Are planes really at risk of cyberattack through the Wi-Fi connections we love to use while sky high? If you believe Ruben Santamarta, a consultant with cybersecurity firm IOActive, the answer is yes. But other security researchers are skeptical.
Santamarta, who has over 10 years in the security industry and has found dozens of vulnerabilities in major products, is sharing his insights at the Black Hat hacking conference in Las Vegas on Tuesday. If he’s right, it could usher in a new wave of scrutiny over airplane security in an age of terrorism.
"These devices are wide open,” Santamarta told Reuters. “The goal of this talk is to help change that situation.”
A Wake Up Call?
Santamarta also told Reuters how attackers could strike. Essentially, he uncovered the vulnerabilities through reverse engineering the firmware communications equipment installed in airplanes. Through his work, he discovered that hackers could use an aircraft’s onboard Wi-Fi signal or inflight entertainment system to crack open its avionics equipment.
He explained to Reuters that such an attack could wreak havoc on satellite communications including interfering with the plane’s navigation and safety systems. Although he told Reuters that the attack may be difficult to replicate in real life, he’s nevertheless reaching out to equipment makers, including Harris Corp., EchoStar Corp.'s Hughes Network Systems, Cobham, Iridium Communications and Japan Radio to share his findings.
Santamarta first voiced these concerns in an April report. The finding also has implications for the maritime industry, military and governments, emergency services, and industrial and media sectors, he said.
“Insecure and undocumented protocols, backdoors, hard-coded credentials . . . mainly design flaws that allow remote attackers to fully compromise the affected devices using multiple attack vectors,” he wrote at that time. “Ships, aircraft, military personnel, emergency services, media services, and industrial facilities (oil rigs, gas pipelines, water treatment plants, wind turbines, substations, etc.) could all be affected by these vulnerabilities. I hope this research is seen as a wake-up call for both the vendors and users of the current generation of SATCOM (satellite communications) technology.”
Some Analysts Skeptical
We caught up with Zeus Kerravala, a principal analyst at ZK Research, to get his reaction to the study. He told us the claim is hard to believe.
“I’m skeptical,” he said. “It’s not a secure wireless signal so it could happen; there is certainly technology out there that could separate the navigation system from the communications system.”
We also turned to Ken Westin, a security analyst for security firm Tripwire, for thoughts on the news. He told us an important part is when Santamarta indicates: “In theory, a hacker could use a plane's onboard Wi-Fi signal or inflight entertainment system.” The key, he said, is the “in theory” part.
“Many of the exploits mentioned require physical access to the devices, which is not practical for it to be a serious exploit,” Westin said. “If I have physical access to a device I can turn it off, that doesn’t mean it is a security vulnerability. That being said, I wouldn’t downplay the vulnerabilities and it will be interesting to see how the manufacturers respond to the discoveries.”
Posted: 2014-08-06 @ 2:46am PT
Nothing more than the spreading of FUD – Fear, Uncertainty & Doubt.
This is a re-hash of an old story, hackers can not bring down an airplane. IOAtive originally published this in April 2014, they didn’t get their expected 15 minutes of fame then. They know most people have a relatively short attention span and probably forgot about the lackluster response to their initial release in April and with the recent crash cluster now would be a good time to re-release old work. Well, in true Hollywood fashion it seems to have worked this time around and they’re getting their 15 minutes.
While it is true that some WiFi, IFE & other passenger cabin related systems may use various flavours of embedded Linux or Windows XP Embedded, these systems are not in any way directly connected to the flight controls systems, and therefore can not have any sort of influence or impact on the flight control systems.
Safety critical systems can not be accessed and controlled via the WiFi and SATCOM systems and communication channels, there is no direct relationship between SATCOM and flight control functions. There are separate data buses, DCUs, etc and none of them connect to the Flight Control Computer, Flight Management computer, etc.
This is just a bad case of poor optics being perpetuated by an Information Security person that has no clue about the safety engineering world and is trying to draw parallels between safety and security where no parallels can be drawn.
In the aviation engineering world, Safety != Security & Security != Safety. The worst thing can can happen here is some sort of access that will result in a commercial (ie cost money) impact, not a safety impact.
Before these “hackers” (I use the term very loosely) go running off making half ed statements about how insecure (and therefore infer how unsafe) a system/platform is, they should become intimately familiar with DO-178B & C, DO-254, DO-326A,ED-203, ARP4754A and ARP4761. Until such time, anyone person that makes the claim they have found a way to hack an airplane system that will result in a safety related failure is not worth the salt in their hash.