A software assurance framework for mitigating the risks of malicious software in embedded systems used in aircraft

Loading...
Thumbnail Image
Authors
Ginn, Robert C.
Subjects
Advisors
Osmundson, John
Gill, Janet
Date of Issue
2011-09
Date
Publisher
Monterey, California. Naval Postgraduate School
Language
Abstract
techniques that can be used to detect malicious code in individual aircraft Weapons Replaceable Assemblies (WRAs)
risks and mitigation strategies related to a generic aircraft software development process
system level techniques to prevent embedded malicious software from causing harm in aircraft
and a technique for documenting Software Assurance (SwA) arguments being made about the system and the individual WRAs.
Malicious software represents a significant and growing threat to Defense systems. Threats to airborne systems in particular can be characterized not by system vulnerability to Internet based exploits but rather by the risk posed by malicious code already present in the system's software. Although there are software techniques to detect and prevent certain types of attacks, a Systems Engineer has access to system level information and system design techniques that can quantify and in many cases mitigate the risks posed by potential malicious code present in the system. These techniques are especially applicable to malicious code in embedded airborne system although they can be applied to other systems that share certain traits. This thesis provides an overview of the types of threat involved
Type
Thesis
Description
Series/Report No
Department
Systems Engineering (SE)
Identifiers
NPS Report Number
Sponsors
Funder
Format
xviii, 99 p.
Citation
Distribution Statement
Approved for public release; distribution is unlimited.
Rights
This publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States.
Collections