Introduction To Aviation Cybersecurity

Lesson 1: Aircraft Hacking
2 Topics
Lesson 1 – Topic 1: Aircraft Hacking
Lesson 1 – Topic 2: Regulatory Guidance
Lesson 2: Concerns From The Pandemic
2 Topics
Lesson 2 – Topic 1: Healthcare cybersecurity regulations and compliance
Lesson 2 – Topic 2: Concerns from the pandemic
Lesson 3: Security Risks And Threats to Civil Aviation
1 Topic
Lesson 3 – Topic 1: Security risks and threats to civil aviation
Lesson 4: Information Guidance
 4 Topics
Lesson 4 – Topic 1: What is a Security Management System (SeMS)?
Lesson 4 – Topic 2: How to implement Security Management System (SeMS)?
Lesson 4 – Topic 3: Information Guidance- Why Policies are important
Lesson 4 – Topic 4: Regulatory Considerations
Lesson 5: Technology
 1 Topic
Lesson 5 – Topic 1: Technology
Lesson 6: Understanding Cyber Crime
 1 Topic
Lesson 6 – Topic 1: Cybercrime
Lesson 7: Recognizing The Source Of Threats
 2 Topics
Lesson 7 – Topic 1: Threats
Lesson 7 – Topic 2: Covid-19
Lesson 8: Is Your Organization Ready To Act
 2 Topics
Lesson 8 – Topic 1: Are you ready?
Lesson 8 – Topic 2: FACTS
Lesson 9: Impact
 2 Topics
Lesson 9 – Topic 1: What are the impacts of an attack?
Lesson 9 – Topic 2: Understanding the new challenges
Lesson 10: Zero Trust
 4 Topics
Lesson 10 – Topic 1: What is a zero-trust network model?
Lesson 10 – Topic 2: BlockChain
Lesson 10 – Topic 3: The problem
Lesson 10 – Topic 4: How the problem affects business/people
Lesson 11: Attack Vectors
 2 Topics
Lesson 11 – Topic 1: Infrastructures
Lesson 11 – Topic 2: Major Challenges: Elements vulnerable to attacks
Lesson 12: Vulnerability
 2 Topics
Lesson 12 – Topic 1: The two of the biggest threats to aviation security?
Lesson 12 – Topic 2: The 3 major threats in air transport?
Lesson 13: Practical Examples
 1 Topic
Lesson 13 – Topic 1: History
Lesson 14: 5G and Aviation Safety
 1 Topic
Lesson 14 – Topic 1: 5G and Aviation Safety
Final Cyber Security Quiz
Previous Topic
Next Lesson

Lesson 1 – Topic 2: Regulatory Guidance

Introduction To Aviation Cybersecurity Lesson 1: Aircraft Hacking Lesson 1 – Topic 2: Regulatory Guidance
laptop, office, hand-3196481.jpg

IATA and ICAO, started with compliance for cyberspace, which means creating a program that establishes risk-based controls to protect the integrity confidentiality and accessibility of information stored processed or transferred. However, cybersecurity compliance is not based in a standalone protocol or regulation. ISO -27032 is the international standard offering guidance on cyber security management. It provides guidance on addressing a wide range of cyber security risks, including user endpoint security network security and critical infrastructure protection.

Aviation interacts with all facets of the cybersecurity guidance regardless of the corporation associated.

FAA Reauthorization Act-sites provisions regarding the unmanned aircraft systems-UAS cyber security.

IATA created the Cyber Security Toolkit, provides guidance related to cyber threats and risks, but it is an active project. “IATA is working on the subject from different angles.

These involve data security, understanding and promoting best practice in Enterprise Risk Management and solutions that will help to protect airlines from the financial consequences of cyber events.”

Website Resource: Airlines.IATA.org

The ICAO regulatory guidance is structured around Annex 17-4.9.1 , The Aviation Security Manual and the Aviation Cybersecurity Strategy, takes into consideration the multi-faceted and multidisciplinary nature of cyber security, as noted that cyber- attacks may rapidly affect a wide spectrum of areas.  The goal of the strategy is aligned with other ICAO activities relative to cyber security, as well as coordinated with the safety and security management provisions. This will be managed through the seven pillars:  the most important being governance, cybersecurity policy, incident management and emergency planning.

Previous Topic
Back to Lesson
Next Lesson