Like every other area of rapid digital advancement, the aviation industry has serious concerns regarding hacktivism, cybercrime and even state-sponsored attacks.
In other words, cybersecurity is on the minds of everyone in aviation.
With the rising size of the digital footprint of aircraft, new concerns have arisen regarding the safety of data communications both on the aircraft, between the aircraft and the ground and security of the networks used to facilitate this. In the past, cybersecurity had always been an on the ground issue. However, with the rise of the connected aircraft, this is changing.
Those in the aviation industry are calling for international cooperation, joined up governance and coherent and practical policies to address cybersecurity, coupled with practical solutions for information sharing, oversight, capacity building and training.
There’s a prevailing sentiment that the current siloed approach does not effectively address the issue.
Consequently, from an aviation-cybersecurity-standards perspective, there has been significant activity by both the European Aviation Safety Agency (EASA) and the U.S. FAA. New regulations make it so that the only way aircraft, aviation systems, engines, etc. will be able to achieve airworthiness certification is to comply with the recently updated DO-326 and ED-202.12
These new regulations are considerably more detailed and comprehensive in their approach to the management of cybersecurity risk.
Over the past several years, threats to airports have ranged from the mischievous to much more malicious and disruptive attacks.
Perhaps the definitive wake-up call occurred in 2013 at the Ataturk Airport and Sabiha Gokcen International Airport in Istanbul, Turkey. Both airports were the target of a coordinated cyberattack which impacted the passport control process and resulted in massive queues and considerable delays for passengers.
Want to know more? Tonex offers Aviation Cybersecurity Airworthiness Certification, a 3-day course that introduces participants to the aviation industry’s best practices of cybersecurity risk assessment, analysis, development, mitigation and assurance.
Additionally, Tonex offers nearly three dozen more courses in Cybersecurity Foundation. This includes cutting edge courses like:
For more information, questions, comments, contact us.