Data Link Security (DSEC) Subcommittee

Last Update: March 30, 2011

Chairman: Doug Murri - Southwest
APIM10-001: ACARS Information Security (pdf, 105K)

---

Goal: The DSEC Subcommittee developed a standard (ARINC 823) to be used as the basis for design and implementation of basic ACARS security. The commission (APIM 05-009) of the DSEC Subcommittee is to develop security infrastructure provisions such that they are scalable and extensible to support security measures in an IP environment.

Scope: This project is to standardize information security for ACARS messages in the form of Project Paper 823. The initial task is to develop an overview of security that fits within the framework described by ARINC Specification 811. The second element will define the infrastructure and processes, such as the issue of certificates and delivery of public keys. The third element will be the specific definition of provisions applicable to establishing and utilizing an ACARS security system. It will include a protocol and processes for the application of information security services (authentication, integrity, and confidentiality) and data compression to ACARS messages. The definition of security protocol and processes will be of sufficient detail to enable data link service providers, avionics vendors, civil aviation authorities (CAA) and airline ground host developers to develop interoperable information security services for protecting ACARS messages.

Benefit: Currently, avionics vendors implement proprietary ACARS Message Security solutions, which are not interoperable and which may not offer all of the security services being identified as emerging needs. A standard, interoperable ACARS Message Security (AMS) solution benefits the industry by minimizing costs to airlines, avionics vendors, data link service providers, CAAs and airline ground host developers.

---

Current Drafts:

Circulation Prior to Adoption Action
Draft 1 of Supplement 1 to ARINC Specification 823: Datalink Security, Part 1 - ACARS Message Security (pdf, 75K)
To Obtain Complete Copy

Circulation Prior to Adoption Action
Draft 1 of Supplement 1 to ARINC Specification 823: Datalink Security, Part 2 - Key Management (pdf, 75K)
To Obtain Complete Copy

Working Papers:

General Reference/Resources:

Key/Certificate Management Life Cycle (pdf, 338K)

Registration Authority Process of PKI
(Provided by Carillon Information Security - All files are PDF)
Basic process
Low assurance over the web
Higher assurance with a smartcard
For devices

The Mechanics of PKI
(Provided by Carillon Information Security - All files are PDF)
Encryption vs. Signature
Path Validation, or the Chain of Trust
Non-Repudiation
Gauging Assurance
Certificate Revocation
Certificate Management Lifecycle

Meeting Announcement:

Last Meeting Report:

DLK Security (DSEC) Subcommittee
October 16, 2007; Annapolis, Maryland

---