Integrated avionics system has the following features:a high degree of resource sharing, rapid information transmission, integration of system software and hardware, which put severe demand on system safety and reliability. Unauthorized access to resources, malicious or false information injection, tampering or forging of key control instructions and loading of malicious codes, will bring deadly threat to avionics system, causing the collapse of single device and even the entire system. Therefore, security has become an urgent need of avionics system to ensure safe and reliable running in accordance with pre-designed steps.Based on the intensive research of safety requirements of integrated avionics system and STANAG 4626 standards, and aimed at security threats faced by avionics system and the defects of norms and standards, such as poor real-time performance and scalability, we introduce a scheme of security agent, and propose a security agent based software structure to improve the security management structure defined by STANAG 4626, design and implement the relevant functional modules such as key management, agent structure library and virtual channel handler, which provides efficient and scalable resolution for the real-time and orderly scheduling and executing of security missions.Meanwhile, we design and implement some functional modules including authentication, message encryption and decryption and integrity checking. We emulate and evaluate our security management system on the core hardware platform which supports on-board IMA system, and the emulation results show that our security management systems are correct, efficient and scalable, while improving the defense capabilities of the entire system and providing information security in integrated avionics system. |