- Joined
- Jun 11, 2015
- Messages
- 4,115
- Display Name
Display name:
Piperonca
Reminds me of this guy:
First thing I'd do if I was AA is check to see which passenger(s), if any, were on all of the affected flights. Roberts' feat was impressive if he accessed the flight controls. Probably made some DO-178 people uneasy. Another thing that would be impressive is hacking a supposedly closed-loop system fleet wide.Reminds me of this guy:
https://www.wired.com/2015/05/feds-say-banned-researcher-commandeered-plane/
"Chris Roberts, a security researcher with One World Labs, told the FBI agent during an interview in February that he had hacked the in-flight entertainment system, or IFE, on an airplane and overwrote code on the plane's Thrust Management Computer while aboard the flight. He was able to issue a climb command and make the plane briefly change course, the document states...
He obtained physical access to the networks through the Seat Electronic Box, or SEB. These are installed two to a row, on each side of the aisle under passenger seats, on certain planes. After removing the cover to the SEB by "wiggling and Squeezing the box," Roberts told agents he attached a Cat6 ethernet cable, with a modified connector, to the box and to his laptop and then used default IDs and passwords to gain access to the inflight entertainment system. Once on that network, he was able to gain access to other systems on the planes."
Why would the inflight entertainment network have any connection to the flight control networks?
Yeah, I think the whole story from the hacker is rubbish.it doesn't.
If I'm wrong, please tell me what airplane has such a connection...
What I find more unbelievable is, in a post-9/11 world, that this guy's seatmates would watch him rip the cover off an IFE unit under the seat, connect a CAT-6 cable to it and attach it to his laptop all without (1) beating his *** into oblivion and/or (2) notifying the flight attendants/pilots.
This. Who would sit by and let it happen?
I find it entirely believable that the IFE system has a connection to something because there's GPS, speed, altitude and course displayed and who is going to put the extra weight of a firewall into an airplane. If it's running on ethernet, it's a flat system. What I know about computer systems is that once you have a connection, hackers can find a way, especially in a system that is considered "closed" where there shouldn't be anyone getting into it and security is poorly considered.
I thought pilots meowedPilot?
I thought pilots meowed
If a firewall had to be hardware it'd be ounces. But of course they don't have to be hardware. But the GPS/etc. info could be done with a single cell phone chip and an antenna (or even a splitter). Again, less than an ounce. I would never have a connection of any sort between those networks. The flight controls, nav, etc. would be hardwired and completely, physically separate. I see no advantage to connecting them at all. Weight, simplicity, service, none.
As a side note, a Jetblue pilot told me that the info-tainment systems in their airplanes add about 3 lbs per seat. Jetblue has screens in each seat back which in the current generation planes are going away as they assume everyone has their own device.
I think all these IFE systems are all aftermarket. Simplicity or not, I don't think Boeing would let a IFE installer plug into critical networks on the plane. But that's just me spitballing with close to zero computer knowledge.I agree there should never be a connection to flight controls, but the reason is simplicity. Managing point to point communications is hard. If you put everyone on the same network and just trust nodes to talk to who they need to talk to, then your network design and admin is much easier. After all, nobody should be plugging into an airplane's network, right?
I agree there should never be a connection to flight controls, but the reason is simplicity. Managing point to point communications is hard. If you put everyone on the same network and just trust nodes to talk to who they need to talk to, then your network design and admin is much easier. After all, nobody should be plugging into an airplane's network, right?
The guy was using a Linux distribution built for security testing (Kali Linux). I've done some work with Kali before too, I agree it has some nasty stuff on it. With it, I would never rule out the ability for someone to hop through operating systems and come out another interface, especially when everyone expects the system to be isolated and never penetrated.
I'll also note there's a reason the word "inconceivable" is frequently is used when describing a security breech. It simply says they don't understand, not that it can't happen.
If he gained access to a box which provides GPS data, it isn't much more of a leap to spoof GPS data and make the aircraft turn and climb while on autopilot, right? He wouldn't need to get access to actual to thrust control if he had access to systems which influence thrust control. I presume an aircraft still increases thrust when it climbs, right?
edit: it's not like depicted in hollywood... not everything has open ports... or even actual lines connected to the interweb.
"If he gained access to a box which provides GPS data" - there is a difference between getting data from a box and actually having access to it. Simple way to look at it is: imagine a unidirectional interface. Imagine a Cat 5, 5e, 6 connector with the RX lines cut.
edit: it's not like depicted in hollywood... not everything has open ports... or even actual lines connected to the interweb.
Is your entire rebuttal based on a belief he lied about what he did?
Gain all the access you want to the IFE, it won't get you to the FMS.
If I can spoof the GPS data, I don't need the FMS. You don't have to take over every node of a system to control it.
Sigh...
The quote above says that they actually are connected for data. No air gap. That doesn't mean the hacker is telling the truth.The equipment doesn't even share the same power bus. Air gaps are tough to get through...
Air gaps are tough to get through...
They do notDo airliners use SAASM GPS?
They do not
Simplicity or not, I don't think Boeing would let a IFE installer plug into critical networks on the plane.
Do airliners use SAASM GPS?
Apparently not, but that's just one hypothetical.
But beyond that, the aviation industry believes there's a problem. To quote - "Our rules have always been focused on safety…We put safety layers to stop something from happening, but we assume that it happens just by chance when all things align. We never thought about somebody trying to exploit those vulnerabilities or flaws". Security has not been designed into the systems because nobody was ever supposed be on the system to hack it. The standards were published 8 years ago and in govt timelines, that means the information is probably 10-15 years old.
If there was no problem, there wouldn't be an industry push to secure systems. The FAA would not have a new Aircraft Systems Information Security/Protection group.
EASA, FAA Officials Talk Cybersecurity Policy Updates for Connected Aircraft Systems - Avionics International (aviationtoday.com)
It's happening with cars, too.
https://www.caranddriver.com/news/a37453835/car-hacking-danger-is-likely-closer-than-you-think/