论文信息 - Quantitative risk assessment to enhance aeromacs security in SESAR

Quantitative risk assessment to enhance aeromacs security in SESAR

This paper presents the simulation results relevant to the 15.2.7 Working Package of the European SESAR Project1. The main goal was to conduct a risk assessment of network security for the AeroMACS airport network. The risk analysis is based on a new approach for network security assessment that measures quantitatively the network risk level. Critical aspects such as the impact of a successful attack on a node and the risk propagation of that attack within an aeronautical wireless airport communication network have been taken into account. We specifically focus on the access network vulnerabilities, and a first network risk study is conducted for a predefined scenario. Some security guideline are provided to enhance the security policies and to improve the end-to-end security using some additional mechanisms such as certificate-based authentication.

Mohamed Slim Ben Mahmoud | A. Pirovano | N. Larrieu

[1] R. Jehlen. Integrated communications navigation and surveillance (ICNS) conference , 2013, ICNS 2013.

[2] Muninder P. Kailay,et al. An application of qualitative risk analysis to computer security for the commercial sector , 1992, [1992] Proceedings Eighth Annual Computer Security Application Conference.

[3] Ehab Al-Shaer,et al. A Novel Quantitative Approach For Measuring Network Security , 2008, IEEE INFOCOM 2008 - The 27th Conference on Computer Communications.

[4] S. Radack. The Common Vulnerability Scoring System (CVSS) , 2007 .

[5] Hugo Krawczyk,et al. HMAC: Keyed-Hashing for Message Authentication , 1997, RFC.

[6] Alain Pirovano,et al. A Risk Propagation Based Quantitative Assessment Methodology for Network Security - Aeronautical Network Case Study , 2011, 2011 Conference on Network and Information Systems Security.

[7] Christopher J. Alberts,et al. Managing Information Security Risks: The OCTAVE Approach , 2002 .

[8] Morris J. Dworkin,et al. SP 800-38B. Recommendation for Block Cipher Modes of Operation: the CMAC Mode for Authentication , 2005 .