Design of A Cyber Security Framework for ADS-B Based
Surveillance Systems Sahar Amin Tyler Clark Rennix Offutt Kate
Serenko
Slide 2
Agenda Context Analysis Stakeholder Analysis Problem Statement
& Needs Statement Mission Requirements Design Alternatives
Preliminary Simulation Design Project Management Department of
Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013 2
Slide 3
Context Analysis Increase in air transportation and air traffic
Need for surveillance systems to track and monitor flights
Implementation of NextGen by FAA 3 Department of Systems
Engineering and Operations Research Design of A Cyber Security
Framework for ADS-B Based Surveillance Systems SYST 490 - 2013
Slide 4
Context Analysis Increase in air transportation and air traffic
Need for surveillance systems to track and monitor flights
Implementation of NextGen by FAA 4 Department of Systems
Engineering and Operations Research Design of A Cyber Security
Framework for ADS-B Based Surveillance Systems SYST 490 - 2013
Slide 5
Number of People Flying Each Year in US 5 * Source: U.S.
Department of Transportation. Form 41 and 298C Department of
Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013 Forecast
Slide 6
United States Air Carriers Fleet 6 *Source: FAA Aerospace
Forecast: Fiscal Years 2012-2032 Department of Systems Engineering
and Operations Research Design of A Cyber Security Framework for
ADS-B Based Surveillance Systems SYST 490 - 2013 Forecast
Slide 7
US Airspace Congestion 7 Only ADS-B coverage Department of
Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013 Radar and ADS-B coverage
Slide 8
Context Analysis Increase in air transportation and air traffic
Need for surveillance systems to track and monitor flights
Implementation of NextGen by FAA 8 Department of Systems
Engineering and Operations Research Design of A Cyber Security
Framework for ADS-B Based Surveillance Systems SYST 490 - 2013
Slide 9
Surveillance What: Surveillance is close observation and
monitoring of changing information. Why: Surveillance in air
transportation is needed to track and monitor flights to maximize
efficiency and safety in airspace. 9 Department of Systems
Engineering and Operations Research Design of A Cyber Security
Framework for ADS-B Based Surveillance Systems SYST 490 - 2013
Slide 10
Primary Surveillance Primary Surveillance Radar Created to
provide continuous surveillance of air traffic disposition Uses a
rotating antenna to transmit electromagnetic waves that reflect
from aircraft surface up to 60 miles from radar Problems: could
only provide objects location; does not identify object type; does
not provide coverage over oceanic regions 10 Department of Systems
Engineering and Operations Research Design of A Cyber Security
Framework for ADS-B Based Surveillance Systems SYST 490 - 2013
Slide 11
Secondary Surveillance Radar Secondary Surveillance Radar
Initially developed as a wartime radar system, called
Identification Friend or Foe (IFF) Attached to primary radar;
relies on aircraft transponders to transmit and receive aircraft
data Problems: expensive; does not provide surveillance coverage
over oceanic regions 11 Department of Systems Engineering and
Operations Research Design of A Cyber Security Framework for ADS-B
Based Surveillance Systems SYST 490 - 2013
Slide 12
Context Analysis Increase in air transportation and air traffic
Need for surveillance systems to track and monitor flights
Implementation of NextGen by FAA 12 Department of Systems
Engineering and Operations Research Design of A Cyber Security
Framework for ADS-B Based Surveillance Systems SYST 490 - 2013
Slide 13
Next Generation (Next Gen) Next Generation (Next Gen) New
airspace for US to be implemented between 2012-2025 New framework
for flight tracking and monitoring Ground/radar-based tracking
system satellite-based tracking system Major Component of NextGen:
Automatic Dependent Surveillance-Broadcast (ADS-B) 13 Department of
Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013
Slide 14
Automatic Dependent Surveillance- Broadcast (ADS-B) A utomatic
does not require interrogation D ependent depends on location
information from GPS S urveillance provides situational awareness
for ADS-B equipped aircraft and ARTCC B roadcast constant
broadcasting of flight navigation information 14 Department of
Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013
Slide 15
How ADS-B Works 15 Department of Systems Engineering and
Operations Research Design of A Cyber Security Framework for ADS-B
Based Surveillance Systems SYST 490 - 2013
Slide 16
ADS-B Advantages Increased situational awareness for both
pilots and ARTCC Provides surveillance coverage in areas without
radar coverage Less expensive than traditional radar Information is
broadcasted in real time Can decrease separation distance between
aircraft 16 Department of Systems Engineering and Operations
Research Design of A Cyber Security Framework for ADS-B Based
Surveillance Systems SYST 490 - 2013
Slide 17
Decreased Separation Distance 17 Without ADS-B Coverage With
ADS-B Coverage 20 NM 5 NM Department of Systems Engineering and
Operations Research Design of A Cyber Security Framework for ADS-B
Based Surveillance Systems SYST 490 - 2013 One In, One Out
Separation distance decreased to 5 NM
Slide 18
ADS-B Messages 18 DF: Downlink Format CA: Capability AA:
Individual Aircraft Address ADS-B Data: Aircraft type, Altitude,
Latitude, Longitude, Airborne Velocity PI: Parity Information
(Error Detection Code) Department of Systems Engineering and
Operations Research Design of A Cyber Security Framework for ADS-B
Based Surveillance Systems SYST 490 - 2013
Slide 19
Cyber Security in Aviation Aviation has gone Cyber ADS-B
transmits digital signals to ground servers and nearby aircraft New
threat vector in aviation Signals are unencrypted signals can be
spoofed or jammed by adversaries 19 Department of Systems
Engineering and Operations Research Design of A Cyber Security
Framework for ADS-B Based Surveillance Systems SYST 490 - 2013
Slide 20
Threats 20 1090 MHz Spoofing False Source False Content Jamming
Ghost Plane Flooding Ground Station Flooding Department of Systems
Engineering and Operations Research Design of A Cyber Security
Framework for ADS-B Based Surveillance Systems SYST 490 - 2013
Slide 21
Scope Definition Oceanic area between two land masses covered
by ARTCC No radar coverage Only ADS-B surveillance Commercial
aviation en route flights Spoofing attacks only - concentrating on
prevention of attacks Jamming is out of our scope because it cannot
be prevented 21 Department of Systems Engineering and Operations
Research Design of A Cyber Security Framework for ADS-B Based
Surveillance Systems SYST 490 - 2013
Slide 22
Agenda Context Analysis Stakeholder Analysis Problem Statement
& Needs Statement Mission Requirements Design Alternatives
Preliminary Simulation Design Project Management 22 Department of
Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013
Slide 23
Stakeholder Analysis FAAARTCC Airline Companies Crew/Pilots
ADS-B Manufacturers CongressPassengers Labor Unions 23 Department
of Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013
Slide 24
Primary Stakeholders FAA (Federal Aviation Administration)
Objective: provide the safest, most efficient aerospace system in
the world ARTCC (Air Route Traffic Control Center) Objective:
maintain safety and efficiency of flights in specified volume of
airspace at high altitudes Airline Companies Objective: provide a
safe and up-to-date aircraft; maximize profits Crew/Pilots
Objective: Provide safe and enjoyable flying experience for their
customers 24 Department of Systems Engineering and Operations
Research Design of A Cyber Security Framework for ADS-B Based
Surveillance Systems SYST 490 - 2013
Slide 25
Secondary Stakeholders ADS-B Manufacturers Objective: Provide
aircraft with satellite-based surveillance system that allows for
more accurate and real-time transfer of flight data Congress
Objective: Control spending across government and government
agencies Passengers Objective: Arrive at destination safely and on
time Labor Unions Objective: Protects rights of workers, strive to
secure better working conditions for members, increase workers
income 25 Department of Systems Engineering and Operations Research
Design of A Cyber Security Framework for ADS-B Based Surveillance
Systems SYST 490 - 2013
Slide 26
Stakeholder Tensions FAA vs. Congress Budget for proposal has
to be approved by Congress Tension if Congress disagrees with
proposed FAA budget FAA vs. Airline Companies Airline companies
must follow and meet requirements set by FAA Tension if FAA wants
airplane companies to pay for installation of ADS-B systems in
aircraft FAA vs. ARTCC ARTCC employees must follow all rules and
regulations set by FAA Tension if proposed rules increase workload
and employees are required to learn how to use new equipment 26
Department of Systems Engineering and Operations Research Design of
A Cyber Security Framework for ADS-B Based Surveillance Systems
SYST 490 - 2013
Slide 27
Agenda Context Analysis Stakeholder Analysis Problem Statement
& Needs Statement Mission Requirements Design Alternatives
Preliminary Simulation Design Project Management 27 Department of
Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013
Slide 28
Gap Analysis 28 * Source: FAA Aerospace Forecast Gap Department
of Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013
Slide 29
Problem Statement 29 Unencrypted communication between aircraft
and ARTCC ADS-B signals can be spoofed Unreliable/untrustworthy
signals Location of aircraft cannot be determined with 100%
certainty Reduced situational awareness, threatened flight safety,
reduced airspace capacity Decreased airspace efficiency Department
of Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013
Slide 30
Win-Win Analysis 30 Solution is cost effective Implementation
occurs by 2020 ADS-B signals are secure and reliable Separation
distance between aircraft is decreased Win-Win Analysis Department
of Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013
Slide 31
Needs Statement There is a need for a system that prevents
spoofing attacks on ADS-B signals sent from aircraft to ARTCC and
between aircrafts. 31 Department of Systems Engineering and
Operations Research Design of A Cyber Security Framework for ADS-B
Based Surveillance Systems SYST 490 - 2013
Slide 32
Agenda Context Analysis Stakeholder Analysis Problem Statement
& Needs Statement Mission Requirements Design Alternatives
Preliminary Simulation Design Project Management 32 Department of
Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013
Slide 33
Mission Requirements 1.0 The system shall increase the capacity
of airspace by 32% in the areas without radar coverage. 1.1 The
system shall decrease the separation distance between aircraft to 3
nautical miles. 1.1.1 ADS-B messages shall be resistant to spoofing
attacks Y% of times. 1.1.2 A spoofing attack shall not overload the
capacity of the airspace. 2.0 The system shall maintain or decrease
accident rate of 0.291* accidents per 100,000 departures. 3.0 The
system shall be ready to be implemented by 2020. *Source: Bureau of
Transportation Statistics Department of Systems Engineering and
Operations Research Design of A Cyber Security Framework for ADS-B
Based Surveillance Systems SYST 490 - 2013
Slide 34
Agenda Context Analysis Stakeholder Analysis Problem Statement
& Needs Statement Mission Requirements Design Alternatives
Preliminary Simulation Design Project Management 34 Department of
Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013
Slide 35
Design Alternatives 35 1. Hashing 2. Symmetric Encryption 3.
Asymmetric Encryption 4. Maintain Status Quo Department of Systems
Engineering and Operations Research Design of A Cyber Security
Framework for ADS-B Based Surveillance Systems SYST 490 - 2013
Slide 36
1. Hashing What Is It? Goal Confirming the source of a message
Digital Signature/Hash created by sender aircraft Attached at the
end of the message Verified by receiver - ARTCC Fusion System 36
Department of Systems Engineering and Operations Research Design of
A Cyber Security Framework for ADS-B Based Surveillance Systems
SYST 490 - 2013
Slide 37
Hashing Demo Hash attaching at the end of the message Design of
Cyber-Security Prevention System for ADS-B Based Surveillance
System Design of Cyber-Security Prevention System for ADS-B Based
Surveillance SystemBc89236dec6d39f8 SHA-2 Algorithm Original Text
Text with Hash Department of Systems Engineering and Operations
Research Design of A Cyber Security Framework for ADS-B Based
Surveillance Systems SYST 490 - 2013
Slide 38
2. Symmetric Encryption What Is It? Encryption converting data
into code Symmetric each entity has one private key Message
encrypted with key has to be decrypted with the same key Department
of Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013
Slide 39
3. Asymmetric Encryption What Is It? Two keys Public and
Private Longer keys stronger security 39 Message from A Encrypt
Private A Encrypt Public B Message in Public Airspace Decrypt
Private B Decrypt Public A Message received at B Department of
Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013
Slide 40
Encryption Demo 40 Design of Cyber- Security Prevention System
for ADS-B Based Surveillance System fJ9zVVvyyPFFyzhdyaeuV68Ayz
+gBHlVoFgzojMbIdZ8c2pOLtnd L1wzL0BjONpNP0tZasspRPoa
NPdcNDT9fpQNDbvQSWOURC fWQJWFKQI= Key: CyberSecurity Department of
Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013 Original Text Encrypted Text Encrypt Decrypt
Slide 41
Design Alternatives Evaluation 41 Department of Systems
Engineering and Operations Research Design of A Cyber Security
Framework for ADS-B Based Surveillance Systems SYST 490 - 2013
Design Alternative Attack Prevention Ease of Implementation
Security Strength TechnologyCost/Air plane Additional Requirements
1. Hashing SpoofingEasyTBDAvailableLow More bits 2. Symmetric
Encryption SpoofingModerateTBDAvailableLow Key Exchange 3.
Asymmetric Encryption SpoofingModerateTBDAvailableLow Access to
public keys 4. Maintain Status Quo NothingEasy Not secure None
Slide 42
Value Hierarchy Security WS Execution Time WE Minimum
Separation Distance Achieved WD Ease of Implementation WI 42
Department of Systems Engineering and Operations Research Design of
A Cyber Security Framework for ADS-B Based Surveillance Systems
SYST 490 - 2013
Slide 43
Agenda Context Analysis Stakeholder Analysis Problem Statement
& Needs Statement Mission Requirements Design Alternatives
Preliminary Simulation Design Project Management 43 Department of
Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013
Slide 44
Design of Experiment Goal show how securing ADS-B signals can
increase airspace capacity Verify the ability of the system to
prevent cyber attacks and maintain current safety level under
diverse/dangerous conditions. Simulation Design: 1. Signal
Simulation 2. Airspace Capacity Simulation Department of Systems
Engineering and Operations Research Design of A Cyber Security
Framework for ADS-B Based Surveillance Systems SYST 490 - 2013
Slide 45
Simulation Design 45 ADS-B Messages Design Alternatives Spoofed
Messages Signal Simulation Separation Distance Departure Streams
Arrival Capacities Speed of Aircraft Airspace capacity Collision
Rate Airspace Capacity Simulation Reliability of Design
Alternatives Department of Systems Engineering and Operations
Research Design of A Cyber Security Framework for ADS-B Based
Surveillance Systems SYST 490 - 2013 1 2
Slide 46
1. Signal Simulation Purpose of simulation: evaluate
reliability of design alternatives Simulating signals with and
without signal security design alternatives Output (reliability of
signal security methods) of signal simulation will be used as input
to airspace capacity simulation Signal simulation will be programed
in Matlab 46 Department of Systems Engineering and Operations
Research Design of A Cyber Security Framework for ADS-B Based
Surveillance Systems SYST 490 - 2013
Slide 47
2. Airspace Capacity Simulation Purpose of simulation: verify
ability of system to maximize airspace capacity and maintain safety
levels Find the optimal separation distance for flights to operate
in the airspace allows for increase in airspace capacity Simulation
will abide by FAA regulations En route flights over oceanic area
relying solely on ADS-B data Flight paths modeled after popular
Gulf of Mexico flights Airspace capacity will be modeled in Arena
47 Department of Systems Engineering and Operations Research Design
of A Cyber Security Framework for ADS-B Based Surveillance Systems
SYST 490 - 2013
Slide 48
Airspace Simulation (Continued) 48 Department of Systems
Engineering and Operations Research Design of A Cyber Security
Framework for ADS-B Based Surveillance Systems SYST 490 - 2013
Slide 49
Arena Simulation Model 49 Department of Systems Engineering and
Operations Research Design of A Cyber Security Framework for ADS-B
Based Surveillance Systems SYST 490 - 2013
Slide 50
Single Cell Decision Planned/preferred path is in red If
capacity of cell 1 (Level 0 Preference) is full: Level 1
Preference: Cells 2 or 4 (blue) Shortest path to 1 (2 iterations)
Level 2 Preference: Cells 3,6 or 7 (green) 3 iterations Level 3
Preference: Cell 9 (orange) 4 iterations Will choose the highest
ranked level with free capacity 50 Department of Systems
Engineering and Operations Research Design of A Cyber Security
Framework for ADS-B Based Surveillance Systems SYST 490 - 2013
Slide 51
Control Scenario 51 Department of Systems Engineering and
Operations Research Design of A Cyber Security Framework for ADS-B
Based Surveillance Systems SYST 490 - 2013
Slide 52
Attack Scenario 52 Department of Systems Engineering and
Operations Research Design of A Cyber Security Framework for ADS-B
Based Surveillance Systems SYST 490 - 2013
Slide 53
Attack Scenario (Continued) 53 Department of Systems
Engineering and Operations Research Design of A Cyber Security
Framework for ADS-B Based Surveillance Systems SYST 490 - 2013
Slide 54
Formulas for Simulation 54 Department of Systems Engineering
and Operations Research Design of A Cyber Security Framework for
ADS-B Based Surveillance Systems SYST 490 - 2013
Slide 55
Expected Results We expect that asymmetric encryption will be
the best design alternative Easy to implement Technology is already
available Inexpensive to implement Most secure design alternative
No security issues related to key exchange Quick processing time 55
Department of Systems Engineering and Operations Research Design of
A Cyber Security Framework for ADS-B Based Surveillance Systems
SYST 490 - 2013
Slide 56
Agenda Context Analysis Stakeholder Analysis Problem Statement
& Needs Statement Mission Requirements Design Alternatives
Preliminary Simulation Design Project Management 56 Department of
Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013
Slide 57
Department of Systems Engineering and Operations Research
Design of A Cyber Security Framework for ADS-B Based Surveillance
Systems SYST 490 - 2013 Work Breakdown Structure 57
Slide 58
Work Breakdown Structure (Continued) 1.0 Management Assigning
tasks and deadlines, contacting sponsors, organization, revision,
etc 2.0 Research & Data Primary and secondary radar, ADS-B,
meetings with sponsors, data collection, etc 3.0 Conops &
Requirements Context analysis, stakeholder analysis, problem and
needs statement, requirements 4.0 Simulation/Analysis Simulation
design, implementation of simulation, tradeoff analysis of
alternatives, testing, results, conclusion 5.0 Documentation
Initial deliverables, conference papers, poster 6.0 Reports &
Presentations Prelim project plan and presentation, final project
plan and presentation, final report, faculty presentations, etc 58
Department of Systems Engineering and Operations Research Design of
A Cyber Security Framework for ADS-B Based Surveillance Systems
SYST 490 - 2013
Slide 59
Project Plan 59 Department of Systems Engineering and
Operations Research Design of A Cyber Security Framework for ADS-B
Based Surveillance Systems SYST 490 - 2013
Slide 60
Budget Individual hourly rate: $45/hour Overhead costs:
$54/hour Total billing rate per person: $99/hour Estimated Time to
Be Spent on Project: 1,350 Hours Total Project Cost: $133,650 60
Department of Systems Engineering and Operations Research Design of
A Cyber Security Framework for ADS-B Based Surveillance Systems
SYST 490 - 2013
Slide 61
Earned Value, Actual Cost, Predicted Value 61 Department of
Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013
Slide 62
Earned Value, Actual Cost, Predicted Value 62 Department of
Systems Engineering and Operations Research Design of A Cyber
Security Framework for ADS-B Based Surveillance Systems SYST 490 -
2013
Slide 63
Cost Performance Index vs. Schedule Performance Index 63
Department of Systems Engineering and Operations Research Design of
A Cyber Security Framework for ADS-B Based Surveillance Systems
SYST 490 - 2013
Slide 64
Department of Systems Engineering and Operations Research
Design of A Cyber Security Framework for ADS-B Based Surveillance
Systems SYST 490 - 2013 Project Risks WBS TaskRisksMitigation
Techniques 1.0 Management Tasks not assigned with correct deadlines
Deliverables not completed by internal team deadlines Sponsors do
not reply after being contacted Assign internal team deadlines
several days before official deadlines Continue following up with
sponsors 2.0 Research Majority of research is not completed by the
middle of the Fall semester Assign research tasks to each team
member so that research findings can be combined 3.0 Conops &
Requirements Context Analysis, Stakeholder Analysis, Problem
Statement, Needs Statement, and Requirements are not complete by
Final Project Plan due date Make sure that each of these components
is about 60% complete by mid-October 64
Slide 65
Department of Systems Engineering and Operations Research
Design of A Cyber Security Framework for ADS-B Based Surveillance
Systems SYST 490 - 2013 Project Risks (Continued) WBS
TaskRisksMitigation Techniques 4.0 Simulation Not enough data for
simulation Data is not collected time for simulation Simulation is
too complex to be modeled within time frame of this project Begin
data collection right after Prelim Project Plan due date Resize
scope early in semester; seek guidance from sponsors 5.0
Documentation Documentation deliverables are not completed by
deadline Set internal team deadlines for at least five days before
official deadline 6.0 Reports & Presentations Reports or
presentations are not completed by deadline Set internal team
deadlines for at least five days before official deadline 65
Slide 66
Questions? 66 Department of Systems Engineering and Operations
Research Design of A Cyber Security Framework for ADS-B Based
Surveillance Systems SYST 490 - 2013