[RSM123]

Boeing's new 787 Dreamliner passenger jet may have a serious security vulnerability in its onboard computer networks that could allow passengers to access the plane's control systems, according to the U.S. Federal Aviation Administration.

The computer network in the Dreamliner's passenger compartment, designed to give passengers in-flight internet access, is connected to the plane's control, navigation and communication systems, an FAA report reveals.

http://www.wired.com/politics/securi...liner_security

[bearone2]

how many 787's are in service? something i should really be concerned about as the 1st test flight won't be until mar?

[RSM123]

Unfortunately I have no further information on this - I saw the article linked to on a blog.

[Fidelista]

Quote:

Originally Posted by bearone2

how many 787's are in service? something i should really be concerned about as the 1st test flight won't be until mar?

Not a problem , it will tested and sorted out before anyone has a problem, if in fact it really is..
Everyone {Boeing / FAA} is aware of a potential problem, and the FAA did their job , making sure it didn't become a real problem .
Its not just on blogs , it has been in aviation news also . See below >f
--------------------------------------------------------------------
According to the FAA document published in the Federal Register, the vulnerability exists because the 787's computer systems connect the passenger network with the flight-safety, control and navigation network. The system also connects to the airline's business and administrative-support network, which communicates maintenance issues to ground crews.

The design "allows new kinds of passenger connectivity to previously isolated data networks connected to systems that perform functions required for the safe operation of the airplane," says the FAA document. "Because of this new passenger connectivity, the proposed data-network design and integration may result in security vulnerabilities from intentional or unintentional corruption of data and systems critical to the safety and maintenance of the airplane."

Meanwhile a Boeing spokesperson said that the wording of the FAA document is misleading, and that the plane's networks don't completely connect. Without getting into details, company officials said that Boeing was employing a combination of solutions that involved some physical separation of the networks, known as "air gaps," and software firewalls.

Apart from these there would also be other technical solutions of a proprietary nature, company officials said. According to them, although data can pass between the networks, "there are protections in place" to ensure that the passenger internet service doesn't access the maintenance data or the navigation system "under any circumstance."

Though safeguards protecting the critical networks from unauthorized access were in place, the company still needed to conduct lab and in-flight testing to ensure that they work. This, said officials, will take place in March when the first Dreamliner would be ready for a test flight.

According to Boeing officials, the FAA and Boeing have already agreed on the tests that the plane manufacturer will have to do to demonstrate that it has addressed the FAA's security concerns.

http://www.domain-b.com/aero/aero_mf...07_hacker.html

http://www.theage.com.au/news/news/b...554534790.html

[bearone2]

so i won't be able get into company technical/business/maint data.

oh no. how will i get to sleep worrying about this on an airplane that hasn't started certification testing.