Remote wipe of aircraft data

US 10,084,810 B2
Filed: 05/20/2016
Issued: 09/25/2018
Est. Priority Date: 05/20/2016
Status: Active Grant

First Claim

Patent Images

1. An application interface to an in-flight entertainment and communication (IFEC) computer system on board an aircraft for selectively wiping data stored thereon, the application interface comprising:

a remote control interface in communication with a wide area network connection and receptive to a potential attack indicator from a remote client computer system;

an attack classifier that assigns an attack severity classification based upon the potential attack indicator received by the remote control interface;

a stored data cataloger including a catalog of individual predefined blocks of data stored on the IFEC computer system with each block assigned a data sensitivity classification, and an inventory of each predefined block of data associated with the data sensitivity classification being maintained as a data inventory list;

a controller in communication with the attack classifier and the stored data cataloger, the controller designating selected ones of the predefined blocks of data to be deleted in accordance with an attack attempt response that correlates the data sensitivity classification of the predefined blocks of data to the attack severity classifications; and

a data removal engine in communication with the controller and a database of the IFEC computer system on which the predefined blocks of data are stored, the data removal engine implementing the deletion operations on the database as designated in the attack attempt response for the selected ones of the predefined blocks of data.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In the selective wiping of data stored on an aircraft Inflight Entertainment and Communications (IFEC) computer system, a potential attack indicator generated in response to a detection of an attack attempt that is received from a remote manager client computer system. The potential attack indicator includes an attack severity classification, which is correlated to one of a plurality of attack attempt responses. Each of the attack attempt responses correspond to a data sensitivity classification, and each predefined block of data stored on the IFEC computer system is assigned a data sensitivity classification. According to the attack attempt response that was correlated to the received attack severity classification, the predefined blocks of data assigned to the data sensitivity classification corresponding to the attack attempt response are deleted.

11 Citations

20 Claims

1. An application interface to an in-flight entertainment and communication (IFEC) computer system on board an aircraft for selectively wiping data stored thereon, the application interface comprising:
- a remote control interface in communication with a wide area network connection and receptive to a potential attack indicator from a remote client computer system;
  
  an attack classifier that assigns an attack severity classification based upon the potential attack indicator received by the remote control interface;
  
  a stored data cataloger including a catalog of individual predefined blocks of data stored on the IFEC computer system with each block assigned a data sensitivity classification, and an inventory of each predefined block of data associated with the data sensitivity classification being maintained as a data inventory list;
  
  a controller in communication with the attack classifier and the stored data cataloger, the controller designating selected ones of the predefined blocks of data to be deleted in accordance with an attack attempt response that correlates the data sensitivity classification of the predefined blocks of data to the attack severity classifications; and
  
  a data removal engine in communication with the controller and a database of the IFEC computer system on which the predefined blocks of data are stored, the data removal engine implementing the deletion operations on the database as designated in the attack attempt response for the selected ones of the predefined blocks of data.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The application interface of claim 1, further comprising a security module that validates the received potential attack indicator based upon an authentication certificate transmitted from the remote manager client computer system.
  - 3. The application interface of claim 1, wherein the data removal engine includes a secure wipe module that overwrites the designated ones of the predefined blocks of data for deletion in one or more passes.
  - 4. The application interface of claim 1, wherein:
    - the attack severity classification is defined as a numerical value within a tiered range of a plurality of values; and
      
      the data sensitivity classification is defined as a numerical value within a tiered range of plurality of values.
  - 5. The application interface of claim 4, wherein the attack severity classification is related to the data sensitivity classification.
  - 6. The application interface of claim 4, wherein the attack attempt response correlated to a first attack severity classification includes the attack attempt response correlated to a second attack severity classification that is of a higher tier than the first attack severity classification.
  - 7. The application interface of claim 1, wherein at least one of the predefined blocks of data is a multimedia content file.
  - 8. The application interface of claim 1, wherein at least one of the predefined blocks of data is a database record entry.

9. A method for selectively wiping data stored on an in-flight entertainment and communications (IFEC) computer system, the method comprising:
- receiving a potential attack indicator from a remote manager client computer system, the potential attack indicator being generated in response to a detection of an attack attempt against the IFEC computer system and including an attack severity classification;
  
  correlating, on the IFEC computer system, the attack severity classification to one of a plurality of attack attempt responses each corresponding to a data sensitivity classification, each of a plurality of predefined blocks of data stored on the IFEC computer system being assigned one of the data sensitivity classifications; and
  
  deleting, from the IFEC computer system according to the attack attempt response that was correlated to the received attack severity classification, the predefined blocks of data that are assigned the data sensitivity classification corresponding to the attack attempt response.
- View Dependent Claims (10, 11, 12, 13, 14)
- - 10. The method of claim 9, wherein prior to deleting the predefined blocks of data that are assigned the data sensitivity classification corresponding to the attack attempt response, an access request from the remote manager client computer system to the IFEC computer system is validated with a digital certificate provided by the remote manager client computer system.
  - 11. The method of claim 9, wherein the step of deleting the predefined blocks of data includes overwriting the predefined blocks of data one or more times.
  - 12. The method of claim 9, wherein:
    - the attack severity classification is defined as a numerical value within a range of a plurality of tiered values; and
      
      the data sensitivity classification is defined as a numerical value within a range of plurality of tiered values.
  - 13. The method of claim 12, wherein the attack severity classification is related to the data sensitivity classification.
  - 14. The method of claim 12, wherein the attack attempt response correlated to a first attack severity classification includes the attack attempt response correlated to a second attack severity classification that is of a higher tier than the first attack severity classification.

15. A system for selectively wiping data stored on a vehicle entertainment system, the system comprising:
- a remote control interface in communication with a wide area network connection and receptive to a potential attack indicator from a client computer system on the vehicle storing different kinds of data;
  
  an attack classifier that assigns an attack severity classification based upon the potential attack indicator received by the remote control interface;
  
  an inventory of the different kinds of data with each kind of data assigned a data sensitivity classification;
  
  a controller in communication with the attack classifier designates selected kinds of data to be deleted in accordance with an attack attempt response that correlates the data sensitivity classification of the kind of data to the attack severity classifications based on the inventory; and
  
  a data removal engine in communication with the controller and the client computer system in which the data removal engine performs deletion operations corresponding to the attack attempt response for the selected ones kinds of data.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The system of claim 15, further comprising a security module that validates the received potential attack indicator based upon an authentication certificate transmitted from the client computer system.
  - 17. The system of claim 15, wherein the data removal engine includes a secure wipe module that overwrites data for deletion in one or more passes.
  - 18. The system of claim 15, wherein:
    - the attack severity classification is defined as a numerical value within a tiered range of a plurality of values; and
      
      the data sensitivity classification is defined as a numerical value within a tiered range of plurality of values.
  - 19. The system of claim 15, wherein the attack severity classification is related to the data sensitivity classification.
  - 20. The system of claim 15, where the different kinds of data include at least multimedia content data and financial data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Panasonic Avionics Corporation (Panasonic Holdings Corporation)
Original Assignee
Panasonic Avionics Corporation (Panasonic Holdings Corporation)
Inventors
Watson, Philip, Bates, Steven
Primary Examiner(s)
Zhao, Don G

Application Number

US15/160,371
Publication Number

US 20170339179A1
Time in Patent Office

858 Days
Field of Search
US Class Current
CPC Class Codes

H04L 63/0823   using certificates cryptogr...

H04L 63/1433   Vulnerability analysis

H04L 63/1441   Countermeasures against mal...

H04L 67/12   specially adapted for propr...

Remote wipe of aircraft data

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

11 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Remote wipe of aircraft data

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

11 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links