On the security of aeronautical datalink communications: Problems and solutions

Bresteau, Corentin; Guigui, Simon; Berthier, Paul; Fernandez, José M.

doi:10.1109/icnsurv.2018.8384830

Cited by 10 publications

(8 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…In addition to the findings of Smith et al, practical attack surface against ACARS has been well-established in the recent years. Spoofing attacks have been demonstrated by Zhang, Liu, Liu and Nees (2018), by Bresteau, Guigui, Berthier and Fernandez (2018), by , and by Perner and Schmitt (2020), to name some. These factors warrant the relevance of experimentation using the legacy POA in dissemination of cyberattack vectors.…”

Section: Aircraft Communication Addressing and Reporting Systemmentioning

confidence: 99%

“…Implementing the protocol is within the reach of virtually any motivated actor. Additionally, methods for POA signal generation have been published before Zhang et al (2018), by Bresteau et al (2018), by , and by Perner and Schmitt (2020), so the developed methodology has no inherent scientific novelty value. Secondly, the methodology for POA signal generation was made specifically for this study as student work, which promotes its release as a part of this master's thesis.…”

Section: Signal Transmittance Chain Developmentmentioning

confidence: 99%

“…In their work, AIS attack vectors were categorized in software-based and radio-based classes, focusing on customary attacks that specifically targeted AIS implementations. Similarly to the work by Bresteau et al[58] on ACARS spoofing, Balduzzi's group used USRP B100 hardware and GNU Radio software in overthe-air AIS spoofing efforts. In 2022, further expanding on the subject, Khandker et al[30] comprehensively tested the resilience of AIS, focusing their paper on the titular logic and error handling.…”

mentioning

confidence: 99%

See 2 more Smart Citations

On Apache Log4j2 Exploitation in Aeronautical, Maritime, and Aerospace Communication

Juvonen¹,

Costin²,

Turtiainen³

et al. 2022

IEEE Access

View full text Add to dashboard Cite

In this master's thesis on cyber security accessible methodology for over-the-air experiments using ACARS, ADS-B, and AIS telecommunication protocols is proposed, using software-defined radios, and utilising open-source and freeware software. The protocols are used as attack vectors for exploitation of Apache Log4j2 Java-library's vulnerabilities. Methods for studying CVE-2021-44228 "log4shell" remote code execution and related vulnerabilities using intentionally vulnerable software are presented. The telecommunication protocols' capabilities in transmitting CVE-2021-44228 and related cyberattack strings are evaluated by studying protocol specifications to identify probable attack vectors. Practical scenarios, in which mission critical and safety-of-life information systems could be exploitable, are experimentally demonstrated. All three studied protocols are found to be susceptible for wireless log4shell-cyberattacks, when identified preconditions are met. Moreover, novel findings concerning a high-severity Log4j2 denial of service vulnerability are presented.

show abstract

Section: Aircraft Communication Addressing and Reporting Systemmentioning

confidence: 99%

Section: Signal Transmittance Chain Developmentmentioning

confidence: 99%

mentioning

confidence: 99%

See 1 more Smart Citation

On Apache Log4j2 Exploitation in Aeronautical, Maritime, and Aerospace Communication

Juvonen¹,

Costin²,

Turtiainen³

et al. 2022

IEEE Access

View full text Add to dashboard Cite

show abstract

“…It is a complex task to change an industry. For instance, airline pilots still communicate with control towers using low quality analog radio, despite more advanced digital systems like FANS [17 ], which have been under development since at least the 1990s. Those digital systems provide clear voice quality with written transcription.…”

Section: Accepted Manuscriptmentioning

confidence: 99%

Charts based on millions of fluid dynamics simulations provide a simple tool to estimate how far from its source a specific blood stain can be found

Attinger

2019

Forensic Science International

View full text Add to dashboard Cite

The bloodstain pattern analyst sometimes has to judge if a given stain could originate from a specific location. A wide range of values of the maximum distance that a blood drop can travel have been reported from experiments, ranging from less than one meter to more than 10 meter. Here we formulate the problem in a fluid dynamics and data mining framework. The fluid dynamics is solved with Newton's classical equation of motion coupled with well-established models for the gravity and drag forces that bend the trajectories of drops. The parameters screened are the drop size, initial velocity and launch angle, as well as the height of a blood source and the ceiling height. Combining a wide range of values of those five parameter commended the performance of more than 5 million fluid dynamic simulations. Results of those simulations have been searched and mined for parameters directly measurable on a crime scene, such as the stain size and stain ellipticity. The results are presented in simple charts. Those charts are easy to use, and do not require any knowledge of fluid dynamics from the analyst. Disciplines Aerodynamics and Fluid Mechanics | Forensic Science and Technology | Mechanical Engineering Comments This is a manuscript of an article published as Attinger, Daniel. "Charts based on millions of fluid dynamics simulations provide a simple tool to estimate how far from its source a specific blood stain can be found."

show abstract

“…Los principales ataques a la infraestructura de red a nivel de conmutación son de suplantación de identidad, MAC-ARP (Address Resolution Protocol), ataques a Spanning Tree Protocol (STP), Vlan Hopping y Dynamic Host Configuration Protocol (DHCP) Starvation [11,12]. Mediante el análisis de tráfico se logra identificar los servicios que los mecanismos teóricos de prevención, detección y mitigación de las principales vulnerabilidades, aplicados la infraestructura de red de una organización [18].…”

Section: Introductionunclassified

Cybersecurity Policies for Network Switching Devices in Hospital Data Centers: A Case Study

Pesantez

Analuisa

Figueras

et al. 2022

espoch

View full text Add to dashboard Cite

Cybersecurity policies help ensure the operation of network communication devices used in hospital data centers, since administrators can easily implement mechanisms to mitigate attacks and vulnerabilities without affecting the operation of these devices. In this work, the ISO 27032 standard was selected to follow the four-phase guidelines: understanding the organization, risk analysis, action plan, and implementation, which allowed for proposing the necessary cybersecurity policies for the network infrastructure in a Huawei device. First, the vulnerability tests were carried out with the OPENVAS and Yersinia tools, establishing the probability of attacks like MAC-ARP, DHCP Starvation, STP attack, Vlan hopping, etc. Through the respective configurations and enabling functionalities, it was possible to mitigate a significant amount of 98% of the existing vulnerabilities in the initial state of the hospital network infrastructure. Keywords: Cybersecurity policies, ISO 27032, hospital network infrastructure, attack mitigation. Resumen Las políticas de ciberseguridad permiten asegurar el funcionamiento de los equipos de comunicación de red en una infraestructura tecnológica hospitalaria, ya que los administradores pueden implementar mecanismos de mitigación a ataques y vulnerabilidades, evitando afectar el funcionamiento de estos dispositivos. En este trabajo se tomó como referencia la norma ISO 27032 para seguir los lineamientos de cuatro fases: entendimiento de la organización, análisis de riegos, plan de acciones e implementación, que permitieron proponer las políticas de ciberseguridad necesarias para la infraestructura de red en equipos de marca Huawei. En la primera etapa se realizó las pruebas de vulnerabilidades con las herramientas OPENVAS y Yersinia, estableciendo la probabilidad de ataques tales como MAC-ARP, DHCP Starvation, ataque STP, Vlan hopping, entre otros. Mediante las respectivas configuraciones y habilitación de funcionalidades, se pudo mitigar una cantidad significativa del 98% de las vulnerabilidades existentes en el estado inicial de la infraestructura de red hospitalaria. Palabras Clave: Políticas de ciberseguridad, ISO 27032, Infraestructura de red hospitalaria, Mitigación de ataques.

show abstract

On the security of aeronautical datalink communications: Problems and solutions

Cited by 10 publications

References 6 publications

On Apache Log4j2 Exploitation in Aeronautical, Maritime, and Aerospace Communication

On Apache Log4j2 Exploitation in Aeronautical, Maritime, and Aerospace Communication

Charts based on millions of fluid dynamics simulations provide a simple tool to estimate how far from its source a specific blood stain can be found

Cybersecurity Policies for Network Switching Devices in Hospital Data Centers: A Case Study

Contact Info

Product

Resources

About