An Integrated Avionics System Evaluation Method Based On AHP And GRAP

New type of avionics system shows the tendencies of integration andmodularization. It has the characteristics of resources sharing, information high-speedtransmission, and highly integrated the hardware and software, which request newdemands of information security from avionics system. The domestic and foreignrelevant research institutions and organizations put a variety of integrated avionicssystem security system structure and information security technology solutions forward.But because of the interdisciplinary of technology, the diversity of security issues, andthe high complexity of avionics system, there is lack of effective solution to evaluate thesecurity of avionics system. The existing evaluation method based on qualitativelycomparing and analyzing the security indexes of avionics system, it can hard5ly meetthe high security requirements of integrated avionics system. In view of the problemsabove, this paper aims at the security evaluation method of integrated avionics system,details are as follows:1) This paper deeply analyzed the avionics system’s security requirements and thesecurity technology which established by ASAAC norm, and also compared with twokinds of typical avionics system security frameworks which based on TCB and MILS(Multiple Independent Level Security/Safety). On the security frameworks which basedon TCB, the security modules are concentrated in the system layer. Not only thecoupling factor is high, but also the security modules are complex, which means it isdifficult to evaluate the security. On MILS, the security modules are decentralized, andeach security layer is independent, which shows the system can be easily evaluated. Onthis basis, the avionics system security management software which based on MILSsecurity modules can be designed and achieved.2) The security evaluation methods, CC-AHP and CC-GRAP, which suit forintegrated avionics system, was put forward in this paper in order to solve the problemthat the evaluation method,which based on general criterion CC, can quantitativelyevaluate the target hardly. The security evaluation methods uses analytic hierarchyprocess to calculate the weight of the security modules by the target of securityevaluation which called TOE. And with the help of gray relative analysis method, it isable to calculate the System security assessment level. CC-AHP and CC–GRAP havesolved the problem that the traditional evaluation method cannot quantitatively evaluatethe target. 3) Using CC-AHP and CC-GRAP security evaluation method which suggested bythis paper, the evaluation method of the target system which based on MILS securityframework can be proposed to evaluate the security of the realized integrated avionicssecurity management system. The processes were showed below: First, set up theindexes system of integrated avionics safety assessment, and transform the systemsecurity into each underlying index. Then, evaluate the security of each underlyingindex by expert scoring way, value the security level to each index, and use CC-AHPand CC-GRAP method to calculate the security level. This evaluation process can verifythe validity of CC-AHP and CC-GRAP method, as the result, the security of theachieved avionics system reached the grade EAL-4in CC evaluation system.The safety assessment method which studied by this paper aims at integrated avionicssystem. This method also has reference value for guiding the integrated avionics systemdesign.