Cybersecurity risk assessment for BVLOS RPAS

Alexandre, Rui Carlos Josino [UNIFESP]

Cybersecurity risk assessment for BVLOS RPAS

Detalhes bibliográficos
Ano de defesa:	2022
Autor(a) principal:	Alexandre, Rui Carlos Josino [UNIFESP]
Orientador(a):	Martins, Luiz Eduardo Galvão [UNIFESP]
Banca de defesa:	Não Informado pela instituição
Tipo de documento:	Dissertação
Tipo de acesso:	Acesso aberto
dARK ID:	ark:/48912/00130000281n8
Idioma:	eng
Instituição de defesa:	Universidade Federal de São Paulo
Programa de Pós-Graduação:	Não Informado pela instituição
Departamento:	Não Informado pela instituição
País:	Não Informado pela instituição
Palavras-chave em Português:	BVLOS RPAS Drone Airworthiness Cybersecurity Risk assessment
Link de acesso:	https://repositorio.unifesp.br/handle/11600/65713
Resumo:	Worldwide, the professional use of Remotely Piloted Aircraft System (RPAS) or "drone" is already a reality in activities such as infrastructure inspections, topographical surveys, agriculture, surveillance, and even delivery of goods. However, these operations are still quite limited by several factors such as intricate regulation, technological limitations, safety concerns, and public acceptance. It is expected that more complex operations as BVLOS (Beyond Visual Line-Of-Sight) flights over urban environments will soon become routine, and consequently enabling several business opportunities that are only dreamed today: from package delivery to transport of people. Nevertheless, to become a reality, countless problems will shortly need solutions, for example, the integration of drones into airspace (in a safe and scalable way), harmonization of rules, development of standards, certification criteria, and issues related to cybersecurity. Recently, some Civil Aviation Authorities have expressed concerns about the cybersecurity of drones and possible impacts on their safety; however, due to factors such as the absence of rules, unusual technology, knowledge gaps, etc., there is a natural difficulty for both manufacturers and aviation authority in comprehending how to deal with cybersecurity issues. This work proposes studying the cybersecurity of RPAS in the professional context, evaluating items such as the RPAS concept of operations (ConOps), safety goals, vulnerabilities, cyber-attacks, and mitigations. Finally, we propose a cybersecurity risk assessment process called CARA (Cybersecurity Assessment for RPAS Airworthiness) which was evaluated in two stages: first through a survey with specialists in RPAS, aeronautical certification engineers, manufacturers, and consulting companies aiming to evaluate its structure and identify improvement points; second, three study cases were carried out with Brazilian companies in order to evaluate its application in real drones.

Metadados do item

id	UFSP_2a65edfae94851d1328f9cd97508ac19
oai_identifier_str	oai:repositorio.unifesp.br:11600/65713
network_acronym_str	UFSP
network_name_str	Repositório Institucional da UNIFESP
repository_id_str
spelling	http://lattes.cnpq.br/0203910403476737Alexandre, Rui Carlos Josino [UNIFESP]http://lattes.cnpq.br/8714018900240633Martins, Luiz Eduardo Galvão [UNIFESP]2022-10-06T17:09:45Z2022-10-06T17:09:45Z2022-08-26Worldwide, the professional use of Remotely Piloted Aircraft System (RPAS) or "drone" is already a reality in activities such as infrastructure inspections, topographical surveys, agriculture, surveillance, and even delivery of goods. However, these operations are still quite limited by several factors such as intricate regulation, technological limitations, safety concerns, and public acceptance. It is expected that more complex operations as BVLOS (Beyond Visual Line-Of-Sight) flights over urban environments will soon become routine, and consequently enabling several business opportunities that are only dreamed today: from package delivery to transport of people. Nevertheless, to become a reality, countless problems will shortly need solutions, for example, the integration of drones into airspace (in a safe and scalable way), harmonization of rules, development of standards, certification criteria, and issues related to cybersecurity. Recently, some Civil Aviation Authorities have expressed concerns about the cybersecurity of drones and possible impacts on their safety; however, due to factors such as the absence of rules, unusual technology, knowledge gaps, etc., there is a natural difficulty for both manufacturers and aviation authority in comprehending how to deal with cybersecurity issues. This work proposes studying the cybersecurity of RPAS in the professional context, evaluating items such as the RPAS concept of operations (ConOps), safety goals, vulnerabilities, cyber-attacks, and mitigations. Finally, we propose a cybersecurity risk assessment process called CARA (Cybersecurity Assessment for RPAS Airworthiness) which was evaluated in two stages: first through a survey with specialists in RPAS, aeronautical certification engineers, manufacturers, and consulting companies aiming to evaluate its structure and identify improvement points; second, three study cases were carried out with Brazilian companies in order to evaluate its application in real drones.Não recebi financiamentolegmartins@unifesp.br243 f.https://repositorio.unifesp.br/handle/11600/65713ark:/48912/00130000281n8engUniversidade Federal de São Pauloinfo:eu-repo/semantics/openAccessBVLOSRPASDroneAirworthinessCybersecurityRisk assessmentCybersecurity risk assessment for BVLOS RPASinfo:eu-repo/semantics/masterThesisinfo:eu-repo/semantics/publishedVersionreponame:Repositório Institucional da UNIFESPinstname:Universidade Federal de São Paulo (UNIFESP)instacron:UNIFESPInstituto de Ciência e Tecnologia (ICT)Mestrado Profissional Interdisciplinar em Inovação TecnológicaProcessos e Produtos TecnológicosORIGINALDissertation_UNIFESP_MPIT_Rui_Rev_1.16_08.09.22 - pós-defesa (1).pdfDissertation_UNIFESP_MPIT_Rui_Rev_1.16_08.09.22 - pós-defesa (1).pdfDissertacao Rui Carlosapplication/pdf4717195https://repositorio.unifesp.br/bitstreams/63352156-3e87-4fe6-adb9-fc1de0ee85a1/download0d00203cc84a7d22fb1864f4b5f69b58MD53LICENSElicense.txtlicense.txttext/plain; charset=utf-85793https://repositorio.unifesp.br/bitstreams/f5be9552-8cd9-42cb-86ed-f444fadc2b0b/downloadaf2955192260cd5fc7deedd9b9bd027aMD52TEXTDissertation_UNIFESP_MPIT_Rui_Rev_1.16_08.09.22 - pós-defesa (1).pdf.txtDissertation_UNIFESP_MPIT_Rui_Rev_1.16_08.09.22 - pós-defesa (1).pdf.txtExtracted texttext/plain113613https://repositorio.unifesp.br/bitstreams/59b9501d-ac2b-418c-96e9-215ab803bfba/download40d48f956962c85209e79abd5f816c1fMD57THUMBNAILDissertation_UNIFESP_MPIT_Rui_Rev_1.16_08.09.22 - pós-defesa (1).pdf.jpgDissertation_UNIFESP_MPIT_Rui_Rev_1.16_08.09.22 - pós-defesa (1).pdf.jpgGenerated Thumbnailimage/jpeg3553https://repositorio.unifesp.br/bitstreams/25dd470e-2d4d-4136-867b-95479a15e865/downloadf3e31942d385c559f3ddc6393963257bMD5811600/657132024-08-12 00:09:59.628oai:repositorio.unifesp.br:11600/65713https://repositorio.unifesp.brRepositório InstitucionalPUBhttp://www.repositorio.unifesp.br/oai/requestbiblioteca.csp@unifesp.bropendoar:34652024-08-12T00:09:59Repositório Institucional da UNIFESP - Universidade Federal de São Paulo (UNIFESP)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
dc.title.pt_BR.fl_str_mv	Cybersecurity risk assessment for BVLOS RPAS
title	Cybersecurity risk assessment for BVLOS RPAS
spellingShingle	Cybersecurity risk assessment for BVLOS RPAS Alexandre, Rui Carlos Josino [UNIFESP] BVLOS RPAS Drone Airworthiness Cybersecurity Risk assessment
title_short	Cybersecurity risk assessment for BVLOS RPAS
title_full	Cybersecurity risk assessment for BVLOS RPAS
title_fullStr	Cybersecurity risk assessment for BVLOS RPAS
title_full_unstemmed	Cybersecurity risk assessment for BVLOS RPAS
title_sort	Cybersecurity risk assessment for BVLOS RPAS
author	Alexandre, Rui Carlos Josino [UNIFESP]
author_facet	Alexandre, Rui Carlos Josino [UNIFESP]
author_role	author
dc.contributor.advisorLattes.pt_BR.fl_str_mv	http://lattes.cnpq.br/0203910403476737
dc.contributor.authorLattes.pt_BR.fl_str_mv	http://lattes.cnpq.br/8714018900240633
dc.contributor.author.fl_str_mv	Alexandre, Rui Carlos Josino [UNIFESP]
dc.contributor.advisor1.fl_str_mv	Martins, Luiz Eduardo Galvão [UNIFESP]
contributor_str_mv	Martins, Luiz Eduardo Galvão [UNIFESP]
dc.subject.por.fl_str_mv	BVLOS RPAS Drone Airworthiness Cybersecurity Risk assessment
topic	BVLOS RPAS Drone Airworthiness Cybersecurity Risk assessment
description	Worldwide, the professional use of Remotely Piloted Aircraft System (RPAS) or "drone" is already a reality in activities such as infrastructure inspections, topographical surveys, agriculture, surveillance, and even delivery of goods. However, these operations are still quite limited by several factors such as intricate regulation, technological limitations, safety concerns, and public acceptance. It is expected that more complex operations as BVLOS (Beyond Visual Line-Of-Sight) flights over urban environments will soon become routine, and consequently enabling several business opportunities that are only dreamed today: from package delivery to transport of people. Nevertheless, to become a reality, countless problems will shortly need solutions, for example, the integration of drones into airspace (in a safe and scalable way), harmonization of rules, development of standards, certification criteria, and issues related to cybersecurity. Recently, some Civil Aviation Authorities have expressed concerns about the cybersecurity of drones and possible impacts on their safety; however, due to factors such as the absence of rules, unusual technology, knowledge gaps, etc., there is a natural difficulty for both manufacturers and aviation authority in comprehending how to deal with cybersecurity issues. This work proposes studying the cybersecurity of RPAS in the professional context, evaluating items such as the RPAS concept of operations (ConOps), safety goals, vulnerabilities, cyber-attacks, and mitigations. Finally, we propose a cybersecurity risk assessment process called CARA (Cybersecurity Assessment for RPAS Airworthiness) which was evaluated in two stages: first through a survey with specialists in RPAS, aeronautical certification engineers, manufacturers, and consulting companies aiming to evaluate its structure and identify improvement points; second, three study cases were carried out with Brazilian companies in order to evaluate its application in real drones.
publishDate	2022
dc.date.accessioned.fl_str_mv	2022-10-06T17:09:45Z
dc.date.available.fl_str_mv	2022-10-06T17:09:45Z
dc.date.issued.fl_str_mv	2022-08-26
dc.type.driver.fl_str_mv	info:eu-repo/semantics/masterThesis
dc.type.status.fl_str_mv	info:eu-repo/semantics/publishedVersion
format	masterThesis
status_str	publishedVersion
dc.identifier.uri.fl_str_mv	https://repositorio.unifesp.br/handle/11600/65713
dc.identifier.dark.fl_str_mv	ark:/48912/00130000281n8
url	https://repositorio.unifesp.br/handle/11600/65713
identifier_str_mv	ark:/48912/00130000281n8
dc.language.iso.fl_str_mv	eng
language	eng
dc.rights.driver.fl_str_mv	info:eu-repo/semantics/openAccess
eu_rights_str_mv	openAccess
dc.format.none.fl_str_mv	243 f.
dc.publisher.none.fl_str_mv	Universidade Federal de São Paulo
publisher.none.fl_str_mv	Universidade Federal de São Paulo
dc.source.none.fl_str_mv	reponame:Repositório Institucional da UNIFESP instname:Universidade Federal de São Paulo (UNIFESP) instacron:UNIFESP
instname_str	Universidade Federal de São Paulo (UNIFESP)
instacron_str	UNIFESP
institution	UNIFESP
reponame_str	Repositório Institucional da UNIFESP
collection	Repositório Institucional da UNIFESP
bitstream.url.fl_str_mv	https://repositorio.unifesp.br/bitstreams/63352156-3e87-4fe6-adb9-fc1de0ee85a1/download https://repositorio.unifesp.br/bitstreams/f5be9552-8cd9-42cb-86ed-f444fadc2b0b/download https://repositorio.unifesp.br/bitstreams/59b9501d-ac2b-418c-96e9-215ab803bfba/download https://repositorio.unifesp.br/bitstreams/25dd470e-2d4d-4136-867b-95479a15e865/download
bitstream.checksum.fl_str_mv	0d00203cc84a7d22fb1864f4b5f69b58 af2955192260cd5fc7deedd9b9bd027a 40d48f956962c85209e79abd5f816c1f f3e31942d385c559f3ddc6393963257b
bitstream.checksumAlgorithm.fl_str_mv	MD5 MD5 MD5 MD5
repository.name.fl_str_mv	Repositório Institucional da UNIFESP - Universidade Federal de São Paulo (UNIFESP)
repository.mail.fl_str_mv	biblioteca.csp@unifesp.br
_version_	1865648720024961024

Cybersecurity risk assessment for BVLOS RPAS

Registros relacionados