design of a cyber security framework for ads-b based surveillance systems sahar amin tyler clark...

Design of A Cyber Security Framework for ADS-B Based Surveillance Systems Sahar Amin Tyler Clark Rennix Offutt Kate Serenko

Agenda Context Analysis Stakeholder Analysis Problem Statement & Needs Statement Mission Requirements Design Alternatives Preliminary Simulation Design Project Management Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013 2

Context Analysis Increase in air transportation and air traffic Need for surveillance systems to track and monitor flights Implementation of NextGen by FAA 3 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Number of People Flying Each Year in US 5 * Source: U.S. Department of Transportation. Form 41 and 298C Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013 Forecast

United States Air Carriers Fleet 6 *Source: FAA Aerospace Forecast: Fiscal Years 2012-2032 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013 Forecast

US Airspace Congestion 7 Only ADS-B coverage Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013 Radar and ADS-B coverage

Surveillance What: Surveillance is close observation and monitoring of changing information. Why: Surveillance in air transportation is needed to track and monitor flights to maximize efficiency and safety in airspace. 9 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Primary Surveillance Primary Surveillance Radar Created to provide continuous surveillance of air traffic disposition Uses a rotating antenna to transmit electromagnetic waves that reflect from aircraft surface up to 60 miles from radar Problems: could only provide objects location; does not identify object type; does not provide coverage over oceanic regions 10 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Secondary Surveillance Radar Secondary Surveillance Radar Initially developed as a wartime radar system, called Identification Friend or Foe (IFF) Attached to primary radar; relies on aircraft transponders to transmit and receive aircraft data Problems: expensive; does not provide surveillance coverage over oceanic regions 11 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Next Generation (Next Gen) Next Generation (Next Gen) New airspace for US to be implemented between 2012-2025 New framework for flight tracking and monitoring Ground/radar-based tracking system satellite-based tracking system Major Component of NextGen: Automatic Dependent Surveillance-Broadcast (ADS-B) 13 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Automatic Dependent Surveillance- Broadcast (ADS-B) A utomatic does not require interrogation D ependent depends on location information from GPS S urveillance provides situational awareness for ADS-B equipped aircraft and ARTCC B roadcast constant broadcasting of flight navigation information 14 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

How ADS-B Works 15 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

ADS-B Advantages Increased situational awareness for both pilots and ARTCC Provides surveillance coverage in areas without radar coverage Less expensive than traditional radar Information is broadcasted in real time Can decrease separation distance between aircraft 16 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Decreased Separation Distance 17 Without ADS-B Coverage With ADS-B Coverage 20 NM 5 NM Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013 One In, One Out Separation distance decreased to 5 NM

ADS-B Messages 18 DF: Downlink Format CA: Capability AA: Individual Aircraft Address ADS-B Data: Aircraft type, Altitude, Latitude, Longitude, Airborne Velocity PI: Parity Information (Error Detection Code) Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Cyber Security in Aviation Aviation has gone Cyber ADS-B transmits digital signals to ground servers and nearby aircraft New threat vector in aviation Signals are unencrypted signals can be spoofed or jammed by adversaries 19 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Threats 20 1090 MHz Spoofing False Source False Content Jamming Ghost Plane Flooding Ground Station Flooding Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Scope Definition Oceanic area between two land masses covered by ARTCC No radar coverage Only ADS-B surveillance Commercial aviation en route flights Spoofing attacks only - concentrating on prevention of attacks Jamming is out of our scope because it cannot be prevented 21 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Agenda Context Analysis Stakeholder Analysis Problem Statement & Needs Statement Mission Requirements Design Alternatives Preliminary Simulation Design Project Management 22 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Stakeholder Analysis FAAARTCC Airline Companies Crew/Pilots ADS-B Manufacturers CongressPassengers Labor Unions 23 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Primary Stakeholders FAA (Federal Aviation Administration) Objective: provide the safest, most efficient aerospace system in the world ARTCC (Air Route Traffic Control Center) Objective: maintain safety and efficiency of flights in specified volume of airspace at high altitudes Airline Companies Objective: provide a safe and up-to-date aircraft; maximize profits Crew/Pilots Objective: Provide safe and enjoyable flying experience for their customers 24 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Secondary Stakeholders ADS-B Manufacturers Objective: Provide aircraft with satellite-based surveillance system that allows for more accurate and real-time transfer of flight data Congress Objective: Control spending across government and government agencies Passengers Objective: Arrive at destination safely and on time Labor Unions Objective: Protects rights of workers, strive to secure better working conditions for members, increase workers income 25 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Stakeholder Tensions FAA vs. Congress Budget for proposal has to be approved by Congress Tension if Congress disagrees with proposed FAA budget FAA vs. Airline Companies Airline companies must follow and meet requirements set by FAA Tension if FAA wants airplane companies to pay for installation of ADS-B systems in aircraft FAA vs. ARTCC ARTCC employees must follow all rules and regulations set by FAA Tension if proposed rules increase workload and employees are required to learn how to use new equipment 26 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Gap Analysis 28 * Source: FAA Aerospace Forecast Gap Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Problem Statement 29 Unencrypted communication between aircraft and ARTCC ADS-B signals can be spoofed Unreliable/untrustworthy signals Location of aircraft cannot be determined with 100% certainty Reduced situational awareness, threatened flight safety, reduced airspace capacity Decreased airspace efficiency Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Win-Win Analysis 30 Solution is cost effective Implementation occurs by 2020 ADS-B signals are secure and reliable Separation distance between aircraft is decreased Win-Win Analysis Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Needs Statement There is a need for a system that prevents spoofing attacks on ADS-B signals sent from aircraft to ARTCC and between aircrafts. 31 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Mission Requirements 1.0 The system shall increase the capacity of airspace by 32% in the areas without radar coverage. 1.1 The system shall decrease the separation distance between aircraft to 3 nautical miles. 1.1.1 ADS-B messages shall be resistant to spoofing attacks Y% of times. 1.1.2 A spoofing attack shall not overload the capacity of the airspace. 2.0 The system shall maintain or decrease accident rate of 0.291* accidents per 100,000 departures. 3.0 The system shall be ready to be implemented by 2020. *Source: Bureau of Transportation Statistics Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Design Alternatives 35 1. Hashing 2. Symmetric Encryption 3. Asymmetric Encryption 4. Maintain Status Quo Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

1. Hashing What Is It? Goal Confirming the source of a message Digital Signature/Hash created by sender aircraft Attached at the end of the message Verified by receiver - ARTCC Fusion System 36 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Hashing Demo Hash attaching at the end of the message Design of Cyber-Security Prevention System for ADS-B Based Surveillance System Design of Cyber-Security Prevention System for ADS-B Based Surveillance SystemBc89236dec6d39f8 SHA-2 Algorithm Original Text Text with Hash Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

2. Symmetric Encryption What Is It? Encryption converting data into code Symmetric each entity has one private key Message encrypted with key has to be decrypted with the same key Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

3. Asymmetric Encryption What Is It? Two keys Public and Private Longer keys stronger security 39 Message from A Encrypt Private A Encrypt Public B Message in Public Airspace Decrypt Private B Decrypt Public A Message received at B Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Encryption Demo 40 Design of Cyber- Security Prevention System for ADS-B Based Surveillance System fJ9zVVvyyPFFyzhdyaeuV68Ayz +gBHlVoFgzojMbIdZ8c2pOLtnd L1wzL0BjONpNP0tZasspRPoa NPdcNDT9fpQNDbvQSWOURC fWQJWFKQI= Key: CyberSecurity Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013 Original Text Encrypted Text Encrypt Decrypt

Design Alternatives Evaluation 41 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013 Design Alternative Attack Prevention Ease of Implementation Security Strength TechnologyCost/Air plane Additional Requirements 1. Hashing SpoofingEasyTBDAvailableLow More bits 2. Symmetric Encryption SpoofingModerateTBDAvailableLow Key Exchange 3. Asymmetric Encryption SpoofingModerateTBDAvailableLow Access to public keys 4. Maintain Status Quo NothingEasy Not secure None

Value Hierarchy Security WS Execution Time WE Minimum Separation Distance Achieved WD Ease of Implementation WI 42 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Design of Experiment Goal show how securing ADS-B signals can increase airspace capacity Verify the ability of the system to prevent cyber attacks and maintain current safety level under diverse/dangerous conditions. Simulation Design: 1. Signal Simulation 2. Airspace Capacity Simulation Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Simulation Design 45 ADS-B Messages Design Alternatives Spoofed Messages Signal Simulation Separation Distance Departure Streams Arrival Capacities Speed of Aircraft Airspace capacity Collision Rate Airspace Capacity Simulation Reliability of Design Alternatives Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013 1 2

1. Signal Simulation Purpose of simulation: evaluate reliability of design alternatives Simulating signals with and without signal security design alternatives Output (reliability of signal security methods) of signal simulation will be used as input to airspace capacity simulation Signal simulation will be programed in Matlab 46 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

2. Airspace Capacity Simulation Purpose of simulation: verify ability of system to maximize airspace capacity and maintain safety levels Find the optimal separation distance for flights to operate in the airspace allows for increase in airspace capacity Simulation will abide by FAA regulations En route flights over oceanic area relying solely on ADS-B data Flight paths modeled after popular Gulf of Mexico flights Airspace capacity will be modeled in Arena 47 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Airspace Simulation (Continued) 48 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Arena Simulation Model 49 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Single Cell Decision Planned/preferred path is in red If capacity of cell 1 (Level 0 Preference) is full: Level 1 Preference: Cells 2 or 4 (blue) Shortest path to 1 (2 iterations) Level 2 Preference: Cells 3,6 or 7 (green) 3 iterations Level 3 Preference: Cell 9 (orange) 4 iterations Will choose the highest ranked level with free capacity 50 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Control Scenario 51 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Attack Scenario 52 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Attack Scenario (Continued) 53 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Formulas for Simulation 54 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Expected Results We expect that asymmetric encryption will be the best design alternative Easy to implement Technology is already available Inexpensive to implement Most secure design alternative No security issues related to key exchange Quick processing time 55 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013 Work Breakdown Structure 57

Work Breakdown Structure (Continued) 1.0 Management Assigning tasks and deadlines, contacting sponsors, organization, revision, etc 2.0 Research & Data Primary and secondary radar, ADS-B, meetings with sponsors, data collection, etc 3.0 Conops & Requirements Context analysis, stakeholder analysis, problem and needs statement, requirements 4.0 Simulation/Analysis Simulation design, implementation of simulation, tradeoff analysis of alternatives, testing, results, conclusion 5.0 Documentation Initial deliverables, conference papers, poster 6.0 Reports & Presentations Prelim project plan and presentation, final project plan and presentation, final report, faculty presentations, etc 58 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Project Plan 59 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Budget Individual hourly rate: $45/hour Overhead costs: $54/hour Total billing rate per person: $99/hour Estimated Time to Be Spent on Project: 1,350 Hours Total Project Cost: $133,650 60 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Earned Value, Actual Cost, Predicted Value 61 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Earned Value, Actual Cost, Predicted Value 62 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Cost Performance Index vs. Schedule Performance Index 63 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013 Project Risks WBS TaskRisksMitigation Techniques 1.0 Management Tasks not assigned with correct deadlines Deliverables not completed by internal team deadlines Sponsors do not reply after being contacted Assign internal team deadlines several days before official deadlines Continue following up with sponsors 2.0 Research Majority of research is not completed by the middle of the Fall semester Assign research tasks to each team member so that research findings can be combined 3.0 Conops & Requirements Context Analysis, Stakeholder Analysis, Problem Statement, Needs Statement, and Requirements are not complete by Final Project Plan due date Make sure that each of these components is about 60% complete by mid-October 64

Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013 Project Risks (Continued) WBS TaskRisksMitigation Techniques 4.0 Simulation Not enough data for simulation Data is not collected time for simulation Simulation is too complex to be modeled within time frame of this project Begin data collection right after Prelim Project Plan due date Resize scope early in semester; seek guidance from sponsors 5.0 Documentation Documentation deliverables are not completed by deadline Set internal team deadlines for at least five days before official deadline 6.0 Reports & Presentations Reports or presentations are not completed by deadline Set internal team deadlines for at least five days before official deadline 65

Questions? 66 Department of Systems Engineering and Operations Research Design of A Cyber Security Framework for ADS-B Based Surveillance Systems SYST 490 - 2013

design of a cyber security framework for ads-b based surveillance systems sahar amin tyler clark...

Documents

surveillance systems

operations research

cyber security framework

department of transportation

air transportation

forecast slide

air traffic need

context analysis increase