• Installers
  • Owner needs consulting
  • Chooses hardware
    • Custom
    • Off-The-Shelf
  • Establishes framework
  • Develop/select software
• Monitors
  • Cyber specialists
    • Monitor network and computer equipment
  • Physical specialists
    • Monitor physical security sensors
      • Smoke/Water/Gas
      • Intrusion detection

• Hazards
  • Fire
  • Flood
  • Gas leaks
  • Excessive cold
• Malicious Actions
  • Local threats
    • Break-ins
    • Package theft
    • Vandalism
  • Cyber threats
    • Identity theft
    • Privacy violation
    • Ransomware

• Risk Management:
  • Determines how risks and the effectiveness of mitigations are evaluated.
• Security Policy:
  • Defines data and actions to be protected. Outlines who has control over data and who authorizes actions. Sets standards for enforcement.
• Design and operation informed by listed documents

• Software Design and Deployment
  • Custom software for integration
    • Automation
    • Endpoint security
    • Third party monitoring
  • Trusted software for common security techniques
    • VPN
    • Firewall
    • IDS
    • Data proteciton

• Service personnel
  • Customer Agents
  • Network Monitoring
  • IT Administration
  • Process auditing
• Development
  • Software engineers
  • Programers
  • Network architects
  • Penetration testing
  • Design auditing
• Overhead
  • Business processes
  • Overall auditing

• Training
  • Monthly newsletters for users
  • More detailed annual training seminar
• Testing
  • Continous testing of new vulnerabilities
  • Annual audits of security providers
  • Quarterly Pen testing of model system
  • Monthly agile software development cycle

• Enclave segregation
  • Confidintiality
  • Integrity
  • Access Control
• Redundancy provides availability
  • Electrical power
  • Internet access
• Composition saves on cost
  • Few switches
  • Few fixed devices
  • Virtual LANs
  • Virtual Machines

• Web Surface
  • Remote interface
    • Monitoring
    • Home automation control
  • Interface with service providers
• Resident’s Enclave
  • Peripherals
    • Printers, etc
  • Filestorage
  • Fixed workstations
  • Mobile devices via VPN

• Guest Enclave
  • Transient untrusted devices
  • Access to internet only
• Smart Media Devices
  • Smart TVs
  • Other connected entertainment systems
• Home Systems Enclave
  • IOT Devices
  • Home automation section
  • Home security section
  • Limited computing power
  • Interaction limited to specific VMs

• Link Layer
  • Inernal Ethernet
  • External Ethernet
  • Non-ethernet
• Internet Layer
  • Endpoints
  • Enclaves
  • Proxies
  • External Firewall/Router
• Transport Layer
  • Internet zoning
  • Dynamic port security
  • VPN
• Application Layer
  • Trust isolation

• Cryptography
  • Enrypt sensitive data
    • In transit
    • At rest
  • Access control
    • PKI Infrastructure
• Authentication
  • Multifactor authentication
  • Level depends on enclave
• Access Control
  • Role based
  • Session management

The IPAA concept proposes a development program for the avionics suites in General Aviation Aircraft.

• Features:
  • Collaborative
  • Agile
  • Model Based
  • Interoperable Components
  • Open Architecture

Tier 1

• Worldwide Governance Board - Overarching policy decisions.
  • ICAO, IAOPA, EAA, GAMA
  • Stakeholder representatives from regional boards
• Executive Organization - Leadership and guidance for day to day operations.
  • CEO, COO, CIO, CFO, etc

• Information Policy
  • Ethics Standards
  • Information Security Process
  • Publication Guidelines
  • Legal Policy
  • Training Program
• Membership Policy
• Administrative Policy

• Regional boards research and make recommendations on regional issues.

• Decisions made at tier level as determined by policy documents

• Metrics and processes drive action.

• Open Systems Architecture
  • Loose Coupling
  • Manufacturer Interoperability
  • Open Data Environment
• Service Orientation
  • Hardware, software and external interactions abstracted as services
• Reference Architecture
  • Generalized for all possible systems
  • Customized for implementation

Component Development

• Implements IPAA requirements
• Conforms to IPAA reference architecture
• Conducted by Component Manufacturers
• Tested by IPAA program labs

System Integration

• Requirements customized for application
• Architecture configured based on requirements
• Components selected based on implemented requirements and architecture
• System built and tested.

Product End of Life

• Some components can be recertified and reused
• Safe disposal of all components planned for.

Completing the Loop

• Unified Support Team provides feedback to requirements and architecture.
• Pilot feedback actively sought.

The ADSBSee station detects the transponder signals of nearby aircraft and uses this to determine each aircraft’s relative direction.

One Raspberry Pi SBC recieves and processes the transponder signals, determines the stations position via GPS, senses the orientation, and provides WiFi access to the station

The other Raspberry Pi directs the automation of the station, processes captured images and provides a web based user interface.

The PocketBeagle provides a REST interface that controls the station’s motion.

Real-time microcontrollers built into this SBC ensure that the station’s motion aligns with its target at the right time.

PocketBeagle

• Tiny single board computer
• Real time capabilities
• Large I/O header

Pololu Stepper Drivers

• Multiple driver chips
• Mostly pin-compatible form factor

Project Github

Spice Circuit

    .subckt device ACH ACN Comm VCC GND
    + C1_val=1u C1_esr=0
    + L1_val=1mH L1_cself=1pF L1_rdc=100m
    + C2_val=100u C2_esr=1m
    + XT1_l=2000u XT1_r=.13 T1_cs XT1_ciw=22pf  XT1_rcl=10M

    XDZ1 GND Comm D_Zener

    XT1 ACH ACI Comm GND Xfmr
    + L_P={XT1_l} L_S={XT1_l} N_P=1 N_S=1.001
    + R_P={XT1_r} R_S={XT1_r}
    + C_P={XT1_cs} C_S={XT1_cs} C_IW={XT1_ciw}
    + R_CL={XT1_rcl}

    XC1 ACI ACN Cap 
    + cval={C1_val} lser=0 
    + rser={C1_esr} rleak=10M

    XL1 ACH ACF Ind
    + lval={L1_val} cself={L1_cself}
    +rdc={L1_rdc} rac=10G

    D1 ACF VCC D_Rec
    D2 ACN VCC D_Rec
    D3 GND ACN D_Rec
    D4 GND ACF D_Rec

    XC2 VCC GND Cap
    + cval={C2_val} lser=0 
    + rser={C2_esr} rleak=10M


    .ends device

Spice Circuit

.subckt Xfmr P1 P2 S1 S2
+ L_P=1m L_S=1m N_P=1 N_S=1
+ R_P=100m R_S=100m
+ C_P=0 C_S=0 C_IW=100p
+ L_M=100n R_CL=1G

L1 P P2 {L_P}
L2 S S2 {L_S}
K L1 L2 {N_P/N_S}

R1 P1 P {R_P}
R2 S1 S {R_S}

C1 P P2 {C_P}
C2 S S2 {C_S}

L3 P P2 {L_M}
C3 P S {C_IW}
.ends Xfmr_Sig

The model is then run in the ngspice simulator and the resulting response is compared with the response of a real transformer with the same parameters to verify the device models.

• Lulzbot TAZ 5
  • Thermoplastic Fused Deposition
  • Dual extruders
• Designs in:
  • Blender
  • Solidworks
  • OpenSCAD
• Slicing in
  • Slic3r
  • Cura
• Dual extrusion
• ABS, NinjaFlex, Nylon, PLA, HIPS

Mechanical design of hinges

• Arms are printed so forces from the rod are distributed over the print layers instead of being focused between them.
• Reinforcement on the platform and leg attachments are acetone welded on for the same purpose.

One week midterm assignment to develop an air-traffic control communications and data concept.