Planes Can Be Hacked Via Inflight Wi-fi, Says Researcher 151
wired_parrot writes In a presentation to be shown Thursday at the Black Hat conference, cybersecurity consultant Ruben Santamarta is expected to outline how planes can be hacked via inflight wi-fi. Representatives of in-flight communication systems confirmed his findings but downplayed the risks, noting that physical access to the hardware would still be needed and only the communication system would be affected.
yes... (Score:5, Funny)
... but only by using Python.
Re:yes... (Score:5, Funny)
Get these motherfucking scrips off my motherfucking plane!
Re: (Score:3)
I like my cash like I like my women:
Bound in rolls and stuffed into a dufflebag?
Re: (Score:3)
I like my cash like I like my women:
Soiled and devalued?
On fire to light your cigar?
New and plastic?
Given to street musicians and the homeless?
Re: (Score:1)
with a light dusting of cocaine...
Re: (Score:1)
I was thinking of giving a perl necklace...
So, which is it? (Score:5, Insightful)
Is it as Ruben Santamarta says, that the plane's satellite communications system can be hacked into via the plane's wifi? Or is it as the manufacturers say, and the hacker would have to have physical access to the hardware and couldn't do much of anything anyway? There's two very different points of view here and I'm not sure how they're supposed to meet up.
Re: (Score:2, Funny)
Is it as Ruben Santamarta says, that the plane's satellite communications system can be hacked into via the plane's wifi? Or is it as the manufacturers say, and the hacker would have to have physical access to the hardware and couldn't do much of anything anyway? There's two very different points of view here and I'm not sure how they're supposed to meet up.
It's a bit odd to talk about physical access when speaking about a metal tube flying along at 35,000 feet.
It's not like attacks are going to take place outside the plane.
Re:So, which is it? (Score:4, Funny)
That is what William Shatner thought.
CAPTCHA: afraid
Re: (Score:1)
Is it as Ruben Santamarta says, that the plane's satellite communications system can be hacked into via the plane's wifi? Or is it as the manufacturers say, and the hacker would have to have physical access to the hardware and couldn't do much of anything anyway? There's two very different points of view here and I'm not sure how they're supposed to meet up.
It's a bit odd to talk about physical access when speaking about a metal tube flying along at 35,000 feet.
It's not like attacks are going to take place outside the plane.
Last time I checked, electromagnetic waves were a physical phenomenon. The real challenge is getting anything done by unphysical (i.e. supernatural) means.
Re: (Score:2)
Re: (Score:2)
Re:So, which is it? (Score:5, Insightful)
Is it as Ruben Santamarta says, that the plane's satellite communications system can be hacked into via the plane's wifi? Or is it as the manufacturers say, and the hacker would have to have physical access to the hardware and couldn't do much of anything anyway? There's two very different points of view here and I'm not sure how they're supposed to meet up.
Any airplane manufacturer that is stupid enough to link their passenger wi-fi system to ANYTHING else, deserves to get a few planes stuffed into the ground. Same with auto companies. If true, the whole thing is about as lamebrained as it gets.
Re: (Score:1, Funny)
Any airplane manufacturer that is stupid enough to link their passenger wi-fi system to ANYTHING else, deserves to get a few planes stuffed into the ground.
Preferably with you on board.
Re:So, which is it? (Score:5, Interesting)
Is it as Ruben Santamarta says, that the plane's satellite communications system can be hacked into via the plane's wifi? Or is it as the manufacturers say, and the hacker would have to have physical access to the hardware and couldn't do much of anything anyway? There's two very different points of view here and I'm not sure how they're supposed to meet up.
Any airplane manufacturer that is stupid enough to link their passenger wi-fi system to ANYTHING else, deserves to get a few planes stuffed into the ground. Same with auto companies. If true, the whole thing is about as lamebrained as it gets.
Volkswagen hooks up their audio systems to the CANBUS on cars. Those audio systems may have bluetooth enabled. This may allow a hacker to get onto the CANBUS via BT. I haven't tried, but it's definitely something that one could attempt. Other manufacturers do this also, such as GM and Chevy.
Re:So, which is it? (Score:4, Interesting)
Other manufacturers do this also, such as GM and Chevy.
Yes, that was my understanding as well. And that was my point. It just doesn't look very smart, from where I sit.
In my view (which I would be happy to review and modify if someone has a better idea), you have 3 basic systems in a modern automobile. In order of importance: [1] critical control and feedback, [2] internal environment, and [3] entertainment.
[1] and [2] should have strictly limited communication, if any. [2] and [3] should probably have none, and [1] and [3] should not communicate at all under any circumstances.
Re: (Score:1)
Volkswagen hooks up their audio systems to the CANBUS on cars. Those audio systems may have bluetooth enabled. This may allow a hacker to get onto the CANBUS via BT. I haven't tried, but it's definitely something that one could attempt. Other manufacturers do this also, such as GM and Chevy.
A 2009 study [itworld.com] claim to have managed it. Given the range & pairing requirements of BT though, it does mean crashing a car that you're currently in. Giving the victim a specially prepared CD that will hack the CANBUS half way through their road trip seems a much more sensible idea to me.
Re: (Score:1)
Connected != Access.
Just because some device is connected to via Bluetooth and that same device has a CANBUS connection does NOT mean you can now get from the Bluetooth and onto the CANBUS. It only means that it might be possible from that direction. Hack away and try, but you have a snowball's chance of getting though the radio.
Just like in aircraft, being able to access the WiFi network which might actually be connected to some device that might be connected to the network that the satellite gear is man
Re:So, which is it? (Score:5, Insightful)
Yes, hundreds of people 'deserve' to die. It certainly not the person doing the attacks fault at all.
Idiot.
Re: (Score:2)
Re: (Score:3)
Did I, at any point, say I felt passengers deserved to die? No, I did not. . . . . Not every flight (for any airliner) is commercial, and not every flight carries passengers.
Nice attempt at backpedaling from your original cavalier, thoughtless, and utterly stupid comment, bucko, but you're stuck with it. The only scenario where somebody innocent doesn't die is if the only people on the plane, including the pilot, are the ones engaged in hacking into the plane's control system through the wifi to... wait for it... interfere with the flight controls and crash the plane. Hopefully even you can figure out why that scenario won't happen. Ever.
Re: (Score:2)
My original comment stands, and it had nothing to do with killing passengers.
Re: (Score:2)
Yeah, obviously you were talking about completely robotic planes with no human pilots getting "stuffed into the ground" because their onboard wifi was hacked by... other robots. That's the only way your comment wouldn't have been celebrating death.
I made a rhetorical comment about the manufacturers deserving to lose airplanes. It wasn't meant to be literal, and I mentioned nothing about killing people. This "celebrating death" is only in your own sick mind.
Re: (Score:1)
So the pilots deserve to die for something they had no hand in? Sorry, but you're still fucking stupid.
Re: (Score:1)
Yes, hundreds of people 'deserve' to die. It certainly not the person doing the attacks fault at all.
Idiot.
How does pwning the infotainment system lead to death. People might become bored to death, but I cant imagine anything else happening.
The crew can simply turn off the infotainment system, and go on with their work. There is a reason the infotainment system is not relied on, and attendants still use verbal instructions for everything (including the initial safety spiel)
Re: (Score:3)
The pilot can use these data link communication channels to make his/her life easier. As an example, when asking for a new flight level clearance, they can (given up2date Flight Management System computers) dispatch a digital message to ATC (Air Traffic Control) rather than using the radio. A bit like sending a text message. This can be far more reliable than long-range radio where the audio quality isn't great. Similarly, the ATC can confirm the flight level clearance (climb or descent) via a data message,
Re: (Score:3)
The pilot can use these data link communication channels to make his/her life easier.
CPDLC is a separate system, it does not depend on the satellite link. The one compromised is the satellite infotainment system. They are not connected. Fly-by-wire avionics are of course isolated (for regulatory reasons).
Re: (Score:1)
Is it as Ruben Santamarta says, that the plane's satellite communications system can be hacked into via the plane's wifi? Or is it as the manufacturers say, and the hacker would have to have physical access to the hardware and couldn't do much of anything anyway? There's two very different points of view here and I'm not sure how they're supposed to meet up.
I'm going to guess it's both. Someone likely needs to flip some physical switch or whatever... but Mr Santamarta thinks social engineering could be used to trick the pilots into doing it for you. Something along those lines.
Re: (Score:3)
"Planes Can Be Hacked" really means "Planes' Satellite Communication System Can be Hacked." That's a huge distinction. A malicious hacker still can't control the plane or it's radio communications, which are the important things. There are good reasons why the FAA is strict rules about airplanes not relying on satellites.
To give you an idea of the technical prowess of the article: "he discovered the vulnerabilities by "reverse engineering" - or decoding - highly specialized software known as firmware."
Re:So, which is it? (Score:4, Informative)
For the "navigation" systems, he's not talking about GPS (even if he were it wouldn't be a big deal, airplanes can navigate just fine without GPS), but the communication system does send the GPS location, altitude, and speed back home. If that goes down, not a big deal because that's not what air traffic control relies on.
More and more aircraft and ATC centers support ADS-B transponders and data, which include a GPS-derived position (altitude + position) messages as a part of System Tracking (you can check out Eurocontrols Asterix cat62 protocol and ADS-B applications). Older MSSR radars will provide you with a rough estimate of the position and an assumed altitude based on the aircrafts built-in systems, which is being tracked using for example Kalman filters to predict the current and future position. Switching over to GPS as the primary source of positioning data is allowing tighter packing of aircraft (reduced horizontal and vertical separation rules), which is becoming critical for congested airports to reduce the time between takeoffs/landings, as well as to keep aircraft in holding patters packed tighter together.
Also, ADS-B can be sent as frequently as 1 message/second due to signals going down towards earth rather than in all directions. Current MSSR radars usually have a scan time of 5-12 seconds.
So interruptions with these data links (say someone hacks into it and manages to shut it down) would lead to the ATC center having to fall back on MSSR Tracking, meaning you will be violating horizontal and vertical separation rules until the controller can create more space around the aircraft again.
Re: (Score:1)
You can guarantee that if this starts happening over EU skies, the "special holding area"(*) at Stansted will start seeing a lot more visitors.
(*) That's the one with large berms on both sides of the aircraft to deflect explosions, and said berms have a large number of gun portals on them.
Re: (Score:2)
An attacker could always just bankrupt the airline by chewing up masses of satellite bandwidth for hours on end. uTorrent and a few Linux ISOs should be good for about $100m in overage charges.
Re: (Score:1)
Aircraft operators generally don't pay per Mb. They buy committed bandwidth and if you fill it with torrents, noone on the plain is going to be happy about their slow connection.
The last time I flew, the wifi setup was clearly filtered, as I couldn't even SSH out. Web/email worked but not much else.
Re: (Score:1)
The plane has a data connection. You get access to a data connection via the on-board wifi.
You don't see a connection between the two? Let me fill it in for you: they share the same path outside the plane.
Note that this data connection isn't required for the plane to continue flying, but I don't know how it's used by in-cockpit warning or navigational stuff.
Re: (Score:2)
I would guess 'not at all' based on the loss of MH370: Part of the reason it's not been found is that the plane didn't maintain any form of continuous communications.
Re: (Score:2)
I don't see how you get from "no continuous communication" to "not at all" - there's an awful big gap between always and never. Admittedly though I can't think of many operations-oriented uses for such a link, other than perhaps an alternate communications channel if there are issues with the normal radio.
Also, didn't both normal communications and the transponder go dark long before the plane was lost to radar? I thought that was one of the major indicators that strongly suggested foul play. After all, c
Re: (Score:2)
It did, yes - and the transponder was shut off manually. What wasn't shut off was the sat link handshake, which could only by done by physically cutting the power - something that even most pilots wouldn't be aware of.
There's no doubt that someone in the cockpit wanted the plane to disappear for a while. Without finding the wreckage (And the cockpit voice recorder) it's not possible to say who. It might have been a hijacking, or it might have been a pilot 'Taking you all with me' suicide, or might be part o
Re: Why WiFi (Score:2)
In other words (Score:1)
Re: (Score:1)
Nah, don't worry about it. It's just some "security expert" going all dramatic on some minor vulnerability he found, to plaster his name on the front page. Anything talking of airplanes, hacking, hijacking, plays the terrorism bullshit music score, and is a surefire way of attracting media attention.
No doubt the TSA will very soon jump on the opportunity to invent some new rule to steal - sorry, confiscate - your Wifi-enabled devices at the security checkpoint too...
No they cant. (Score:5, Insightful)
They did not get into the aircraft avionics.
They got into the satellite communications for the Infotainment system.
NONE of the systems like that have any interconnection to avionics or telemetry.
Re: (Score:1)
ahh... so just all the passenger data can be hijacked.
nothing to worry about here.
Re:No they cant. (Score:4, Funny)
ahh... so just all the passenger data can be hijacked.
nothing to worry about here.
Google and the NSA are worried... about someone else encroaching on their turf.
Re: (Score:2)
Passenger data in the infotainment system? What makes you think there is anything sensitive in there?
I thought it was just shitty movies and games, along with a GPS map of where the plane is that is viewed only by passengers.
Re: (Score:2)
You're thinking too small. Think bigger...if you have access to the in-flight infotainment system, you have access to the eyes, hearts and minds of the passengers. Passengers who are, due to not so subtle-conditioning, easily frightened. "9/11" "Never again!" Pictures of the statue of liberty crying and politicians dissembling at the top of their lungs. =^_^=
So what would I do? Two things. I'd play a video, ostensibly of a 'live' newscast that the plane they are currently on has been taken over by terrorist
Re: (Score:2)
About as plausible as any M.Bay film.
Re: (Score:2)
The hackers could broadcast a fake NBC news TV report that 'inadvertently' made its way to the plane video system. The news report would obviously declare that particular plane is known to carry the Ebola virus and no one onboard could be trusted as safe anymore, and chances for their survival are small, yet the risk to the larger world very great. I'll leave the plot continuation to the next bored slashdotter. (Obviously matters must be taken into hand)
Re: (Score:3)
A crew of us was flying into Dallas one rime, circling the field. That was when pagers were big and cell phones were not.
We all got a Sky Page about a Dallas flight circling DFW because of unknown mechanical failure and a crash landing was inevitable.
Our buddies in Virginia thought it was funny.
Re: (Score:2)
A crew of us was flying into Dallas one rime, circling the field. That was when pagers were big and cell phones were not.
We all got a Sky Page about a Dallas flight circling DFW because of unknown mechanical failure and a crash landing was inevitable.
Our buddies in Virginia thought it was funny.
Oh wow, what a classic old school hack! I'd have smacked them all first chance possible, but I'm in admiration for their thought, concern, and effort still. They must really, really like you and the rest of the team, and it shows.
Please just don't tell me this was SITA text, or I'm gonna die laughing too hard (having worked with SITA before). SITA text will never die.
http://www.sita.aero/products-... [sita.aero]
Re: (Score:2)
I've seen this used in one of the Die Hard films. The attackers took over a news channel and transmitted fake video of the white house being blown up - easier than actually blowing it up, and just as effective at creating panic.
Re: (Score:2)
I've seen this used in one of the Die Hard films. The attackers took over a news channel and transmitted fake video of the white house being blown up - easier than actually blowing it up, and just as effective at creating panic.
Surely people wouldn't believe it. I mean, who would want to blow up the White house?
Re: (Score:2)
I'm talking about cases where internet access is available through the inflight wifi.
Taking control of the network equipment through which this traffic runs isn't harmless.
Re: (Score:2)
No, but it should be expected. A connection to the Internet is still consider untrusted.
Re: (Score:2)
Pay per view, all that juicy credit card info....
Re: (Score:1)
What customer data is in the infotainment system?
Re: (Score:2)
Credit card data, perhaps? I assume they want you to pay for that infotainment, not to mention any food or drinks you're ordering.
Re: (Score:2)
Well, that's sort of the point, isn't it? You don't know what's being stored in there.
I believe Virgin America or Jet Blue allow you to order food from your seat--and you pay with a credit card. I don't remember if they have a credit card swipe at the seat or if you have to give it to the FA. Nowadays, also, they don't necessarily have free movies--you have to pay for them at the seat.
Now is it just taking the credit card info and authorizing immediately and calling itself done? Or is it recording your
Re: (Score:2)
the whole point of in-flight WIFI is that people can be charged exorbitant sums for painfully-slow internet access while in flight.
While certainly it is no hijacking of a plane, the hijacking of this network equipment isn't nothing.
Re: (Score:1)
ahh... so just all the passenger data can be hijacked. nothing to worry about here.
That's ALREADY possible, no hacking the plane's systems required. Tell me you don't trust public WiFi connections, EVER.... Please tell me..... (crickets) We are doomed, doomed I say.
Re: (Score:2)
No need for such an elaborate hack to do that. Just set up your own network called "In-Flight Free WiFi" and begin the harvest. For bonus points add a splash screen warning users that they may receive certificate warnings "due to the nature of in-flight wifi and the speed/altitude of the aircraft in international airspace", complete with instructions on how to bypass them in all common browsers.
Re: (Score:2)
Re: (Score:1)
Sir, I believe you might be troubled to learn YOUR COMPUTER IS BROADCASTING AN IP ADDRESS!
Re: (Score:2)
Yes, but imagine if a terrorist changed all the in-flight movies to be Uwe Boll movies: Passengers might start jumping out of the plane!
Re: (Score:2)
I believe that act would fall afoul of the Geneva Conventions and be considered a War Crime. Uwe Boll skirts the law based on pathetic notions such as "free speech" and "free expression." Purposely inflicting Uwe Boll on people is torture and will be punished appropriately (unlike the US treatment of suspected terrorists).
Re: (Score:2)
Yes, but imagine if a terrorist changed all the in-flight movies to be Uwe Boll movies: Passengers might start jumping out of the plane!
That's nothing. I heard the in-flight Infotainment catalog includes Nickelback, which we all know is the aural equivalent of two cup chicks hosting a goatse lemon party.
Re: (Score:2)
Or "Snakes on a Plane". Which for some strange reason never made it to the inflight entertainment systems :-(
Re: (Score:2)
Or "Snakes on a Plane". Which for some strange reason never made it to the inflight entertainment systems :-(
I saw "Memphis Belle" on a plane once, a few years ago. Some scenes were cut, but more because of the adult content than the planes being shot down.
Disclaimers:
1: This is pre Sep/11
2: This is pre seat-back entertainment systems, where everyone watched the same show on a screen at the front of the cabin
3: Yes I am that old
Re: (Score:1)
Also not specified is whether the "hardcoded credentials" are even valid during a normal operating mode.
In many cases, avionics like this has a dedicated physically isolated service port and/or a dedicated "service mode" that can only be entered by powering on the device when a discrete is tied to ground by a special test equipment connector.
Almost surely, these vulnerabilities are either:
1) Firewalled from the passenger network (This is, however, unlikely, airgrapping/network isolation is far more likely,
Re: (Score:3)
Here here:
In theory, a hacker could use a plane's onboard WiFi signal or inflight entertainment system to hack into its avionics equipment, potentially disrupting or modifying satellite communications, which could interfere with the aircraft's navigation and safety systems, Santamarta said.
So it stands that there really isnt much of a threat here. Either the journalist is confused or purposefully crafted the article so as to imply that a hacker with a wifi device can disable a planes navigation system or d
Re: (Score:2)
No, the journalist just swallowed the press release verbatim. I mean, there's practically no downside to doing so, and it keeps everyone happy.
Security is a demanding field with a few "rockstars", which means there's a lot of incentive to, uh, exaggerate one's accomplishments. This guy had extended time to pick apart a piece of airplane hardware in his lab, and did so. That's all. What real-world vulnerability does this translate to? We don't know; he can't reveal them at the moment because it would be irre
Re: (Score:2)
Re: (Score:2)
They did not get into the aircraft avionics.
They got into the satellite communications for the Infotainment system.
NONE of the systems like that have any interconnection to avionics or telemetry.
The article isn't very clear on exactly what they managed to do, but it is quite possible that there is a shared satellite data communication system shared for infotainment systems and aircraft system status/updates/notifications alike. Hopefully with a robust QoS in place. So _if_ someone could break into the message routing, they could intercept and possibly create their own messages to send along the channel.
If you check TFA's quote:
In theory, a hacker could use a plane's onboard WiFi signal or inflight entertainment system to hack into its avionics equipment, potentially disrupting or modifying satellite communications, which could interfere with the aircraft's navigation and safety systems, Santamarta said.
Since a modern airline has lots of avionics communicating with the groun
Hackers on a Plane. (Score:3, Funny)
Quick, get Samuel L. Jackson on the phone.
I smell a blockbuster movie in the works!
Re: (Score:2)
If the WiFi system is not connected to the Plane (Score:2)
...then I don't care. Very simple question; can you get to the avionics of the plane through the WiFi? If you can that's poor system design and someone should be beaten with a wet noodle; if you can't then I don't care as the network is physically disconnected from the actual movement and functioning of the aircraft. If the best you can do is spy on the passengers of the aircraft through the WiFi or use the WiFi without paying then I don't care. Anytime I log into a flight I go encrypted through VPN as you
Noncence (Score:2)
This alone makes the whole story implausible.
Uhm yesss....
Re: (Score:2)
Re: (Score:2)
Indeed the rules have been loosened, last year you had to switch off completely during start and landing.
But do I see a woosh?
And sorry for the c's in Nonsense.
Re: (Score:2)
I don't buy it (Score:3)
Hughes spokeswoman Judy Blake said hardcoded credentials were "a necessary" feature for customer service. The worst a hacker could do is to disable the communication link, she said.
1. Are hardcoded credentials ever "necessary?" How about credentials that are generated on first boot and then requested by support?
2. Disabling the communications link for a piece of hardware whose sole purpose is communications... kind of a big deal.
Re: (Score:2)
Yes..and no. IF the communication that goes down is just wi-fi, then its a problem but not a big deal when compared to taking down avionic coms.
Re: (Score:2)
Hardcoded credentials aren't necessary. What they *mean* is that the *reason* for hardcoded credentials is "support". "Necessary" here doesn't actually mean "necessary", but rather, "deemed to be the best choice". Of course, it might really be the best choice. There's certainly a cost associated with making the support more complicated. You have to weigh that against the difficulty of using the hardcoded credentials and what you can do with them. There are lots of potential tradeoff points, from "using hard
Smells of bullshit. (Score:2)
Re: (Score:2)
And the only thing in the cockpit that may tie into the wifi system is the pilot's iPad.
Dun-dun-dun...
"We can't communicate with the pilots!"
"Why not?"
"Somebody hacked the WiFi network and put 'Plants vs. Zombies' on the pilots' iPads!"
Now we know what happened to MH370...
Re: (Score:2)
Exactly. Ot is more than impossible that a 'hacker' can access any flight system/avionics via WiFi ... they are not even connected to each other, very likely they don't even share the same power grid.
Communication between avionic components are usually done via buses with 2 wire serial connections. There are roughly two dozen protocols/technologies in use, all but 2 or three involving wires, the others glass fibers. I'm only aware of Airbus A380 using ethernet, not sure to what extend.
An overview you can fi
Through interconnect or re-program a radio (Score:2)
The article is short on details, but, in all fairness, the paper is to be presented on Thursday and presumably the details will be forthcoming.
My guess is that there are are two possibilities here:
1. The avionics and entertainment systems are connected on the same local network, and thus if one can gain control of the entertainment system(s) on might then hack into the avionics.
Q. Why might the avionics and entertainment systems be connected? One reason I can think of is so that the entertainment system can
there IS a connection (Score:5, Insightful)
I used to work for one of the In-Flight Entertainment (IFE) vendors. Although their "architect" was clueless about security, some of us doing the work managed to build some into the system. With WiFi, it was harder, but, before I left, we had, at least, set up some VPNs to isolate the system control links from the cabin crew- and customer-access features (don't know if that persisted). The entire IFE did rely on hard-coded passwords, though.
There IS a connection between the IFE and aircraft systems. It is used to feed aircraft position and speed data, plus some useful state, such as wheels up/down (there are features that only enabled while in "cruise", but not during takeoff and landing, for example). The aircraft systems designers, however, seemed to have a clue about security, however, as we were only allowed a network connection to a slave server with no apparent upstream links.
Re: (Score:1)
I have worked for several avionics companies on everything from autopilots to IFE. I could say lots on the subject but you have well summarized the situation. There are connections of various kinds and a LOT of scrutiny and analysis goes into making those connections secure. Avionics are their own special world full of different buses and ways of operating than most computer folks are use to. A master hacker would have no chance at all against aircraft systems unless he was also highly trained in aircraft s
Re: (Score:1)
Avionics are their own special world full of different buses and ways of operating than most computer folks are use to. A master hacker would have no chance at all against aircraft systems unless he was also highly trained in aircraft systems and had access to the hardware.
So, what you want to say is: it's security through obscurity.
Re: (Score:2)
In fact it's not really obscure. One of the most used bus for critical data is ARINC429 and it's a well defined and very simple standard.
If you somehow manage to connect a device directly to the bus wires (you can't do this with WiFi), it is relatively easy to inject whatever data you want. However, connected equipment will double check everything they receive, so you have to craft consistent data, a much harder task. And even then some devices have additional analog sensors so you'll need to fool these too
Great! (Score:2)
No I will have to hear endlessly about this completely misleading article from people who know nothing about avionics.
That you article writer and slashdot submitter for adding to technology hysteria.
This article is basically saying someone can hack your washing machine from your cable modem without any supporting evidence that is true.
.02 (Score:2)
Obligatory Dilbert Comic (Score:2)
Story reminded me of a good Dilbert comic [dilbert.com] from back in the day.
reminds me of the old cartoon (Score:2)
http://www.fieldbrook.net/TechTips/Humor/Bluetooth.asp [fieldbrook.net]
LOL. (Score:2)
IOW, not going to happen.
As to the passenger's network, oh yeaj, easy enough to crack that with time. Heck, Airbus uses Windows.
Re: (Score:1)
Define "physically separate"
That is not how I read the following FAA Special Conditions:
https://www.federalregister.go... [federalregister.gov]
This says "the design provides isolation from, or airplane electronic system security protection against, access by unauthorized sources internal to the airplane"
Re: (Score:1)
I'm heavily involved in maintaining the Avionics and IFE onboard our aircraft. The IFE system is physically separated only in the sense that it has read only capability to the ARINC-629 avionics data bus. It can't put anything onto the bus, because the wires aren't connected. The IFE is however tied into the Passenger Service System, so the passengers can turn on their reading lights and attendant call lights, and so that video playback stops when announcements are made.
Slow news day? (Score:1)
No clickbait global warming stories today? No polarizing left wing loon right wing nutcase stories? Gee slashdot, are you on vacation too this week?
Re: (Score:3)
Re: (Score:2)