Comparing Different Diffie-Hellman Key Exchange Flavors for LDACS

Mäurer, Nils; Gräupl, Thomas; Gentsch, Christoph; Schmitt, Corinna

doi:10.1109/dasc50938.2020.9256746

Cited by 12 publications

(17 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A duration for the key exchange procedure of 283.74 ms for the 95th percentile was measured. This goes in line with the theoretical and simulation-based evaluations published in [37], [38]. An in-depth analysis of the security measures employed in the campaign for data broadcast over LDACS can be found in [31].…”

Section: B Applications and Securitysupporting

confidence: 79%

LDACS Flight Trials: Demonstration and Performance Analysis of the Future Aeronautical Communications System

Bellido-Manganell

Gräupl

Heirich

et al. 2022

IEEE Trans. Aerosp. Electron. Syst.

Self Cite

View full text Add to dashboard Cite

The L-band Digital Aeronautical Communications System (LDACS) is a key enabler of the new air traffic services and operational concepts necessary for the modernization of the air traffic management (ATM). After its initial design, compatibility tests with legacy L-band systems, and functional demonstrations in the laboratory, the system is currently undergoing the standardization process of the International Civil Aviation Organization (ICAO). However, LDACS has not been demonstrated in flight yet. In this paper, we present the first in-flight demonstration of LDACS, which took place in March and April 2019 in southern Germany and included four LDACS ground stations and one LDACS airborne station. We detail the experimental setup of the implemented LDACS ground and airborne stations together with the flight routes, the conducted experiments, and the frequency planning to ensure compatibility with legacy systems. In addition, we describe the demonstrated ATM applications and the security measures used to protect them. Based on the obtained measurement results, we evaluate the LDACS in-flight communication performance for the first time, including the achieved communication range, the measured end-to-end message latency, and the LDACS capability to provide quality of service by effectively prioritizing safety-relevant data traffic. Furthermore, we use the in-flight received signal power to assess the applicability of a theoretical path loss model. These flight trials contribute to the final steps in the development of LDACS by providing its in-flight communication performance and by demonstrating: first, its correct functionality in a realistic environment; second, its capability of supporting ATM applications and the advanced security measures that can be used to protect them; and third, its spectrum compatibility with legacy systems. We conclude that LDACS is ready to support ATM operations and that LDACS frequency planning can safeguard legacy systems successfully.

show abstract

Section: B Applications and Securitysupporting

confidence: 79%

LDACS Flight Trials: Demonstration and Performance Analysis of the Future Aeronautical Communications System

Bellido-Manganell

Gräupl

Heirich

et al. 2022

IEEE Trans. Aerosp. Electron. Syst.

Self Cite

View full text Add to dashboard Cite

show abstract

“…In the experiment public keys and certificates of the ground-station and aircraft-station were bilaterally exchange via LDACS. In an operational deployment of LDACS the distribution of public keys and certificates will likely be realized via an LDACS specific public key infrastructure, as described in [14,15,16,17]. Knowing Alice's public key, Bob can verify the authenticity of the TESLA parameters and start buffering messages sent by Alice until he receives the correct key to verify their authenticity.…”

Section: Tesla Broadcast Authenticationmentioning

confidence: 99%

Flight Trial Demonstration of Secure GBAS via the L-band Digital Aeronautical Communications System (LDACS)

Mäurer

Gräupl

Bellido-Manganell

et al. 2021

IEEE Aerosp. Electron. Syst. Mag.

Self Cite

View full text Add to dashboard Cite

The Ground Based Augmentation System (GBAS) is the cornerstone for enabling automated landings without the Instrument Landing System (ILS). Currently GBAS is evolving to GAST-D for CAT III landings. This extends GBAS via the use of multiple frequencies (L1/L2 and L5) and the use of multiple global navigation satellite system constellations. GBAS requires correction data to be broadcast to aircraft. This is currently done with the VHF Data Broadcast (VDB) datalink. However, VDB has several known shortcomings: (1) low throughput, (2) small area of operation and (3) no cyber-security measures. In this paper we propose the use of the L-band Digital Aeronautical Communications System (LDACS) for broadcasting GBAS correction data to address these shortcomings. In flight experiments conducted in 2019, we set up an experimental GBAS installation using LDACS. Broadcast data was secured using the TESLA broadcast authentication protocol. Our results indicate that cryptographically secured GBAS data via LDACS can provide GAST-C and GAST-D services with high availability if cryptographic parameters are chosen appropriately.

show abstract

“…Previous security analysis of LDACS identified requirements of the cell-attachment procedure [10], [11], [13], [15]: Mutual Authentication, Perfect Forward Secrecy and Secure Key Establishment in event of an adversary or compromise of long-term keys. This requires the key establishment method to be based on ephemeral keys, where both parties contribute to the final shared secrets and the inputs are chosen freshly for every protocol run.…”

Section: Secure Ldacs Cell-attachment: Design Goalsmentioning

confidence: 99%

“…All these documents define access control, options to protect user data in transit on link layer, and protection of the control plane of the radio access technology, as a requirement to be incorporated into the Air Traffic Network (ATN)/IP-Protocol Suite (IPS) network. In previous works, threat-and risk analysis of LDACS were conducted [9], [10], a draft for an LDACS cybersecurity architecture introduced [11], [12], algorithms proposed [13], [14] and the security of the Station to Station (STS)-based Mutual Authentication and Key Establishment (MAKE) procedure of LDACS formally verified [15]. Thereby, the low data rates of aeronautical systems, which originates from low limited dedicated spectrum for civil aviation and resulting 500 kHz channel sizes for LDACS [16], is respected.…”

Section: Introductionmentioning

confidence: 99%

“…Thereby, the low data rates of aeronautical systems, which originates from low limited dedicated spectrum for civil aviation and resulting 500 kHz channel sizes for LDACS [16], is respected. Hence, the rationale for the cell-attachment procedure is to reduce the amount of security message exchanges between GS and AS and the overall amount of the LDACS security overhead [11], [13].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation