[PLUG] Looking for some WiFi AP Security Advice
Mark Phillips
mark at phillipsmarketing.biz
Sun Dec 24 19:59:00 UTC 2023
I am working on a project and need some security advice.
The project is a wireless model rocket launcher. It consists of a Raspberry
Pi 2 W (Debian Buster) connected to a daughter board with circuitry
to control the current to ignite the igniter, a TP-Link Wifi AP, and a cell
phone. There is a web site (apache and flask) running on the Pi that allows
the user to control the circuits on the daughter board to launch the
rocket.
The typical location for launching the rockets is in a large field far from
any buildings or trees. Typically, there is no WiFi Internet connectivity
and cell service is problematical. There are quite a few people attending
the launch. There are also times when this launcher will be used in a more
urban environment (like a high school field), so there may be WiFi and cell
access to the Internet. I want to make the system "unattractive" to the
high school students or anyone else who thinks it would be cool to hack the
launcher during a launch.
I want to set up some sort of secure connection between the cell phone and
the web site running on the Pi. My main concern is an attacker connecting
to the web site and igniting the rocket while the user is connecting the
wires to the igniter. Model rocket motors generate an exhaust gas with a
temperature of ~3,000 F. Also, the igniter needs 2-4 A dc for 300 - 500
msec to ignite the rocket motor.
I have put these security layers in place.
1. 16 character password to access the WiFi AP network
2. MAC address filtering on the WiFi AP
3. Self signed SSL cert for the web site
4. 16 character password to access the web site
5. Standard flask cookie security for CSRF
6. 8 character code to enable the launcher (the equivalent to a physical
launch key)
7. A physical switch on the launcher that disables the ignition circuit -
for use when attaching the igniter leads to the rocket engine. However,
there is no guarantee that the user will use this switch everytime he/she
loads a new rocket on the launcher. There is a timer attached to the switch
so that when the switch is put in the "on" position, the igniter circuit
will not be enabled for another 10 seconds...enough time to run like h*ll
away from the launcher....;)
I am not a security guru, so I am not really sure what my options are. Do
you have any other suggestions on how I can make this system more secure?
Am I doing anything that is unnecessary?
Thanks!
Mark
More information about the PLUG
mailing list