Adaptive, multi-level security for flight deck applications hosted on mobile platforms

US 9,092,611 B1
Filed: 06/11/2012
Issued: 07/28/2015
Est. Priority Date: 06/11/2012
Status: Active Grant

First Claim

Patent Images

1. A mobile computing platform comprising:

a processor;

memory connected to the processor;

a security interface interposed between the processor and a certified avionics system, the security interface configured to isolate the processor from the certified avionics system and restrict the processor'"'"'s ability to extract data from the certified avionics system; and

computer executable program code configured to execute on the processor,wherein the computer executable program code is configured to;

identify one or more security levels, each of the one or more security levels defined by the nature of a network connected system, each of the one or more security levels further associated with at least one of a system interaction, a data transfer or a data manipulation being attempted by an application, the application being configured to interact with the certified aircraft avionics system;

authenticate the application to allow the certified avionics system to download data from the mobile computing platform; and

restrict the application from allowing the certified avionics system to download data from the mobile platform; and

wherein the one or more security levels ensure that the application conforms to one or more avionic system certification standards.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A mobile computing platform for processing data in an environment requiring multiple levels of authentication may include processes to authenticate various applications at each of the multiple levels. The mobile computing platform may integrate with aircraft avionics to provide data from applications to a certified avionics system.

Citations

20 Claims

1. A mobile computing platform comprising:
- a processor;
  
  memory connected to the processor;
  
  a security interface interposed between the processor and a certified avionics system, the security interface configured to isolate the processor from the certified avionics system and restrict the processor'"'"'s ability to extract data from the certified avionics system; and
  
  computer executable program code configured to execute on the processor,wherein the computer executable program code is configured to;
  
  identify one or more security levels, each of the one or more security levels defined by the nature of a network connected system, each of the one or more security levels further associated with at least one of a system interaction, a data transfer or a data manipulation being attempted by an application, the application being configured to interact with the certified aircraft avionics system;
  
  authenticate the application to allow the certified avionics system to download data from the mobile computing platform; and
  
  restrict the application from allowing the certified avionics system to download data from the mobile platform; and
  
  wherein the one or more security levels ensure that the application conforms to one or more avionic system certification standards.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The mobile computing platform of claim 1, further comprising a network connection device connected to the processor.
  - 3. The mobile computing platform of claim 2, wherein the network connection device is configured to connect to the certified aircraft avionics system.
  - 4. The mobile computing platform of claim 3, wherein the one or more security levels includes a security level associated with data transfer to the certified avionics system.
  - 5. The mobile computing platform of claim 1, further comprising a data storage, wherein the data storage is configured to store one or more credentials pertaining to the one or more security levels.
  - 6. The mobile computing platform of claim 5, wherein the computer executable program code is further configured to:
    - determine if a credential is stored in the data storage; and
      
      retrieve the credential stored in the data storage.
  - 7. The mobile computing platform of claim 5, wherein the computer executable program code is further configured to:
    - ask a user to provide a credential;
      
      receive the credential from the user; and
      
      store the credential in the data storage.
  - 8. The mobile computing platform of claim 7, wherein the computer executable program code is further configured to delete the one or more credentials stored in the data storage when a period of time has elapsed.
  - 9. The mobile computing platform of claim 1, wherein the computer executable program code is further configured to prohibit the application from performing the at least one of a system interaction, the data transfer or the data manipulation requiring the one or more security levels.

10. A method of authenticating an application in a mobile computing platform comprising:
- identifying one or more security levels, each of the one or more security levels defined by the nature of a network connected system, each of the one or more security levels further associated with at least one of a system interaction, a data transfer or a data manipulation being attempted by the application, the application being configured to interact with a certified aircraft avionics system;
  
  isolating the mobile computing platform from the certified avionics system to restrict the mobile computing platform'"'"'s ability to extract data from the certified avionics system; and
  
  authenticating the application to allow the certified avionics system to download data from the mobile computing platform;
  
  restricting the application from allowing the certified avionics system to download data from the mobile platform; and
  
  wherein the one or more security levels ensure that the application conforms to one or more avionic system certification standards.
- View Dependent Claims (11, 12, 13, 14, 15, 16)
- - 11. The method of claim 10, wherein the system interaction comprises a connection to a certified aircraft avionics system.
  - 12. The method of claim 11, wherein the one or more security levels includes a security level associated with data transfer to the certified avionics system.
  - 13. The method of claim 10, further comprising:
    - determining if a credential is stored in a data storage; and
      
      retrieving the credential stored in the data storage.
  - 14. The method of claim 10, further comprising:
    - asking a user to provide a credential;
      
      receiving the credential from the user; and
      
      storing the credential in a data storage.
  - 15. The method of claim 14, further comprising deleting one or more credentials stored in the data storage when a period of time has elapsed.
  - 16. The method of claim 10, further comprising prohibiting the application from performing the at least one of the system interaction, the data transfer or the data manipulation requiring the one or more security levels.

17. An avionics system comprising:
- a processor configured to;
  
  connect to a mobile computing platform; and
  
  receive data from an application executing on the mobile computing platform; and
  
  a security interface interposed between the processor and the mobile computing platform, the security interface configured to isolate the processor from the mobile computing platform and restrict the mobile computing platform'"'"'s ability to extract data from the avionics system,wherein the mobile computing platform is configured to;
  
  authenticate the application for connection to one or more elements in the avionics system, wherein each of the one or more elements in the avionics system requires a certification level and allow the avionics system to download data from the mobile computing platform;
  
  identify one or more security levels defined by the nature of each of the one or more elements, each of the one or more security levels further associated with at least one of a system interaction, a data transfer or a data manipulation being attempted by the application, the application being configured to interact with a certified aircraft avionics system.
- View Dependent Claims (18, 19, 20)
- - 18. The avionics system of claim 17, wherein at least one of the one or more elements in the avionics system is configured to interact with the application.
  - 19. The avionics system of claim 17, further configured to send data to the application executing on the mobile computing platform, wherein the mobile computing platform is configured to authenticate the application to receive such data.
  - 20. The avionics system of claim 19, wherein the sent data comprises at least one of flight dispatch data and flight planning data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Rockwell Collins, Inc. (Rtx Corporation)
Original Assignee
Rockwell Collins, Inc. (Rtx Corporation)
Inventors
Heinrich, Richard E.
Primary Examiner(s)
Su, Sarah

Application Number

US13/493,473
Time in Patent Office

1,142 Days
Field of Search

726/2, 726/6, 726/26, 726/27, 726/28, 726/29, 713/168
US Class Current

1/1
CPC Class Codes

G06F 21/10   Protecting distributed prog...

G06F 21/121   Restricting unauthorised ex...

G06F 21/31   User authentication

G06F 21/44   Program or device authentic...

G06F 21/60   Protecting data

H04L 63/105   Multiple levels of security

H04L 67/12   specially adapted for propr...

H04W 12/08   Access security

Adaptive, multi-level security for flight deck applications hosted on mobile platforms

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Adaptive, multi-level security for flight deck applications hosted on mobile platforms

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links