Hacking Drones..Or not? TONY REEVES LEVEL 7 EXPERTISE LTD

Transcription

1 Hacking Drones..Or not? TONY REEVES LEVEL 7 EXPERTISE LTD

2 Who am I? 23 years in the Royal Air Force / 9 years in Industry First RAF sensor operator for the Predator MQ-1 Worked with all of the recent and current UK MOD drone programmes Cyber and Insider Threat experience Recent counter-drone engagement and vulnerability investigations Owns and flies a DJI Mavic Pro

3 Why Are We Here? Drones are a disruptive technology Increasing proliferation Rapid reductions in skills / experience required to operate Drone technology is cheaper and advancing more quickly than counter-drone capabilities Drones are increasingly connected to the internet Bottom line: Drones are going to become an increasing feature in our lives, for good and for bad

4 How many drones are out there? How long is a drone s lifespan? This is USA only what about the rest of the world? The trend is an increasing rate of purchase US Figures FAA

5 Today s Themes What is a drone? Focus on airborne drones Generic system description Where drones might be vulnerable Countering Drones Where next? Cyber and drones drones delivering cyber effect?

6 Drone Manufacturing Commercial Off The Shelf (COTS) Self build / re-purposed RC aircraft Hobbyist Terror weapons Non-commercial (i.e. Military)

7 Generic System Architecture I n t e r n e t or More Like IT More Like OT

8 Generic System Architecture I n t e r n e t COTS CIS or Smartphone / Tablet Bespoke / proprietary design with firmware Standard Interfaces and protocols Commercial: Standard Interfaces and Protocols primarily USB and Micro SD card Non-COTS: Could be bespoke / proprietary format and / or interfaces

9 Generic System Architecture Depicted as Point to Point but in reality likely to be omni-directional Tend to be proprietary formats; can be IPbased (sessions) in advanced systems Can be encoded and / or encrypted Uplink: Commands (low bandwidth) Downlink: Payload data plus telemetry (high bandwidth) Highly bespoke and proprietary design with firmware SWAP critical impact on platform performance

10 Generic Drone System View Display Operating System Operating System Datalink Datalink Nav System CPU Mission App Mission Software Flight Control Autopilot CPU Network Device Interfaces Interfaces Human Interface Flight Controls Sensors (inc GPS) Human Interface Storage CPU Display Interfaces Payload Storage Storage Operating System CIS Segment Ground Segment Air Segment

11 Trends Increasing platform capabilities: Height, speed, range, endurance Rapid deployment Component miniaturisation Operation: Ease of use Complex / advanced modes Diversifying payloads Thermal Imaging / Infra Red /Multispectral RF sensing Swappable payloads

12 Counter-Drone Capability Drones present an extremely hard target, with detection very difficult Low radar cross section / low volume of metal / non-metallic rotors Low acoustic signature Low thermal signature Low power RF transmitters Quad / multi-rotors can behave like birds (radar auto-discard) Operators can be highly mobile and transient

13 Counter-Drone Solution - Detection

14 Counter-Drone Solution - Defeat

15 Wifi Sniffer Drone Pineapple Nano Betaflight OMNIBUS F4 Pro V2 Flight controller, M8N GPS, DYS F20A ESC, KV motors, and 5030 carbon fibre 2 blade props, mounted on a 3D printed ABS frame Project Cuckoo flies to its target, lands, and is a rogue access point/pivot for getting into the targeted network. The hacker then drops their (egg) shells*/persistence, and fly off Land on a roof somewhere, forget about it for a couple of hours, then fly it home later when its soaked up all the data you want. *post-exploitation surveillance penetration testing tool

16 So a challenge for you Help close the gap between the cost of drones and the costs of Counter-drone solutions Create as much disruptive technology in detection and defeat as there is in the drone

17 Thank You / Question and Answers Tony Reeves: tony.reeves@level7expertise.com