UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

ARINC 842

GUIDANCE FOR USAGE OF DIGITAL CERTIFICATES

inactive
Buy Now
Organization: ARINC
Publication Date: 12 December 2013
Status: inactive
Page Count: 107
scope:

This document sets forth guidance for life-cycle management of public/private (i.e., asymmetric) keys that are used to secure interactions among systems. The devices included within the scope of this guidance.

The scope of this guidance is not intended to include:

  • Any off-board, ground-based systems, including those with which aircraft systems and operator-controlled PEDs may communicate. Ground-based systems do not have the unique constraints and challenges associated with global, mobile aircraft systems; therefore, they are expected to reference guidance in ATA Spec 42 as applicable to typical IT environments.
  • Passenger-owned devices, which are beyond the control of the aircraft operator.
  • Operator-controlled PEDs that are treated like passenger-owned devices.

This document is meant to be a companion to Air Transport Association (ATA) Spec 42, which is the work product of the ATA Digital Security Working Group (DSWG). ATA Spec 42 specifies a digital identity management framework and standard digital certificate profiles recommended for use across the air transport industry, as well as standard policies governing the issuance and use of these certificates and the levels of assurance that may be conveyed in a digital identity. This document specifically addresses ATA Spec 42 in the context of actual aircraft deployment by providing guidance to aircraft manufacturers, equipment suppliers, and operators on topics including:

Purpose and Objectives

Newer generations of aircraft in production and use today are equipped with security applications that rely on digital certificates. It is expected that future aircraft will use certificates for increasing numbers of applications. The purpose of this document is to provide guidance for key life-cycle management, which refers to the phases through which digital certificates and associated cryptographic keys progress, from creation through usage to retirement.

The guidance is based on open international standards that are adapted to the aviation environment, recognizing that a typical commercial airplane has a long lifespan, its operational environment is highly complex and regulated, and multiple stakeholders operate ground-based systems that communicate with airplanes. Using a standardized and consistent key management approach, as proposed in this document, helps to reduce cost of design, implementation, and operation even across a heterogeneous fleet.

Document History

842-3
July 1, 2022
GUIDANCE FOR USAGE OF DIGITAL CERTIFICATES
Document Scope This document sets forth guidance for life-cycle management of public/private (i.e., asymmetric) keys that are used to secure interactions among systems. The devices included within...
ARINC 842
July 11, 2018
GUIDANCE FOR USAGE OF DIGITAL CERTIFICATES
This document sets forth guidance for life-cycle management of public/private (i.e., asymmetric) keys that are used to secure interactions among systems. The devices included within the scope of this...
ARINC 842
December 12, 2013
GUIDANCE FOR USAGE OF DIGITAL CERTIFICATES
This document sets forth guidance for life-cycle management of public/private (i.e., asymmetric) keys that are used to secure interactions among systems. The devices included within the scope of this...
ARINC 842
June 11, 2012
GUIDANCE FOR USAGE OF DIGITAL CERTIFICATES
This document sets forth guidance for life-cycle management of public/private (i.e., asymmetric) keys that are used to secure interactions among systems. The scope of this guidance is not intended...

References

This document references:
ARINC 835 - GUIDANCE FOR SECURITY OF LOADABLE SOFTWARE PARTS USING DIGITAL SIGNATURES
Published by ARINC on January 2, 2014
Purpose Airlines place a high value on aircraft information security. This document provides background and detailed technical information on existing methods to secure loadable software parts. A...
This document references:
EUROCAE ED 202 - AIRWORTHINESS SECURITY PROCESS SPECIFICATION
Published by EUROCAE on June 1, 2014
The guidance of this document adds to current guidance for aircraft certification to handle the threat of intentional unauthorized electronic interaction to aircraft safety. It adds data requirements...
This document references:
RTCA DO-326 - Airworthiness Security Process Specification
Published by RTCA on August 6, 2014
The guidance of this document adds to current guidance for aircraft certification to handle the threat of intentional unauthorized electronic interaction to aircraft safety. It adds data requirements...
This document references:
ITU-T X.680 - Information technology – Abstract Syntax Notation One (ASN.1): Specification of basic notation
Published by ITU-T on August 1, 2015
This Recommendation | International Standard provides a standard notation called Abstract Syntax Notation One (ASN.1) that is used for the definition of data types, values, and constraints on data...
This document references:
ITU-T X.509 - Information technology – Open Systems Interconnection – The Directory: Public-key and attribute certificate frameworks
Published by ITU-T on October 1, 2019
A description is not available for this item.
This document is referenced by:
EUROCAE ED 204 - INFORMATION SECURITY GUIDANCE FOR CONTINUING AIRWORTHINESS
Published by EUROCAE on September 1, 2020
ED-202A / DO-326A and ED-203A / DO-356A provide guidance in addressing airworthiness security during the aircraft product life cycle from project initiation until the aircraft Type Certificate...
This document is referenced by:
ARINC 839 - FUNCTION DEFINITON OF AIRBORNE MANAGER OF AIR-GROUND INTERFACE COMMUNICATIONS (MAGIC)
Published by ARINC on September 12, 2014
Purpose This standard defines an Internet Protocol (IP)-based communication management function for data communications called the Manager of Air/Ground Interface Communications (MAGIC). This...
This document is referenced by:
EUROCAE ED 76 - STANDARDS FOR PROCESSING AERONAUTICAL DATA
Published by EUROCAE on June 1, 2015
This standard provides minimum requirements for all phases of the data process applicable to the processing of aeronautical data, including quality assurance and QMS. This standard provides guidance...
This document is referenced by:
RTCA DO-200 - Standards for Processing Aeronautical Data
Published by RTCA on June 18, 2015
This standard provides minimum requirements for all phases of the data process applicable to the processing of aeronautical data, including quality assurance and QMS. This standard provides guidance...
This document is referenced by:
ARINC 628P9 - CABIN EQUIPMENT INTERFACES PART 9 CABIN INTERFACE NETWORK (CIN)
Published by ARINC on December 29, 2017
A description is not available for this item.
View Less
View All
Advertisement