University of Michigan, University of Pennsylvania and NASA researchers have discovered a major vulnerability in network technology used in spacecraft, aircraft, power generation systems and industrial control systems.
News portal Michigan News reported that the vulnerability exploits a network protocol and hardware system known as ethernet or TTE. This system allows mission-critical devices such as life support systems to coexist on the same network hardware with less critical devices such as passenger Wi-Fi or data acquisition systems.
TTE was considered secure for over a decade because the two types of network traffic were never allowed to affect each other on the same endpoint. It was originally set up with the aim of increasing efficiency while reducing network costs, the researchers said.
But researchers have now managed to circumvent this hurdle with an attack called PCspooF, and they have discussed it extensively as part of an article titled “PCspooF: Compromising the Safety of Time-Triggered Ethernet.”
The team demonstrated the vulnerability using real NASA hardware to simulate an Asteroid Orientation Test, specifically the stage at which a capsule must dock with a spacecraft. As the capsule tried to dock, the attack brought together vital and non-vital communication, interrupting messages passing through the system, creating a chain effect. Eventually, the capsule deviated from its course and completely missed the docking point.
While describing the risks, Barış Khashoggi, Assistant Professor of Faculty Development in the Department of Computer Science and Engineering at Morris Wellman, said, “What would be the harm if someone carried out this attack on a real spaceflight mission?” she asked.
However, to successfully carry out a PCSpooF attack, the attacker needs to place a small, malicious device on the network, meaning remote attacks are not possible.
The other good news is that the defect can be fixed relatively easily by replacing copper Ethernet with fiber optic cables or installing optical isolators between switches and untrusted devices. According to the researchers, this would eliminate the risk of electromagnetic interference, although it would affect performance.
40765
