Presentation is loading. Please wait.

Presentation is loading. Please wait.

PKI deployment in the Aerospace Industry

Published bySean Gardner Modified over 10 years ago

Similar presentations

Presentation on theme: "PKI deployment in the Aerospace Industry"— Presentation transcript:

1 PKI deployment in the Aerospace Industry
ICAO WG-I Information Paper #3 Author: Patrick Patterson

2 History 1999 DCWG Starts defining PKI Policy for Air Transport Industry 2000 SITA Builds first Aerospace PKI 2004 ATA adopts DCWG Renamed DSWG Published CP in iSpec2200 (Chapter 5)‏ Individuals Devices Software Signing

3 History (cont.)‏ 2006 2007 CertiPath formed
ARINC SITA Exostar CP derived from US FBCA Policy and DSWG CP DSWG Starts work on Secure ACARS Identifying aircraft and ground stations 2007 CertiPath cross certifies with: US FBCA, Boeing, Lockheed Martin, Northrop-Grumman, Raytheon, SITA Exostar and ARINC are derive directly from CertiPath root

4 Today: 2008 DSWG is the standard, CertiPath is an implementation
To Cross-Certify: EADS (Airbus)‏ US DoD UKMoD In Discussion: Honeywell Rockwell-Collins General Dynamics CA, FR, NL governments Approach to airlines being worked on DSWG is the standard, CertiPath is an implementation

5 What is using DSWG PKI Policy in Air Transport?
“Secure ACARS” final specification AEEC 823 Derived, in part from ICAO ATN SARPs “Gatelink” in progress specification AEEC 822 Field Loadable Software Boeing 787 and Airbus A380 Electronic 8130 Airworthiness Electronic Flight Bag Signed Flight Plans, Manifests, weather reports, maps, etc. Various Military programs ALL USING DSWG/CertiPath BASED PKI

6 What does this mean for ICAO?
There is an: Existing Deployed Functional Government recognised PKI for Aerospace and Air Transport use Communication protocols are already starting to use it AEEC 822 and 823 Problems with PKI are being solved Low Bandwidth Environment == ECC Revocation? == Short life certificates Key management? (still in progress)‏

7 Challenges It is important for there to be only one PKI standard for the industry Setting up a CA is expensive A cross-certified environment makes it less so. Unless we have convergence on a single policy, there will be no providers willing to set up those CAs Do we really want communications “protected” by a CA running from under someone's desk? Policy is as important as the technical deployment

8 What DSWG/CertiPath makes possible:
Single Policy for all aspects of an airlines operations Maintenance Flight Ops Supply Chain Management Reduced cost and complexity Single point of audit Single Certificate per use Single Trust anchor Multiple vendors ready today if the airline does not want to set up their own PKI

9 How does this work?

10 Questions?

Download ppt "PKI deployment in the Aerospace Industry"

Similar presentations

Role , Responsibility and achievements of SARI 145 Working Group

Role , Responsibility and achievements of SARI 145 Working Group
Feb 2009 Introducing ARTIST - Airbus Deutschland GmbH - TBCEI33 Introducing ARTIST Trust and Identification Aircraft Security Presented by Michel Messerschmidt.

Feb 2009 Introducing ARTIST - Airbus Deutschland GmbH - TBCEI33 Introducing ARTIST Trust and Identification Aircraft Security Presented by Michel Messerschmidt.
GLOBAL ink VHF Digital Link Mode 2 Progress Report to ICAO AMCP WG-M/2

GLOBAL ink VHF Digital Link Mode 2 Progress Report to ICAO AMCP WG-M/2
PKI Trust Root Concepts ACP Working Group – I April 2009.

PKI Trust Root Concepts ACP Working Group – I April 2009.
1 F E D E R A L A V I A T I O N A D M I N I S T R A T I O N A I R T R A F F I C O R G A N I Z A T I O N 1 William J. Hughes FAA Technical Center INFORMATION.

1 F E D E R A L A V I A T I O N A D M I N I S T R A T I O N A I R T R A F F I C O R G A N I Z A T I O N 1 William J. Hughes FAA Technical Center INFORMATION.
Data Link Convergence ICAO DLSG and ADG Activities ICAO ACP 5 July 2006 José Roca CASCADE Deputy Programme Manager

Data Link Convergence ICAO DLSG and ADG Activities ICAO ACP 5 July 2006 José Roca CASCADE Deputy Programme Manager
A GLOBALink ARINC VDL Mode 2 AOA and ATN Program Status & Deployment Activities November, 2000 AMCPWGM1 WP23.

A GLOBALink ARINC VDL Mode 2 AOA and ATN Program Status & Deployment Activities November, 2000 AMCPWGM1 WP23.
Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.

Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.
PKI Solutions: Buy vs. Build David Wasley, U. California (ret.) Jim Jokl, U. Virginia Nick Davis, U. Wisconsin.

PKI Solutions: Buy vs. Build David Wasley, U. California (ret.) Jim Jokl, U. Virginia Nick Davis, U. Wisconsin.
The Future of PETAL Technology

The Future of PETAL Technology
Launching Egyptian Root CA and Inaugurating E-Signature Dr. Sherif Hazem Nour El-Din Information Security Systems Consultant Root CA Manager, ITIDA.

Launching Egyptian Root CA and Inaugurating E-Signature Dr. Sherif Hazem Nour El-Din Information Security Systems Consultant Root CA Manager, ITIDA.
GateFusion Wireless Content Delivery

GateFusion Wireless Content Delivery
Page 1STNApresentation of data-link activities DATA-LINK IMPLEMENTATION IN FRANCE Initial data-link services with ACARS - Departure Clearance, ATIS - CPDLC.

Page 1STNApresentation of data-link activities DATA-LINK IMPLEMENTATION IN FRANCE Initial data-link services with ACARS - Departure Clearance, ATIS - CPDLC.
EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.
Federal PKI Architecture Update

Federal PKI Architecture Update
Paul D. Grant Special Assistant, Federated Identity Management and External Partnering Office of the DoD CIO Co-Chair, Identity, Credential.

Paul D. Grant Special Assistant, Federated Identity Management and External Partnering Office of the DoD CIO Co-Chair, Identity, Credential.
Certificate Interoperability S&I Framework Initiative Final Report August 17, 2011.

Certificate Interoperability S&I Framework Initiative Final Report August 17, 2011.
The 4BF The Four Bridges Forum Federated PACS A Physical Access Use Case for Bridges FIPS 201/PIV-I PACS Interoperability April 28 th, 2009.

The 4BF The Four Bridges Forum Federated PACS A Physical Access Use Case for Bridges FIPS 201/PIV-I PACS Interoperability April 28 th, 2009.
SAFE-BioPharma Association NSTIC Day How does industry drive forward.

SAFE-BioPharma Association NSTIC Day How does industry drive forward.
Copyright Judith Spencer 2002. This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,

Copyright Judith Spencer This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,

Similar presentations

Ads by Google