Verification of devices connected to aircraft data processing systems
First Claim
1. A method for accessing an aircraft network data processing system, comprising:
- receiving, by a first data processing device, an expected value from a hash function on the first data processing device that reflects updates to software on the first data processing device, wherein the expected value is generated by a second device other than the first data processing device;
receiving, by the first data processing device, a first digital signature from the second device indicating a first source of the expected value;
generating, by the first data processing device, an actual value from the hash function that reflects the updates to the software;
generating on the first data processing device a second digital signature that indicates a second source of the actual value;
connecting the first data processing device to the aircraft network data processing system on an aircraft through an interface, wherein the first data processing device is separate from the data processing system on the aircraft;
sending the expected value and the actual value from the first data processing device to the aircraft network data processing system;
sending the first digital signature and the second digital signature from first the data processing device to the aircraft network data processing system;
comparing, by the aircraft network data processing system, the expected value to the actual value to determine whether the first data processing device is allowed to access the aircraft network data processing system;
determining on the aircraft network data processing system whether the first digital signature and the second digital signature are from trusted or approved sources as an additional step in determining whether the first data processing device is allowed to access the aircraft network data processing system; and
accessing the aircraft network data processing system by the first data processing device in response to a determination that the first data processing device is allowed to access the aircraft network data processing system.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method for allowing access to an aircraft network data processing system on an aircraft. A data processing device receives an expected measurement of software on the data processing device. The expected measurement is generated by a device other than the data processing device. The data processing device identifies an actual measurement of the software on the data processing device. The data processing device is connected to the aircraft network data processing system on an aircraft. The expected measurement and the actual measurement are sent from the data processing device to the aircraft network data processing system to determine whether the data processing device is allowed to access the aircraft network data processing system. The data processing device accesses the aircraft network data processing system in response to a determination that the data processing device is allowed to access the aircraft network data processing system.
-
Citations
16 Claims
-
1. A method for accessing an aircraft network data processing system, comprising:
-
receiving, by a first data processing device, an expected value from a hash function on the first data processing device that reflects updates to software on the first data processing device, wherein the expected value is generated by a second device other than the first data processing device; receiving, by the first data processing device, a first digital signature from the second device indicating a first source of the expected value; generating, by the first data processing device, an actual value from the hash function that reflects the updates to the software; generating on the first data processing device a second digital signature that indicates a second source of the actual value; connecting the first data processing device to the aircraft network data processing system on an aircraft through an interface, wherein the first data processing device is separate from the data processing system on the aircraft; sending the expected value and the actual value from the first data processing device to the aircraft network data processing system; sending the first digital signature and the second digital signature from first the data processing device to the aircraft network data processing system; comparing, by the aircraft network data processing system, the expected value to the actual value to determine whether the first data processing device is allowed to access the aircraft network data processing system; determining on the aircraft network data processing system whether the first digital signature and the second digital signature are from trusted or approved sources as an additional step in determining whether the first data processing device is allowed to access the aircraft network data processing system; and accessing the aircraft network data processing system by the first data processing device in response to a determination that the first data processing device is allowed to access the aircraft network data processing system. - View Dependent Claims (2, 3, 4, 5, 6, 14, 16)
-
-
7. A method for allowing access to an aircraft network data processing system, comprising:
-
connecting a portable data processing device to the aircraft network data processing system through an interface; receiving, from the portable data processing device by the aircraft network data processing system on an aircraft, an expected value from a hash function on the portable data processing device that reflects updates to software on the portable data processing device, wherein the expected value is generated by a device other than the portable data processing device and the portable data processing device is a separate device from the aircraft network data processing system; receiving, by the aircraft network data processing system, a first digital signature from the portable data processing device indicating a first source of the expected value; generating on the portable data processing device an actual value from the hash function that reflects the updates to the software; generating on the portable data processing device a second digital signature that indicates a second source of the actual value; receiving, from the portable data processing device by the aircraft network data processing system, the actual value; comparing, by the aircraft network data processing system on the aircraft, the expected value to the actual value; determining, by the aircraft network data processing system, whether the second digital signature and the first digital signature are from trusted or approved sources; and allowing the portable data processing device to access the aircraft network data processing system responsive to a determination that the expected value matches the actual value and that the first digital signature and the second digital signature are from trusted or approved sources. - View Dependent Claims (8, 9, 10)
-
-
11. An apparatus comprising:
-
an interface configured to connect the apparatus to an aircraft network data processing system on an aircraft, the apparatus being portable, the apparatus is separate from the aircraft network data processing system; software stored on the apparatus, the software and updates to the software provided by a provider distinct from the apparatus and the aircraft network data processing system; a measurement module configured to identify an actual value from a hash function on the apparatus that reflects the updates to the software stored on the apparatus; and a processor unit configured to receive an expected value from the provider for the hash function on the apparatus that reflects the updates to the software stored on the apparatus and to receive a first digital signature from the provider indicating a first source of the expected value is the provider, wherein the expected value is generated by the provider, and further configured to generate a second digital signature that indicates a second source of the actual value, send the expected value, the actual value, the first digital signature and the second digital signature from the apparatus to the aircraft network data processing system to determine whether the apparatus is allowed to access the aircraft network data processing system, and to access the aircraft network data processing system responsive to a determination that the apparatus is allowed to access the aircraft network data processing system. - View Dependent Claims (12, 13, 15)
-
Specification