Section Contents

Joint industry press release: Message security for ground-to-ground messaging is vital and lacking

Civil and Military Air Traffic Control ground to ground communications are used to exchange important and sensitive messages such as flight plans and metrological reports. Currently security of those messages relies on physical measures such as the security of servers and network links. Components needed to build messaging systems that incorporate security into the application are now becoming available, in line with the International Civil Aviation Organization's new standard for ground to ground messaging known by the acronym AMHS (Air Traffic Services (ATS) Message Handling System). Civil and Military Aviation Authorities need to incorporate 'AMHS Security' into their deployment plans for new ground to ground messaging systems in this post 9/11 environment.

(February 3rd, 2006) - Ground to ground messaging in the aviation market is currently dominated by systems based on the AFTN (Aeronautical Fixed Telecommunication Network) standard. With new deployments based on ICAO's AMHS standard now being specified and introduced, Aviation Authorities are having to make decisions on the extent to which they adopt the AMHS specifications, choosing between two options:

  • The Basic ATS Message Service which essentially provides the same functionality (and security provisions) as the AFTN system it replaces.
  • The Extended ATS Message Service which provides for functionality beyond that of AFTN, including important security measures.

Security provisions

One key differentiator between AFTN/AMHS Basic and AMHS Extended is the approach to message security. Both AFTN and the AMHS Basic service lack application-level security, relying instead on the physical security of servers and network links. Whilst in practice this offers fairly good security it is less than ideal, providing little defense against messages being tampered with in transit or false messages being injected into the system.

The Extended ATS Message service provides for two security services to be integrated into the application:

  1. Content integrity - ensuring that a message has not been tampered with in transit.
  2. Origin authentication - enabling the recipient to verify that the message comes from the claimed sender.

Both of these services are based on the widely used X.509 digital signature standard supported by public key infrastructure (PKI).

Message security needs to be planned for now

The signatories to this press release believe that AMHS Security offers a way to address the threats of message tampering and message forging using a straightforward mechanism that can easily co-exist with both AFTN and the Basic ATS Message Service.

The components to build AMHS Security (such as client applications that can support the features) are now available, as interoperability with clients that do not support AMHS Security is straightforward, deployment of AMHS Security is relatively simple.

Whilst for many Authorities the deployment of a system supporting AMHS is still some time off, those same authorities are now engaged in planning for the transition to AMHS and we believe that incorporating AMHS security into their deployment plans is essential.

Contact

For more information on AMHS Security and AMHS in general, contact one of the signatory organizations listed below:

About Isode

Isode occupies a low profile but vital position supplying email and directory server software to some of the world's most security conscious organizations. Working with partners to supply solutions to the intelligence, military, aviation, government and service provider markets, Open Standards and innovation are at the core of the company's continued success.

Contact Information

Isode
Will Sheward
+44 (20) 8783 2965
will.sheward@isode.com

Friday, February 3rd, 2006
Copyright © 2007 Isode privacy   feedback Subscribe to our rss newsfeed