ARINC 842 : 2013
Superseded
A superseded Standard is one, which is fully replaced by another Standard, which is a new edition of the same Standard.
View Superseded by
GUIDANCE FOR USAGE OF DIGITAL CERTIFICATES
31-08-2021
01-01-2013
1.0 INTRODUCTION
1.1 Purpose and Objectives
1.2 Scope
1.3 Document Organization
1.4 Related Documents
1.5 Regulatory Approval
1.6 Export Control Compliance
2.0 OVERVIEW
2.1 Public Key Cryptography
2.2 Overview of Public Key Infrastructure (PKI)
2.3 Key/Certificate Life Cycle Overview
3.0 INITIAL CONSIDERATIONS
3.1 CA Sourcing Options
3.2 Certificate Subject Naming and Key Usage
3.3 Crypto-Algorithm Considerations
3.4 Crypto-Period and Certificate Life-Time
3.5 Distribution of Trust Anchor Certificates
4.0 KEY GENERATION SCENARIOS AND GUIDANCE
4.1 On-Aircraft Device Key Generation
4.2 Centralized On-Aircraft Device Key Generation
4.3 Ground-based Key Generation for Aircraft Devices
4.4 Portable Device Key Generation
4.5 Key Pair Generation Guidance
5.0 PUBLIC KEY CERTIFICATE LIFE CYCLE
5.1 Initiation Phase
5.2 Maintenance Phase
5.3 Termination Phase
6.0 PUBLIC KEY CERTIFICATE USE AND OPERATION
6.1 Certificate Retrieval
6.2 Certificate Validation
6.3 Certificate Revocation Check
7.0 PRIVATE KEY HANDLING GUIDANCE
7.1 Key Storage
7.2 Key Operational Use
7.3 Key Replacement
7.4 Key Destruction
8.0 COMPROMISE MANAGEMENT
8.1 Types of Compromise
8.2 Monitoring and Detection of Compromise
8.3 Impact Assessment
8.4 Response
8.5 Reducing Risk
ATTACHMENTS
ATTACHMENT 1 - GLOSSARY
ATTACHMENT 2 - ACRONYM LIST
APPENDICES
APPENDIX A - PKI ROLES
APPENDIX B - ADDITIONAL CA SOURCING CONSIDERATIONS
APPENDIX C - CERTIFICATE NAMING CONSTRAINTS
APPENDIX D - OID TREE DEFINITION FOR REGISTERED
AVIATION COMMUNICATION SERVICES
APPENDIX E - COMMON CERTIFICATE VALIDATION ISSUES
Gives guidance for key life-cycle management, which refers to the phases through which digital certificates and associated cryptographic keys progress, from creation through usage to retirement.
| DocumentType |
Standard
|
| PublisherName |
Aeronautical Radio Inc.
|
| Status |
Superseded
|
| SupersededBy |
| ATA 42 : 2017.1 | AVIATION INDUSTRY STANDARDS FOR DIGITAL INFORMATION SECURITY |
| ARINC 811 : 2005 | COMMERCIAL AIRCRAFT INFORMATION SECURITY CONCEPTS OF OPERATION AND PROCESS FRAMEWORK |
| RTCA DO 326 : A2014 | AIRWORTHINESS SECURITY PROCESS SPECIFICATION |
| SAE ARP 4754 : 2010 | GUIDELINES FOR DEVELOPMENT OF CIVIL AIRCRAFT AND SYSTEMS |
| ICAO 8643 : 43ED 2015 | AIRCRAFT TYPE DESIGNATORS |
| ISO/IEC 19790:2012 | Information technology — Security techniques — Security requirements for cryptographic modules |
| ISO/IEC 9594-8:2017 | Information technology Open Systems Interconnection The Directory Part 8: Public-key and attribute certificate frameworks |
| ARINC 666 : 2002 | ELECTRONIC DISTRIBUTION OF SOFTWARE |
| ICAO 8585 : 174ED 2015 | DESIGNATORS FOR AIRCRAFT OPERATING AGENCIES, AERONAUTICAL AUTHORITIES AND SERVICES |
| ARINC 822 : 2007 SUPP 1 | AIRCRAFT/GROUND IP COMMUNICATION |
| ATA 2000 : 2014.1 | E-BUSINESS SPECIFICATION FOR MATERIALS MANAGEMENT |
| ISO/IEC 8824-1:2015 | Information technology Abstract Syntax Notation One (ASN.1): Specification of basic notation Part 1: |
| ARINC 823-1 : 2007 | DATALINK SECURITY - PART 1: ACARS MESSAGE SECURITY |
| ISO/IEC 27000:2016 | Information technology Security techniques Information security management systems Overview and vocabulary |
| ARINC 823P2:2008 | DataLink Security, Part 2 - Key Management |
Access your standards online with a subscription
Features
-
Simple online access to standards, technical information and regulations.
-
Critical updates of standards and customisable alerts and notifications.
-
Multi-user online standards collection: secure, flexible and cost effective.