Security Concernsmentioning

confidence: 99%

An efficient, secure and trusted channel protocol for avionics wireless networks

Akram¹,

Markantonakis²,

Mayes³

et al. 2016

2016 IEEE/AIAA 35th Digital Avionics Systems Conference (DASC)

Self Cite

View full text Add to dashboard Cite

Abstract-Avionics networks rely on a set of stringent reliability and safety requirements. In existing deployments, most of these networks are based on a wired technology, which supports these requirements. Furthermore, this technology simplifies the security management of the network since certain assumptions can be safely made, including the inability of an attacker to access the network, and the fact that it is almost impossible for an attacker to introduce a node into the network. The proposal for Avionics Wireless Networks (AWNs, currently under consideration by multiple aerospace working groups, promises a reduction in the complexity of electrical wiring harness design and fabrication, a reduction in the total weight of wires, increased customization possibilities, and the capacity to monitor otherwise inaccessible moving or rotating aircraft parts such as landing gear and some sections of the aircraft engines. While providing these benefits, the AWN must ensure that it provides levels of safety that are at minimum equivalent to those offered by the wired equivalent. In this paper, we propose a secure and trusted channel protocol that satisfies the stated security and operational requirements for an AWN protocol. There are three main objectives for this protocol. First, the protocol has to provide the assurance that all communicating entities can trust each other, and can trust their internal (secure) software and hardware states. Second, the protocol has to establish a fair key exchange between all communicating entities so as to provide a secure channel. Finally, the third objective is to be efficient for both the initial start-up of the network and when resuming a session after a cold and/or warm restart of a node. The proposed protocol is implemented within a demo AWN, and performance measurements are presented based on this implementation. In addition, we formally verify our proposed protocol using CasperFDR.

show abstract

“…Beside this, a crucial component of the security of aircraft devices is the trusted boot process discussed in [27]. The security, trust and assurance issues related to bringing a user device into an aircraft network are evaluated in [28].…”

Section: A Related Work On Security Concernsmentioning

confidence: 99%

Security and performance comparison of different secure channel protocols for Avionics Wireless Networks

Akram

Markantonakis

Mayes

et al. 2016

2016 IEEE/AIAA 35th Digital Avionics Systems Conference (DASC)

Self Cite

View full text Add to dashboard Cite

Abstract-The notion of Integrated Modular Avionics (IMA) refers to inter-connected pieces of avionics equipment supported by a wired technology, with stringent reliability and safety requirements. If the inter-connecting wires are physically secured so that a malicious user cannot access them directly, then this enforces (at least partially) the security of the network. However, substituting the wired network with a wireless network -which in this context is referred to as an Avionics Wireless Network (AWN) -brings a number of new challenges related to assurance, reliability, and security. The AWN thus has to ensure that it provides at least the required security and safety levels offered by the equivalent wired network. Providing a wired-equivalent security for a communication channel requires the setting up of a strong, secure (encrypted) channel between the entities that are connected to the AWN. In this paper, we propose three approaches to establish such a secure channel based on (i) preshared keys, (ii) trusted key distribution, and (iii) key-sharing protocols. For each of these approaches, we present at least two representative protocol variants. These protocols are then implemented as part of a demo AWN and they are then compared based on performance measurements. Most importantly, we have evaluated these protocols based on security and operational requirements that we define in this paper for an AWN.

show abstract

Challenges of security and trust of mobile devices as digital avionics component

Cited by 7 publications

References 9 publications

Managing access control issues in the choose your own device environment

Managing access control issues in the choose your own device environment

An efficient, secure and trusted channel protocol for avionics wireless networks

Security and performance comparison of different secure channel protocols for Avionics Wireless Networks

Contact Info

Product

Resources

About