Hyunju Kim, Dongsu Kang

KIPS Transactions on Software and Data Engineering, Vol. 8, No. 6, pp. 223-234, Jun. 2019
https://doi.org/10.3745/KTSDE.2019.8.6.223,   PDF Download:
Keywords: Airworthiness Certification, Cyber Attack, Fighter-Aircraft Software, Security Threat, Risk Assessment, Airworthiness Security Certification Process
Abstract

Cyber ​​attacks are an important factor that determines the victory and defeat of Network-centric wars in which advanced weapon systems are highly interlinked. In addition the increasing dependability on software as its develop as the latest fighter is demanding enhanced security measures for fighter software to Cyber attacks. In this paper, we apply the DO-326A, which is an airworthiness security certification standard, to design a risk-based security threat assessment process by reflecting characteristics and operational environment of fighter aircraft. To do this, we add the following steps in security threat assessment stage of DO-326A's airworthiness security certification process. First, we derive security threats of fighter. And then, we scored the security threat in terms of possibility and impact on the fighter. Finally, we determine the security risk severity.

Statistics
Cite this article