JP6783587B2 - 軽量でサイバーセキュリティの高い双方向航空機地上間データ通信システム(acars)伝送 - Google Patents
軽量でサイバーセキュリティの高い双方向航空機地上間データ通信システム(acars)伝送 Download PDFInfo
- Publication number
- JP6783587B2 JP6783587B2 JP2016163559A JP2016163559A JP6783587B2 JP 6783587 B2 JP6783587 B2 JP 6783587B2 JP 2016163559 A JP2016163559 A JP 2016163559A JP 2016163559 A JP2016163559 A JP 2016163559A JP 6783587 B2 JP6783587 B2 JP 6783587B2
- Authority
- JP
- Japan
- Prior art keywords
- message
- aircraft
- computer
- parameter values
- ciphertext
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0866—Generation of secret information including derivation or calculation of cryptographic keys or passwords involving user or device identifiers, e.g. serial number, physical or biometrical information, DNA, hand-signature or measurable physical characteristics
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
-
- G—PHYSICS
- G08—SIGNALLING
- G08G—TRAFFIC CONTROL SYSTEMS
- G08G5/00—Traffic control systems for aircraft, e.g. air-traffic control [ATC]
- G08G5/0004—Transmission of traffic-related information to or from an aircraft
- G08G5/0013—Transmission of traffic-related information to or from an aircraft with a ground station
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0478—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload applying multiple layers of encryption, e.g. nested tunnels or encrypting the content with a first key and then with at least a second key
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
- H04L63/068—Network architectures or network communication protocols for network security for supporting key management in a packet data network using time-dependent keys, e.g. periodically changing keys
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/06—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
- H04L9/0618—Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0819—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0872—Generation of secret information including derivation or calculation of cryptographic keys or passwords using geo-location information, e.g. location data, time, relative position or proximity to other entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/10—Integrity
- H04W12/106—Packet or message integrity
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/84—Vehicles
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Aviation & Aerospace Engineering (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Mobile Radio Communication Systems (AREA)
Description
複数の飛行パラメータ値から第2の暗号化キーを生成し、更に第2の暗号化キーを使用して第1の暗号文を暗号化して第2の暗号文を作成することができる。コンピュータ可読媒体はコンピュータで解釈可能な命令を更に含み、これが少なくとも1つの電子プロセッサによって実行されると、少なくとも1つの電子プロセッサは、暗号文を復号化して平文を取得することができる。暗号化は、排他的論理和“XOR”ロジックを第1の暗号化キー及び平文に適用することを含みうる。
Claims (15)
- データを暗号化する方法であって、
航空機(502)の複数の飛行パラメータの複数の飛行パラメータ値(204,208,210,214,216)を追跡すること(308)、
前記複数の飛行パラメータ値(204,208,210,214,216)から第1の暗号化キー(124)を生成すること(309)、
前記第1の暗号化キー(124)を使用して平文(102)を暗号化(306)して、第1の暗号文(120)を生成すること、及び
前記第1の暗号文(120)を含むメッセージ(102)を送信側(116)から受信側(108)へ送信すること(312)
を含む方法。 - 前記送信側(116)は、少なくとも一つの地上局(506)を備え、前記受信側は前記航空機(502)を備え、
前記送信すること(312)は無線送信を含み、
第1の列線交換ユニット“LRU”(104,106,108)を含み、前記受信側は第2のLRU(104,106,108)を含む、請求項1に記載の方法。 - 前記追跡すること(308)は、メッセージ中のタイムスタンプによって示された時刻に前記飛行パラメータ値(204,208,210,214,216)の少なくとも一部を追跡すること(308)を含む、請求項1に記載の方法。
- 前記飛行パラメータ値は、少なくとも1つの航空機地上間データ通信システム“ACARS”メッセージからのデータ(204,208,210,214,216)から成る、請求項1に記載の方法。
- 前記生成すること(309)は、メッセージの複数のフィールド内の値(204,208,210,214,216)から複数の最下位ビットを抽出することを含む、請求項1に記載の方法。
- 地上局(506)と前記航空機(502)の双方に対して、利用可能な複数の情報オプションから前記飛行パラメータを選択すること、及び
前記暗号文(102)を復号化(408)して前記平文(102)を取得すること
のうちの少なくとも1つを更に含む、請求項1に記載の方法。 - 前記飛行パラメータ値(204,208,210,214,216)から第2の暗号化キー(126)を生成すること、及び、
前記第2の暗号化キー(126)を使用して前記第1の暗号文を更に暗号化(306)して、第2の暗号文(102)を作成すること
を更に含む、請求項1に記載の方法。 - 前記暗号化すること(306)は、排他的論理和“XOR”ロジックを前記第1の暗号化キー(124)と前記平文(122)に適用することを含む、請求項1に記載の方法。
- 少なくとも1つの電子プロセッサ(510,514)に、データを暗号化する方法を実行させるように適合されたコンピュータで実行可能な命令を有するコンピュータ可読媒体(512)であって、前記方法は、
航空機(502)の複数の飛行パラメータの複数の飛行パラメータ値(204,208,210,214,216)を追跡すること(308)、
前記複数の飛行パラメータ値(204,208,210,214,216)から第1の暗号化キー(124)を生成すること(309)、
前記第1の暗号化キー(124)を使用して平文(102)を暗号化(306)して、第1の暗号文(120)を生成すること、及び
前記第1の暗号文(120)を含むメッセージ(102)を送信側(116)から受信側(108)へ送信すること(312)
を含むコンピュータ可読媒体(512)。 - 前記送信側(116)は、少なくとも一つの地上局(506)を備え、前記受信側は前記航空機(502)を備え、
前記送信すること(312)は無線送信を含み、
第1の列線交換ユニット“LRU”(104,106,108)を含み、前記受信側は第2のLRU(104,106,108)を含む、請求項9に記載のコンピュータ可読媒体(512)。 - 前記追跡すること(308)は、メッセージ中のタイムスタンプによって示された時刻に前記飛行パラメータ値(204,208,210,214,216)の少なくとも一部を追跡すること(308)を含む、請求項9に記載のコンピュータ可読媒体(512)。
- 前記飛行パラメータ値(204,208,210,214,216)は、少なくとも1つの航空機地上間データ通信システム“ACARS”メッセージからのデータから成る、請求項9に記載のコンピュータ可読媒体(512)。
- 前記生成すること(309)は、メッセージの複数のフィールド内の値から複数の最下位ビットを抽出することを含む、請求項9に記載のコンピュータ可読媒体(512)。
- 地上局(506)と前記航空機(502)の双方に対して、利用可能な複数の情報オプションから前記飛行パラメータを選択することを更に含む、請求項9に記載のコンピュータ可読媒体(512)。
- 前記複数の飛行パラメータ値(204,208,210,214,216)から第2の暗号化キー(126)を生成すること、及び
前記第2の暗号化キー(126)を使用して前記第1の暗号文を更に暗号化(306)して、第2の暗号文(102)を作成すること
を更に含む、請求項9に記載のコンピュータ可読媒体(512)。
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US14/840,713 US9794059B2 (en) | 2015-08-31 | 2015-08-31 | Lightweight cyber secure bi-directional aircraft communications addressing and reporting system (ACARS) transmission |
US14/840,713 | 2015-08-31 |
Publications (2)
Publication Number | Publication Date |
---|---|
JP2017108376A JP2017108376A (ja) | 2017-06-15 |
JP6783587B2 true JP6783587B2 (ja) | 2020-11-11 |
Family
ID=56799234
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
JP2016163559A Active JP6783587B2 (ja) | 2015-08-31 | 2016-08-24 | 軽量でサイバーセキュリティの高い双方向航空機地上間データ通信システム(acars)伝送 |
Country Status (4)
Country | Link |
---|---|
US (1) | US9794059B2 (ja) |
EP (1) | EP3136680B1 (ja) |
JP (1) | JP6783587B2 (ja) |
CN (1) | CN106487504B (ja) |
Families Citing this family (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US10652027B2 (en) * | 2015-10-20 | 2020-05-12 | The Boeing Company | Airplane identity management with redundant line replaceable units (LRUs) and composite airplane modifiable information (AMI) |
FR3050049B1 (fr) * | 2016-04-08 | 2018-03-23 | Airbus Operations (S.A.S.) | Unite au sol, aeronef, et procede de transmission d'instructions de vol d'une unite au sol vers un aeronef |
US10798033B2 (en) * | 2017-03-29 | 2020-10-06 | Honeywell International Inc. | Processing messages for an application running on a computer external to a communications management unit (CMU) |
US10536266B2 (en) * | 2017-05-02 | 2020-01-14 | Seagate Technology Llc | Cryptographically securing entropy for later use |
US10681020B2 (en) | 2018-03-12 | 2020-06-09 | The Boeing Company | Blockchain fortified aircraft communications addressing and reporting system (ACARS) communication |
US11155338B2 (en) | 2018-10-19 | 2021-10-26 | Rolls-Royce North American Technologies Inc. | Encryption and security in a distributed control network |
US11621946B2 (en) | 2019-11-26 | 2023-04-04 | The Boeing Company | Method and system for secure sharing of aerial or space resources using multilayer encryption and hosted payloads |
WO2022126030A1 (en) * | 2020-12-11 | 2022-06-16 | Knwn Technologies, Inc. | Deploying, securing, and accessing encryption keys |
CN115174253A (zh) * | 2022-07-19 | 2022-10-11 | 北京计算机技术及应用研究所 | 一种ads_b系统数据加密方法 |
Family Cites Families (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6677888B2 (en) * | 2001-08-09 | 2004-01-13 | Honeywell International, Inc. | Secure aircraft communications addressing and reporting system (ACARS) |
US6917863B2 (en) | 2001-12-21 | 2005-07-12 | Karl F. Milde, Jr. | System for assuming and maintaining secure remote control of an aircraft |
US7039509B2 (en) * | 2002-12-30 | 2006-05-02 | Lucent Technologies Inc. | Wireless supplement and/or substitute for aircraft flight recorders |
DE10330643A1 (de) * | 2003-07-07 | 2005-02-10 | Siemens Ag | Verfahren zur verschlüsselten Datenübertragung über ein Kommunikationsnetz |
US7489992B2 (en) * | 2004-04-12 | 2009-02-10 | Sagem Avionics, Inc. | Method and system for remotely communicating and interfacing with aircraft condition monitoring systems |
US7512714B2 (en) * | 2004-08-31 | 2009-03-31 | Honeywell International Inc. | System and method for transmitting ACARS messages over a TCP/IP data communication link |
US8220038B1 (en) * | 2008-04-25 | 2012-07-10 | Lockheed Martin Corporation | Method for securely routing communications |
US8666748B2 (en) * | 2011-12-20 | 2014-03-04 | Honeywell International Inc. | Methods and systems for communicating audio captured onboard an aircraft |
US9124580B1 (en) | 2014-02-07 | 2015-09-01 | The Boeing Company | Method and system for securely establishing cryptographic keys for aircraft-to-aircraft communications |
-
2015
- 2015-08-31 US US14/840,713 patent/US9794059B2/en active Active
-
2016
- 2016-08-02 CN CN201610624252.0A patent/CN106487504B/zh active Active
- 2016-08-03 EP EP16182497.4A patent/EP3136680B1/en active Active
- 2016-08-24 JP JP2016163559A patent/JP6783587B2/ja active Active
Also Published As
Publication number | Publication date |
---|---|
US9794059B2 (en) | 2017-10-17 |
EP3136680B1 (en) | 2018-07-04 |
CN106487504A (zh) | 2017-03-08 |
CN106487504B (zh) | 2022-02-22 |
US20170063529A1 (en) | 2017-03-02 |
JP2017108376A (ja) | 2017-06-15 |
EP3136680A1 (en) | 2017-03-01 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
JP6783587B2 (ja) | 軽量でサイバーセキュリティの高い双方向航空機地上間データ通信システム(acars)伝送 | |
Yang et al. | A practical and compatible cryptographic solution to ADS-B security | |
US11245515B2 (en) | Random cipher pad cryptography | |
AU2018322689B2 (en) | Terminal identity protection method in a communication system | |
CN110445747B (zh) | 用于加密交通工具数据服务交换的系统和方法 | |
Finke et al. | Enhancing the security of aircraft surveillance in the next generation air traffic control system | |
Baek et al. | How to protect ADS-B: Confidentiality framework and efficient realization based on staged identity-based encryption | |
US10715511B2 (en) | Systems and methods for a secure subscription based vehicle data service | |
CN102215077B (zh) | 一种ads-b目标精确位置加密的方法 | |
Steinmann et al. | Uas security: Encryption key negotiation for partitioned data | |
Finke et al. | ADS-B encryption: confidentiality in the friendly skies | |
CN101052029B (zh) | 用于传输包括可扩展标记语言信息的消息的方法 | |
Cook | ADS-B, friend or foe: ADS-B message authentication for NextGen aircraft | |
CN111448812A (zh) | 信息传输方法、存储介质、信息传输系统及无人飞行器 | |
CN104022948B (zh) | TypeX报文传输系统及方法 | |
Kacem et al. | Key distribution scheme for aircraft equipped with secure ADS-B IN | |
Kamboj et al. | Secure and authenticated vehicle navigation system | |
Finke et al. | Evaluation of a cryptographic security scheme for air traffic control’s next generation upgrade | |
Kacem et al. | A Key Management Module for Secure ADS-B | |
KR101520769B1 (ko) | 안전하고 효율적인 scada 통신시스템을 위한 릴레이 장치 및 방법 | |
CN109639709A (zh) | 数据安全传输方法、系统及数据发送设备、数据接收设备 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
A621 | Written request for application examination |
Free format text: JAPANESE INTERMEDIATE CODE: A621 Effective date: 20190819 |
|
A977 | Report on retrieval |
Free format text: JAPANESE INTERMEDIATE CODE: A971007 Effective date: 20200928 |
|
TRDD | Decision of grant or rejection written | ||
A01 | Written decision to grant a patent or to grant a registration (utility model) |
Free format text: JAPANESE INTERMEDIATE CODE: A01 Effective date: 20201006 |
|
A61 | First payment of annual fees (during grant procedure) |
Free format text: JAPANESE INTERMEDIATE CODE: A61 Effective date: 20201022 |
|
R150 | Certificate of patent or registration of utility model |
Ref document number: 6783587 Country of ref document: JP Free format text: JAPANESE INTERMEDIATE CODE: R150 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |