Abstract
Cyber-physical system security is a significant concern in the critical infrastructure. Strong interdependencies between cyber and physical components render cyber-physical systems highly susceptible to integrity attacks such as injecting malicious data and projecting fake sensor measurements. Traditional security models partition cyber-physical systems into just two domains – high and low. This absolute partitioning is not well suited to cyber-physical systems because they comprise multiple overlapping partitions. Information flow properties, which model how inputs to a system affect its outputs across security partitions, are important considerations in cyber-physical systems. Information flows support traceability analysis that helps detect vulnerabilities and anomalous sources, contributing to the implementation of mitigation measures.
This chapter describes an automated model with graph-based information flow traversal for identifying information flow paths in the Automatic Dependent Surveillance-Broadcast (ADS-B) system used in civilian aviation, and subsequently partitioning the flows into security domains. The results help identify ADS-B system vulnerabilities to failures and attacks, and determine potential mitigation measures.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Similar content being viewed by others
References
B. Ali, W. Ochieng, A. Majumdar, W. Schuster and T. Chiew, ADS-B system failure modes and models, The Journal of Navigation, vol. 67(6), pp. 995–1017, 2014
S. Amin, A. Cardenas and S. Sastry, Safe and secure networked control systems under denial-of-service attacks, in Hybrid Systems: Computation and Control, R. Majumdar and P. Tabuada (Eds.), Springer, Berlin Heidelberg, Germany, pp. 31–45, 2009
S. Chong, A. Myers, K. Vikram and L. Zheng, Jif: Reference Manual, Department of Computer Science, Cornell University, Ithaca, New York (www.cs.cornell.edu/jif/doc/jif-3.3.0/manual.html), 2009
J. Garson, Modal logic, in The Stanford Encyclopedia of Philosophy Archive, E. Zalta (Ed.), Metaphysics Research Laboratory, Center for the Study of Language and Information, Stanford University, Stanford, California (plato.stanford.edu/archives/fall2018/entries/logic-modal), 2018
G. Howser and B. McMillin, A multiple security domain model of a drive-by-wire system, Proceedings of the Thirty-Seventh Annual IEEE Computer Software and Applications Conference, pp. 369–374, 2013
G. Howser and B. McMillin, Using information flow methods to analyze the security of cyber-physical systems, IEEE Computer, vol. 50(4), pp. 17–26, 2017
A. Humayed, J. Lin, F. Li and B. Luo, Cyber-physical systems security – A survey, IEEE Internet of Things Journal, vol. 4(6), pp. 1802–1831, 2017
Y. Kim, J. Jo and S. Lee, ADS-B vulnerabilities and a security solution with a timestamp, IEEE Aerospace and Electronic Systems, vol. 32(11), pp. 52–61, 2017
Y. Liu, P. Ning and M. Reiter, False data injection attacks against state estimation in electric power grids, ACM Transactions on Information and System Security, vol. 14(1), article no. 13, 2011
M. Manesh and N. Kaabouch, Analysis of vulnerabilities, attacks, countermeasures and overall risk of the Automatic Dependent Surveillance-Broadcast (ADS-B) system, International Journal of Critical Infrastructure Protection, vol. 19, pp. 16–31, 2017
D. McCallie, Exploring Potential ADS-B Vulnerabilities in the FAA’s NextGen Air Transportation System, Graduate Research Project, Department of Electrical and Computer Engineering, Air Force Institute of Technology, Wright-Patterson Air Force Base, Ohio, 2011
D. McCallie, J. Butts and R. Mills, Security analysis of the ADS-B implementation in the next generation air transportation system, International Journal of Critical Infrastructure Protection, vol. 4(2), pp. 78–87, 2011
Y. Mo and B. Sinopoli, Secure control against replay attacks, Proceedings of the Forty-Seventh Annual Allerton Conference on Communications, Control and Computing, pp. 911–918, 2009
F. Pasqualetti, F. Dorfler and F. Bullo, Cyber-physical security via geometric control: Distributed monitoring and malicious attacks, Proceedings of the Fifty-First IEEE Conference on Decision and Control, pp. 3418–3425, 2012
F. Pottier and V. Simonet, Information flow inference for ML, Proceedings of the Twenty-Ninth ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages, pp. 319–330, 2002
A. Sabelfeld and A. Myers, Language-based information flow security, IEEE Journal on Selected Areas in Communications, vol. 21(1), pp. 5–19, 2003
V. Simonet, Flow Caml in a nutshell, Proceedings of the First Applied Semantics II Workshop, pp. 152–165, 2003
M. Strohmeier, M. Schafer, V. Lenders and I. Martinovic, Realities and challenges of NextGen air traffic management: The case of ADS-B, IEEE Communications, vol. 52(5), pp. 111–118, 2014
A. Teixeira, S. Amin, H. Sandberg, K. Johansson and S. Sastry, Cyber security analysis of state estimators in electric power systems, Proceedings of the Forty-Ninth IEEE Conference on Decision and Control, pp. 5991–5998, 2010
A. Thudimilla and B. McMillin, Multiple security domain nondeducibility air traffic surveillance systems, Proceedings of the Eighteenth IEEE International Symposium on High Assurance Systems Engineering, pp. 136–139, 2017
H. Yang, M. Yao, Z. Xu and B. Liu, LHCSAS: A lightweight and highly-compatible solution for ADS-B security, Proceedings of the IEEE Global Communications Conference, 2017
H. Yang, Q. Zhou, M. Yao, R. Lu, H. Li and X. Zhang, A practical and compatible cryptographic solution to ADS-B security, IEEE Internet of Things Journal, vol. 6(2), pp. 3322–3334, 2018
S. Zdancewic, Challenges for information flow security, Proceedings of the First International Workshop on Programming Language Interference and Dependence, 2004
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2020 IFIP International Federation for Information Processing
About this paper
Cite this paper
Thudimilla, A., McMillin, B. (2020). Cyber-Physical Security of Air Traffic Surveillance Systems. In: Staggs, J., Shenoi, S. (eds) Critical Infrastructure Protection XIV. ICCIP 2020. IFIP Advances in Information and Communication Technology, vol 596. Springer, Cham. https://doi.org/10.1007/978-3-030-62840-6_1
Download citation
DOI: https://doi.org/10.1007/978-3-030-62840-6_1
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-62839-0
Online ISBN: 978-3-030-62840-6
eBook Packages: Computer ScienceComputer Science (R0)
