I was reading Wired.com this morning and came across a rather scary article on Boeing’s new 787 Dreamliner. Apparently, no one at Boeing realized that it wouldn’t be a good idea to put the flight control and communication system on the same network as the passengers internet access. So basically, it wouldn’t be impossible that a passenger could hack into the control systems from the passenger cabin. From Wired:
The computer network in the Dreamliner’s passenger compartment, designed to give passengers in-flight internet access, is connected to the plane’s control, navigation and communication systems, an FAA report reveals.
The revelation is causing concern in security circles because the physical connection of the networks makes the plane’s control systems vulnerable to hackers. A more secure design would physically separate the two computer networks. Boeing said it’s aware of the issue and has designed a solution it will test shortly.
So you’re aware of the issue, are you Boeing? How exactly did you not think of this in the first place? I have to assume you have world class engineers working for you, seeing as how hundreds of lives on each flight depend on the safety of your aircrafts. So how did this major vulnerability slip through the cracks? One thing’s for sure. I won’t be stepping on to that aircraft until the system has been split into two separate physical networks. Because if there’s one thing we know, it’s that hackers always find a way to break through software barriers.
2 physical networks or not networks could still be bridged. Plus hackers are the least of your worries there’s people that know exactly what they are doing and don’t need to “hack”. My guess is that they would be running some high level encryption + a number of other proprietary security measures(including intrusion detection and mayhap running proprietary network protocols) on there aviation systems and the less important internet traffic would be open to some kind of wireless access point. With closed secured dumb terminals I wouldn’t sweat it. They could even go farther to approve all traffic and user commands going to and from the planes from a server farm on the ground and pulling the plug on the terminals the second a mouse farts. I mean with “world class engineers” you think they might be already laughing in your general direction. Media just wants a story to brew up there fear storm. Its sells papers you know.