Abstract
An approach to enhancing the cybersecurity of airborne systems is integrating certified secure products, given that the secure products demonstrate their compliance to the airworthiness standards. We conduct an evaluation of a COTS (Commercial Off The Shelf) secure product against DO-178C, so that it can be certified once integrated into an airborne system. Although the secure product has been certified under Common Criteria (CC), certifying it against DO-178C poses new challenges to the developer due to the different focuses of the two certification standards. While CC primarily focuses on evaluating the security features of a product, DO-178C places greater importance on ensuring the integrity of development assurance processes. This paper presents the insights that we obtained while addressing the challenges encountered during the evaluation under DO-178C.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
RTCA Inc. (Radio Technical Commission for Aeronautics) and EUROCAE (European Organization for Civil Aviation Equipment). DO-178C/ED-12C Software Considerations In Airborne Systems And Equipment Certification (2012)
Torens, C.: Safety versus security in aviation, comparing DO-178C with security standards. In: AIAA Scitech 2020 Forum, p. 0242 (2020)
Zalewski, J., Kornecki, A.: Trends and challenges in the aviation systems safety and cybersecurity. TASK Quart. 23(2), 159–175 (2019). https://doi.org/10.17466/tq2019/23.2/a
Gallina, B.: Quantitative evaluation of tailoring within spice-compliant security-informed safety-oriented process lines. J. Softw.: Evol. Process 32(3), e2212 (2020)
Gallina, B., Kashiyarandi, S., Zugsbratl, K., Geven, A.: Enabling cross-domain reuse of tool qualification certification artefacts. In: Bondavalli, A., Ceccarelli, A., Ortmeier, F. (eds.) SAFECOMP 2014. LNCS, vol. 8696, pp. 255–266. Springer, Cham (2014). https://doi.org/10.1007/978-3-319-10557-4_28
Gallina, B., Fabre, L.: Benefits of security-informed safety-oriented process line engineering (2015)
Blasum, H., Tverdyshev, S.: From a DO-178B certified separation kernel to common criteria security certification. SAE Technical Paper (2011)
U.S. Department of Transportation Federal Aviation Administration. Computing System Safety, no. AC 450.141-1A (2021)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2023 The Author(s), under exclusive license to Springer Nature Switzerland AG
About this paper
Cite this paper
Shan, L. (2023). Towards DO-178C Compliance of a Secure Product. In: Guiochet, J., Tonetta, S., Schoitsch, E., Roy, M., Bitsch, F. (eds) Computer Safety, Reliability, and Security. SAFECOMP 2023 Workshops. SAFECOMP 2023. Lecture Notes in Computer Science, vol 14182. Springer, Cham. https://doi.org/10.1007/978-3-031-40953-0_6
Download citation
DOI: https://doi.org/10.1007/978-3-031-40953-0_6
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-031-40952-3
Online ISBN: 978-3-031-40953-0
eBook Packages: Computer ScienceComputer Science (R0)