Loading...
Publication
Drone Security Scoring System
| Name: | Description: | Size: | Format: | |
|---|---|---|---|---|
| 1.77 MB | Adobe PDF |
Authors
Abstract(s)
Unmanned Aerial Vehicles (UAVs) have become increasingly important across various sectors, from
commercial applications to military operations. However, with the increase in usage, drones’ cyberse
curity vulnerabilities have also emerged as a significant concern. Drones are susceptible to a range of
cyber-attacks, including attacks that target their communication channels and control systems, which
can result in loss of control or unauthorised access.
This thesis explores the security level of drones through a classification method. The Drone Security
Scoring System (D3S)is asecurity assessment methodthat analyzes the security aspects of the diverse
components within a UAV model. It provides an overall security rating by evaluation metrics, such
as communication protocols, software vulnerabilities, and the effectiveness of security mechanisms
designed to defend against cyber-attacks.
Penetration tests were carried out to support D3S and observe potential vulnerabilities in drones.
The first phase of the penetration testing was Information Gathering, which involved a thorough analysis
of the communication protocols and the identification of open ports within the drone’s software. In
the second phase, Exploitation, specific cyber-attacks such as deauthentication, flooding, and replay
attacks were executed in an effort to take full control of the UAV. Eight different UAV models were tested
using the D3Smethod, revealing notable variations in their security performance and system responses.
The tests conducted highlighted factors such as the absence of Wi-Fi communication in certain drones,
which prevented some attacks, and a direct link between the price of the UAV and its security features.
Description
Keywords
UnmannedAerial Vehicle Cybersecurity cyber-attacks Security