AIR TRAFFIC CONROLLERS AND PILOTS
Air Traffic Controllers And Pilots Meeting Point
Monday, May 11, 2009
Intrusion Detection in Air Traffic Control Systems: unauthorized access to information
Intrusion Detection in Air Traffic Control Systems: unauthorized access to information
Intrusion Detection in Air Traffic Control Systems: unauthorized access to information
Blue
Summary: On May 4, 2009, we issued our report on Federal Aviation Administration (FAA) web applications security and intrusion detection in air traffic control (ATC) systems, requested by the Ranking Minority Members of the full House Transportation and Infrastructure Committee and its Aviation Subcommittee. We found that web applications used in supporting ATC systems operations were not properly secured to prevent attacks or unauthorized access. During the audit, our staff gained unauthorized access to information stored on web application computers and an ATC system, and confirmed system vulnerability to malicious code attacks. In addition, we found that FAA had not established adequate intrusion–detection capability to monitor and detect potential cyber security incidents at ATC facilities. Intrusion–detection systems have been deployed to only 11 (out of hundreds of) ATC facilities. Also, cyber incidents detected were not remediated in a timely manner.
Publish at Scribd
or
explore
others:
How-to-Guides & Manu
mind
ibm
No comments:
Post a Comment
Newer Post
Older Post
Home
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment