Special Conditions: Honeywell, Bombardier Model BD-100-1A10 Airplane; Electronic System Security Protection From Unauthorized Internal Access, 59840-59842 [2021-23553]
Download as PDF
<![CDATA[
59840
Federal Register / Vol. 86, No. 207 / Friday, October 29, 2021 / Rules and Regulations
airplane, as changed, continues to meet
the applicable provisions of the
regulations listed in Type Certificate No.
T00005NY, or the applicable regulations
in effect on the date of application for
the change, except for earlier
amendments as agreed upon by the
FAA.
If the Administrator finds that the
applicable airworthiness regulations
(e.g., 14 CFR part 25) do not contain
adequate or appropriate safety standards
for the Bombardier Model BD–100–
1A10 airplane because of a novel or
unusual design feature, special
conditions are prescribed under the
provisions of § 21.16.
Special conditions are initially
applicable to the model for which they
are issued. Should the applicant apply
for a supplemental type certificate to
modify any other model included on the
same type certificate to incorporate the
same novel or unusual design feature,
these special conditions would also
apply to the other model under § 21.101.
In addition to the applicable
airworthiness regulations and special
conditions, the Bombardier Model BD–
100–1A10 airplane must comply with
the fuel vent and exhaust emission
requirements of 14 CFR part 34 and the
noise certification requirements of 14
CFR part 36.
The FAA issues special conditions, as
defined in 14 CFR 11.19, in accordance
with § 11.38, and they become part of
the type certification basis under
§ 21.101.
khammond on DSKJM1Z7X2PROD with RULES
Novel or Unusual Design Feature
The Bombardier Model BD–100–1A10
airplane, as modified by Honeywell,
will incorporate the following novel or
unusual design feature:
Installation of the Honeywell
Connected Engine Data Access System
(CEDAS) which provides wireless data
download capability from the engine’s
electronic control unit (ECU) to
Honeywell cloud-based storage. CEDAS
allows maintenance personnel to
wirelessly connect to the ECUs and
allows autonomous engine data uploads
to cloud data services over WiFi.
Discussion
The Honeywell supplemental type
certificate for the Bombardier Model
BD–100–1A10 airplane design adds the
Connected Engine Data Access System
(CEDAS) architecture which is novel for
commercial transport category
airplanes. CEDAS allows connection to
airplane electronic systems and
networks, and access from aircraft
external sources (e.g., operator
networks, wireless devices, internet
connectivity, service provider satellite
VerDate Sep<11>2014
15:56 Oct 28, 2021
Jkt 256001
communications, electronic flight bags,
etc.) to the previously isolated airplane
electronic assets (networks, systems,
and databases). The installation of
CEDAS may result in network security
vulnerabilities from intentional or
unintentional corruption of data and
systems required for the operations and
maintenance of the airplane.
The existing FAA regulations did not
anticipate these networked airplane
system architectures. Furthermore, these
regulations and the current guidance
material do not address potential
security vulnerabilities, which could be
exploited by unauthorized access to
airplane networks, data buses, and
servers. Therefore, these special
conditions ensure that the security (i.e.,
confidentiality, integrity, and
availability) of airplane systems is not
compromised by unauthorized wired or
wireless electronic connections. This
includes ensuring that the security of
the airplane’s systems is not
compromised during maintenance of the
airplane’s electronic systems. These
special conditions also require the
applicant to provide appropriate
instructions to the operator to maintain
all electronic system safeguards that
have been implemented as part of the
original network design so that this
feature does not allow or reintroduce
security threats.
These special conditions contain the
additional safety standards that the
Administrator considers necessary to
establish a level of safety equivalent to
that established by the existing
airworthiness standards.
Applicability
As discussed above, these special
conditions are applicable to the
Bombardier Model BD–100–1A10
airplane. Should Honeywell apply at a
later date for a supplemental type
certificate to modify any other model
included on Type Certificate No.
T00005NY to incorporate the same
novel or unusual design feature, these
special conditions would apply to that
model as well.
Conclusion
This action affects only a certain
novel or unusual design feature on one
model of airplane, as modified by
Honeywell. It is not a rule of general
applicability and affects only the
applicant.
List of Subjects in 14 CFR Part 25
Aircraft, Aviation safety, Reporting
and recordkeeping requirements.
PO 00000
Frm 00002
Fmt 4700
Sfmt 4700
Authority Citation
The authority citation for these
special conditions is as follows:
Authority: 49 U.S.C. 106(f), 106(g), 40113,
44701, 44702, 44704.
The Special Conditions
Accordingly, pursuant to the
authority delegated to me by the
Administrator, the following special
conditions are issued as part of the type
certification basis for the Bombardier
Model BD–100–1A10 airplane, as
modified by Honeywell, for airplane
electronic system security protection
from unauthorized external access.
1. The applicant must ensure airplane
electronic system security protection
from access by unauthorized sources
external to the airplane, including those
possibly caused by maintenance
activity.
2. The applicant must ensure that
electronic system security threats are
identified and assessed, and that
effective electronic system security
protection strategies are implemented to
protect the airplane from all adverse
impacts on safety, functionality, and
continued airworthiness.
3. The applicant must establish
appropriate procedures to allow the
operator to ensure that continued
airworthiness of the airplane is
maintained, including all post type
certification modifications that may
have an impact on the approved
electronic system security safeguards.
Issued in Kansas City, Missouri, on
October 25, 2021.
Patrick R. Mullen,
Manager, Technical Innovation Policy
Branch, Policy and Innovation Division,
Aircraft Certification Service.
[FR Doc. 2021–23552 Filed 10–28–21; 8:45 am]
BILLING CODE 4910–13–P
DEPARTMENT OF TRANSPORTATION
Federal Aviation Administration
14 CFR Part 25
[Docket No. FAA–2021–0907; Special
Conditions No. 25–793–SC]
Special Conditions: Honeywell,
Bombardier Model BD–100–1A10
Airplane; Electronic System Security
Protection From Unauthorized Internal
Access
Federal Aviation
Administration (FAA), Department of
Transportation (DOT).
ACTION: Final special conditions; request
for comments.
AGENCY:
E:\FR\FM\29OCR1.SGM
29OCR1
Federal Register / Vol. 86, No. 207 / Friday, October 29, 2021 / Rules and Regulations
These special conditions are
issued for the Bombardier Model BD–
100–1A10 airplane. This airplane, as
modified by Honeywell, will have a
novel or unusual design feature when
compared to the state of technology
envisioned in the airworthiness
standards for transport category
airplanes. This design feature is the
installation of a system that provides
wireless data download capability from
the engine electronic control unit to
Honeywell cloud-based storage. The
applicable airworthiness regulations do
not contain adequate or appropriate
safety standards for this design feature.
These special conditions contain the
additional safety standards that the
Administrator considers necessary to
establish a level of safety equivalent to
that established by the existing
airworthiness standards.
DATES: This action is effective on
Honeywell on October 29, 2021. Send
comments on or before December 13,
2021.
SUMMARY:
Send comments identified
by Docket No. FAA–2021–0907 using
any of the following methods:
• Federal eRegulations Portal: Go to
https://www.regulations.gov/ and follow
the online instructions for sending your
comments electronically.
• Mail: Send comments to Docket
Operations, M–30, U.S. Department of
Transportation (DOT), 1200 New Jersey
Avenue SE, Room W12–140, West
Building Ground Floor, Washington, DC
20590–0001.
• Hand Delivery or Courier: Take
comments to Docket Operations in
Room W12–140 of the West Building
Ground Floor at 1200 New Jersey
Avenue SE, Washington, DC, between
9 a.m. and 5 p.m., Monday through
Friday, except Federal holidays.
• Fax: Fax comments to Docket
Operations at 202–493–2251.
Privacy: Except for Confidential
Business Information (CBI) as described
in the following paragraph, and other
information as described in 14 CFR
11.35, the FAA will post all comments
received without change to https://
www.regulations.gov/, including any
personal information you provide. The
FAA will also post a report
summarizing each substantive verbal
contact received about these special
conditions.
Confidential Business Information:
Confidential Business Information (CBI)
is commercial or financial information
that is both customarily and actually
treated as private by its owner. Under
the Freedom of Information Act (FOIA)
(5 U.S.C. 552), CBI is exempt from
public disclosure. If your comments
khammond on DSKJM1Z7X2PROD with RULES
ADDRESSES:
VerDate Sep<11>2014
15:56 Oct 28, 2021
Jkt 256001
responsive to these special conditions
contain commercial or financial
information that is customarily treated
as private, that you actually treat as
private, and that is relevant or
responsive to these special conditions, it
is important that you clearly designate
the submitted comments as CBI. Please
mark each page of your submission
containing CBI as ‘‘PROPIN.’’ The FAA
will treat such marked submissions as
confidential under the FOIA, and the
indicated comments will not be placed
in the public docket of these special
conditions. Send submissions
containing CBI to the Information
Contact below. Comments the FAA
receives, which are not specifically
designated as CBI, will be placed in the
public docket for these special
conditions.
Docket: Background documents or
comments received may be read at
https://www.regulations.gov/ at any
time. Follow the online instructions for
accessing the docket or go to Docket
Operations in Room W12–140 of the
West Building Ground Floor at 1200
New Jersey Avenue SE, Washington,
DC, between 9 a.m. and 5 p.m., Monday
through Friday, except Federal holidays.
FOR FURTHER INFORMATION CONTACT:
Varun Khanna, Aircraft Information
Systems, AIR–622, Technical
Innovation Policy Branch, Policy and
Innovation Division, Aircraft
Certification Service, Federal Aviation
Administration, 2200 South 216th
Street, Des Moines, Washington 98198;
telephone and fax 206–231–3159; email
varun.khanna@faa.gov.
SUPPLEMENTARY INFORMATION: The
substance of these special conditions
has been published in the Federal
Register for public comment in several
prior instances with no substantive
comments received. Therefore, the FAA
has determined that prior public notice
and comment are unnecessary, and
finds that, for the same reason, good
cause exists for adopting these special
conditions upon publication in the
Federal Register.
Comments Invited
The FAA invites interested people to
take part in this rulemaking by sending
written comments, data, or views. The
most helpful comments reference a
specific portion of the special
conditions, explain the reason for any
recommended change, and include
supporting data.
The FAA will consider all comments
received by the closing date for
comments. The FAA may change these
special conditions based on the
comments received.
PO 00000
Frm 00003
Fmt 4700
Sfmt 4700
59841
Background
On February 24, 2020, Honeywell
applied for a supplemental type
certificate for installation of the
Honeywell Connected Engine Data
Access System (CEDAS) in the
Bombardier Model BD–100–1A10
airplane, requiring security protection
from unauthorized internal access. The
Bombardier Model BD–100–1A10
airplane is a twin-engine business jet
with a passenger capacity of 16 and a
maximum takeoff weight of 40,600
pounds.
Type Certification Basis
Under the provisions of title 14 Code
of Federal Regulations (14 CFR) 21.101,
Honeywell must show that the
Bombardier Model BD–100–1A10
airplane, as changed, continues to meet
the applicable provisions of the
regulations listed in Type Certificate No.
T00005NY or the applicable regulations
in effect on the date of application for
the change, except for earlier
amendments as agreed upon by the
FAA.
If the Administrator finds that the
applicable airworthiness regulations
(e.g., 14 CFR part 25) do not contain
adequate or appropriate safety standards
for the Bombardier Model BD–100–
1A10 airplane because of a novel or
unusual design feature, special
conditions are prescribed under the
provisions of § 21.16.
Special conditions are initially
applicable to the model for which they
are issued. Should the applicant apply
for a supplemental type certificate to
modify any other model included on the
same type certificate to incorporate the
same novel or unusual design feature,
these special conditions would also
apply to the other model under § 21.101.
In addition to the applicable
airworthiness regulations and special
conditions, the Bombardier Model BD–
100–1A10 airplane must comply with
the fuel vent and exhaust emission
requirements of 14 CFR part 34 and the
noise certification requirements of 14
CFR part 36.
The FAA issues special conditions, as
defined in 14 CFR 11.19, in accordance
with § 11.38, and they become part of
the type certification basis under
§ 21.101.
Novel or Unusual Design Feature
The Bombardier Model BD–100–1A10
airplane, as modified by Honeywell,
will incorporate the following novel or
unusual design feature:
Installation of the Honeywell
Connected Engine Data Access System
(CEDAS) which provides wireless data
E:\FR\FM\29OCR1.SGM
29OCR1
khammond on DSKJM1Z7X2PROD with RULES
59842
Federal Register / Vol. 86, No. 207 / Friday, October 29, 2021 / Rules and Regulations
download capability from the engine’s
electronic control unit (ECU) to
Honeywell cloud-based storage. CEDAS
allows maintenance personnel to
wirelessly connect to the ECUs and
allows autonomous engine data uploads
to cloud data services over WiFi.
later date for a supplemental type
certificate to modify any other model
included on Type Certificate No.
T00005NY to incorporate the same
novel or unusual design feature, these
special conditions would apply to that
model as well.
Discussion
The Honeywell supplemental type
certificate for the Bombardier Model
BD–100–1A10 airplane design adds the
Connected Engine Data Access System
(CEDAS) architecture which is novel for
commercial transport category
airplanes. CEDAS allows connection to
airplane electronic systems and
networks, and access from aircraft
external sources (e.g., operator
networks, wireless devices, internet
connectivity, service provider satellite
communications, electronic flight bags,
etc.) to the previously isolated airplane
electronic assets (networks, systems,
and databases). The CEDAS design
introduces the potential for
unauthorized access to these previously
isolated airplane electronic systems and
networks by persons inside the airplane.
The installation of CEDAS may result in
network security vulnerabilities from
intentional or unintentional corruption
of data and systems required for the
operations and maintenance of the
airplane.
The existing FAA regulations did not
anticipate these networked airplane
system architectures. Furthermore, these
regulations and the current guidance
material do not address potential
security vulnerabilities, which could be
exploited by unauthorized access to
airplane networks, data buses, and
servers. Therefore, these special
conditions ensure that the security (i.e.,
confidentiality, integrity, and
availability) of airplane systems will not
be compromised by unauthorized wired
or wireless connections from within the
airplane. These special conditions also
require the applicant to provide
appropriate instructions to the operator
to maintain all electronic system
safeguards that have been implemented
as part of the original network design so
that this feature does not allow or
reintroduce security threats.
These special conditions contain the
additional safety standards that the
Administrator considers necessary to
establish a level of safety equivalent to
that established by the existing
airworthiness standards.
Conclusion
Applicability
As discussed above, these special
conditions are applicable to the
Bombardier Model BD–100–1A10
airplane. Should Honeywell apply at a
VerDate Sep<11>2014
15:56 Oct 28, 2021
Jkt 256001
List of Subjects in 14 CFR Part 25
Aircraft, Aviation safety, Reporting
and recordkeeping requirements.
Authority Citation
The authority citation for these
special conditions is as follows:
Authority: 49 U.S.C. 106(f), 106(g), 40113,
44701, 44702, 44704.
The Special Conditions
Accordingly, pursuant to the
authority delegated to me by the
Administrator, the following special
conditions are issued as part of the type
certification basis for the Bombardier
Model BD–100–1A10 airplane, as
modified by Honeywell, for electronic
system security protection from
unauthorized internal access.
1. The applicant must ensure that the
design provides isolation from, or
airplane electronic system security
protection against, access by
unauthorized sources internal to the
airplane. The design must prevent
inadvertent and malicious changes to,
and all adverse impacts upon, airplane
equipment, systems, networks, or other
assets required for safe flight and
operations.
2. The applicant must establish
appropriate procedures to allow the
operator to ensure that continued
airworthiness of the airplane is
maintained, including all post type
certification modifications that may
have an impact on the approved
electronic system security safeguards.
Issued in Kansas City, Missouri, on
October 25, 2021.
Patrick R. Mullen,
Manager, Technical Innovation Policy
Branch, Policy and Innovation Division,
Aircraft Certification Service.
[FR Doc. 2021–23553 Filed 10–28–21; 8:45 am]
BILLING CODE 4910–13–P
Frm 00004
Federal Aviation Administration
14 CFR Part 39
[Docket No. FAA–2021–0840; Project
Identifier MCAI–2021–00262–T; Amendment
39–21760; AD 2021–20–22]
RIN 2120–AA64
This action affects only a certain
novel or unusual design feature on one
model of airplane, as modified by
Honeywell. It is not a rule of general
applicability and affects only the
applicant.
PO 00000
DEPARTMENT OF TRANSPORTATION
Fmt 4700
Sfmt 4700
Airworthiness Directives; Fokker
Services B.V. Airplanes
Federal Aviation
Administration (FAA), DOT.
ACTION: Final rule; request for
comments.
AGENCY:
The FAA is adopting a new
airworthiness directive (AD) for certain
Fokker Services B.V. Model F28 Mark
0070 and Mark 0100 airplanes. This AD
was prompted by a report of exfoliation
corrosion found during an inspection of
the wing front spar lower boom. This
AD requires an inspection for corrosion
of the wing front spar lower boom, and
applicable corrective actions, as
specified in a European Union Aviation
Safety Agency (EASA) AD, which is
incorporated by reference. The FAA is
issuing this AD to address the unsafe
condition on these products.
DATES: This AD becomes effective
November 15, 2021.
The Director of the Federal Register
approved the incorporation by reference
of a certain publication listed in this AD
as of November 15, 2021.
The FAA must receive comments on
this AD by December 13, 2021.
ADDRESSES: You may send comments,
using the procedures found in 14 CFR
11.43 and 11.45, by any of the following
methods:
• Federal eRulemaking Portal: Go to
https://www.regulations.gov. Follow the
instructions for submitting comments.
• Fax: 202–493–2251.
• Mail: U.S. Department of
Transportation, Docket Operations, M–
30, West Building Ground Floor, Room
W12–140, 1200 New Jersey Avenue SE,
Washington, DC 20590.
• Hand Delivery: Deliver to Mail
address above between 9 a.m. and 5
p.m., Monday through Friday, except
Federal holidays.
For EASA material incorporated by
reference (IBR) in this AD, contact
EASA, Konrad-Adenauer-Ufer 3, 50668
Cologne, Germany; telephone +49 221
8999 000; email ADs@easa.europa.eu;
internet www.easa.europa.eu. You may
find this IBR material on the EASA
website at https://ad.easa.europa.eu.
You may view this material at the FAA,
Airworthiness Products Section,
SUMMARY:
E:\FR\FM\29OCR1.SGM
29OCR1
]]>Agencies
[Federal Register Volume 86, Number 207 (Friday, October 29, 2021)]
[Rules and Regulations]
[Pages 59840-59842]
From the Federal Register Online via the Government Publishing Office [www.gpo.gov]
[FR Doc No: 2021-23553]
-----------------------------------------------------------------------
DEPARTMENT OF TRANSPORTATION
Federal Aviation Administration
14 CFR Part 25
[Docket No. FAA-2021-0907; Special Conditions No. 25-793-SC]
Special Conditions: Honeywell, Bombardier Model BD-100-1A10
Airplane; Electronic System Security Protection From Unauthorized
Internal Access
AGENCY: Federal Aviation Administration (FAA), Department of
Transportation (DOT).
ACTION: Final special conditions; request for comments.
-----------------------------------------------------------------------
[[Page 59841]]
SUMMARY: These special conditions are issued for the Bombardier Model
BD-100-1A10 airplane. This airplane, as modified by Honeywell, will
have a novel or unusual design feature when compared to the state of
technology envisioned in the airworthiness standards for transport
category airplanes. This design feature is the installation of a system
that provides wireless data download capability from the engine
electronic control unit to Honeywell cloud-based storage. The
applicable airworthiness regulations do not contain adequate or
appropriate safety standards for this design feature. These special
conditions contain the additional safety standards that the
Administrator considers necessary to establish a level of safety
equivalent to that established by the existing airworthiness standards.
DATES: This action is effective on Honeywell on October 29, 2021. Send
comments on or before December 13, 2021.
ADDRESSES: Send comments identified by Docket No. FAA-2021-0907 using
any of the following methods:
Federal eRegulations Portal: Go to https://www.regulations.gov/ and follow the online instructions for sending
your comments electronically.
Mail: Send comments to Docket Operations, M-30, U.S.
Department of Transportation (DOT), 1200 New Jersey Avenue SE, Room
W12-140, West Building Ground Floor, Washington, DC 20590-0001.
Hand Delivery or Courier: Take comments to Docket
Operations in Room W12-140 of the West Building Ground Floor at 1200
New Jersey Avenue SE, Washington, DC, between 9 a.m. and 5 p.m., Monday
through Friday, except Federal holidays.
Fax: Fax comments to Docket Operations at 202-493-2251.
Privacy: Except for Confidential Business Information (CBI) as
described in the following paragraph, and other information as
described in 14 CFR 11.35, the FAA will post all comments received
without change to https://www.regulations.gov/, including any personal
information you provide. The FAA will also post a report summarizing
each substantive verbal contact received about these special
conditions.
Confidential Business Information: Confidential Business
Information (CBI) is commercial or financial information that is both
customarily and actually treated as private by its owner. Under the
Freedom of Information Act (FOIA) (5 U.S.C. 552), CBI is exempt from
public disclosure. If your comments responsive to these special
conditions contain commercial or financial information that is
customarily treated as private, that you actually treat as private, and
that is relevant or responsive to these special conditions, it is
important that you clearly designate the submitted comments as CBI.
Please mark each page of your submission containing CBI as ``PROPIN.''
The FAA will treat such marked submissions as confidential under the
FOIA, and the indicated comments will not be placed in the public
docket of these special conditions. Send submissions containing CBI to
the Information Contact below. Comments the FAA receives, which are not
specifically designated as CBI, will be placed in the public docket for
these special conditions.
Docket: Background documents or comments received may be read at
https://www.regulations.gov/ at any time. Follow the online
instructions for accessing the docket or go to Docket Operations in
Room W12-140 of the West Building Ground Floor at 1200 New Jersey
Avenue SE, Washington, DC, between 9 a.m. and 5 p.m., Monday through
Friday, except Federal holidays.
FOR FURTHER INFORMATION CONTACT: Varun Khanna, Aircraft Information
Systems, AIR-622, Technical Innovation Policy Branch, Policy and
Innovation Division, Aircraft Certification Service, Federal Aviation
Administration, 2200 South 216th Street, Des Moines, Washington 98198;
telephone and fax 206-231-3159; email [email protected].
SUPPLEMENTARY INFORMATION: The substance of these special conditions
has been published in the Federal Register for public comment in
several prior instances with no substantive comments received.
Therefore, the FAA has determined that prior public notice and comment
are unnecessary, and finds that, for the same reason, good cause exists
for adopting these special conditions upon publication in the Federal
Register.
Comments Invited
The FAA invites interested people to take part in this rulemaking
by sending written comments, data, or views. The most helpful comments
reference a specific portion of the special conditions, explain the
reason for any recommended change, and include supporting data.
The FAA will consider all comments received by the closing date for
comments. The FAA may change these special conditions based on the
comments received.
Background
On February 24, 2020, Honeywell applied for a supplemental type
certificate for installation of the Honeywell Connected Engine Data
Access System (CEDAS) in the Bombardier Model BD-100-1A10 airplane,
requiring security protection from unauthorized internal access. The
Bombardier Model BD-100-1A10 airplane is a twin-engine business jet
with a passenger capacity of 16 and a maximum takeoff weight of 40,600
pounds.
Type Certification Basis
Under the provisions of title 14 Code of Federal Regulations (14
CFR) 21.101, Honeywell must show that the Bombardier Model BD-100-1A10
airplane, as changed, continues to meet the applicable provisions of
the regulations listed in Type Certificate No. T00005NY or the
applicable regulations in effect on the date of application for the
change, except for earlier amendments as agreed upon by the FAA.
If the Administrator finds that the applicable airworthiness
regulations (e.g., 14 CFR part 25) do not contain adequate or
appropriate safety standards for the Bombardier Model BD-100-1A10
airplane because of a novel or unusual design feature, special
conditions are prescribed under the provisions of Sec. 21.16.
Special conditions are initially applicable to the model for which
they are issued. Should the applicant apply for a supplemental type
certificate to modify any other model included on the same type
certificate to incorporate the same novel or unusual design feature,
these special conditions would also apply to the other model under
Sec. 21.101.
In addition to the applicable airworthiness regulations and special
conditions, the Bombardier Model BD-100-1A10 airplane must comply with
the fuel vent and exhaust emission requirements of 14 CFR part 34 and
the noise certification requirements of 14 CFR part 36.
The FAA issues special conditions, as defined in 14 CFR 11.19, in
accordance with Sec. 11.38, and they become part of the type
certification basis under Sec. 21.101.
Novel or Unusual Design Feature
The Bombardier Model BD-100-1A10 airplane, as modified by
Honeywell, will incorporate the following novel or unusual design
feature:
Installation of the Honeywell Connected Engine Data Access System
(CEDAS) which provides wireless data
[[Page 59842]]
download capability from the engine's electronic control unit (ECU) to
Honeywell cloud-based storage. CEDAS allows maintenance personnel to
wirelessly connect to the ECUs and allows autonomous engine data
uploads to cloud data services over WiFi.
Discussion
The Honeywell supplemental type certificate for the Bombardier
Model BD-100-1A10 airplane design adds the Connected Engine Data Access
System (CEDAS) architecture which is novel for commercial transport
category airplanes. CEDAS allows connection to airplane electronic
systems and networks, and access from aircraft external sources (e.g.,
operator networks, wireless devices, internet connectivity, service
provider satellite communications, electronic flight bags, etc.) to the
previously isolated airplane electronic assets (networks, systems, and
databases). The CEDAS design introduces the potential for unauthorized
access to these previously isolated airplane electronic systems and
networks by persons inside the airplane. The installation of CEDAS may
result in network security vulnerabilities from intentional or
unintentional corruption of data and systems required for the
operations and maintenance of the airplane.
The existing FAA regulations did not anticipate these networked
airplane system architectures. Furthermore, these regulations and the
current guidance material do not address potential security
vulnerabilities, which could be exploited by unauthorized access to
airplane networks, data buses, and servers. Therefore, these special
conditions ensure that the security (i.e., confidentiality, integrity,
and availability) of airplane systems will not be compromised by
unauthorized wired or wireless connections from within the airplane.
These special conditions also require the applicant to provide
appropriate instructions to the operator to maintain all electronic
system safeguards that have been implemented as part of the original
network design so that this feature does not allow or reintroduce
security threats.
These special conditions contain the additional safety standards
that the Administrator considers necessary to establish a level of
safety equivalent to that established by the existing airworthiness
standards.
Applicability
As discussed above, these special conditions are applicable to the
Bombardier Model BD-100-1A10 airplane. Should Honeywell apply at a
later date for a supplemental type certificate to modify any other
model included on Type Certificate No. T00005NY to incorporate the same
novel or unusual design feature, these special conditions would apply
to that model as well.
Conclusion
This action affects only a certain novel or unusual design feature
on one model of airplane, as modified by Honeywell. It is not a rule of
general applicability and affects only the applicant.
List of Subjects in 14 CFR Part 25
Aircraft, Aviation safety, Reporting and recordkeeping
requirements.
Authority Citation
The authority citation for these special conditions is as follows:
Authority: 49 U.S.C. 106(f), 106(g), 40113, 44701, 44702, 44704.
The Special Conditions
Accordingly, pursuant to the authority delegated to me by the
Administrator, the following special conditions are issued as part of
the type certification basis for the Bombardier Model BD-100-1A10
airplane, as modified by Honeywell, for electronic system security
protection from unauthorized internal access.
1. The applicant must ensure that the design provides isolation
from, or airplane electronic system security protection against, access
by unauthorized sources internal to the airplane. The design must
prevent inadvertent and malicious changes to, and all adverse impacts
upon, airplane equipment, systems, networks, or other assets required
for safe flight and operations.
2. The applicant must establish appropriate procedures to allow the
operator to ensure that continued airworthiness of the airplane is
maintained, including all post type certification modifications that
may have an impact on the approved electronic system security
safeguards.
Issued in Kansas City, Missouri, on October 25, 2021.
Patrick R. Mullen,
Manager, Technical Innovation Policy Branch, Policy and Innovation
Division, Aircraft Certification Service.
[FR Doc. 2021-23553 Filed 10-28-21; 8:45 am]
BILLING CODE 4910-13-P
