Aviation Cyber Security
Aviation Cyber Security—maintaining safe, secure, and resilient flight operations—is a top priority for aviation.
Technology and digitization bring many advantages to aviation, but at the same time, create challenges in managing cyber vulnerabilities in this complex environment. The airline industry is an attractive target for cyber threat actors with a multitude of motivations, ranging from stealing value in data or monetary to causing disruptions and harm.
Through leadership and acting now, IATA will positively shape the nature of how the industry responds to the cyber security challenge. IATA, as part of its wider initiative in Aviation Cyber Security, presented to the ICAO Assembly 40th Session, Executive Committee, the Information Paper A40-WP/395 Aviation Cyber Security – Moving Forwards (pdf) with the views on the need for coordinated, proactive, and tangible progress on gaining visibility to and managing aviation cyber security risks as well as giving IATA’s support to the production of the ICAO Cyber Security Strategy (pdf).
In November 2018, IATA presented to the Second High-Level Conference on Aviation Security (HLCAS/2) the Working Paper HLCAS/2-WP/27 Aircraft Digital Protection – An Integrated Approach (pdf) with the views on the need for the Integrated Risk Management approach to cyber threats and risks for aircraft systems.
Evolving an Industry Strategy
IATA is developing an industry-wide Aviation Cyber Security Strategy to support the airline industry in addressing this ever-evolving threat. As part of this process, IATA produced the Aviation Cyber Security position paper (pdf) that outlines the IATA vision and mission as well as the next steps to be taken in addressing the aviation cyber security challenges.
This work is guided by the Security Advisory Council (SAC), which was established in June 2019. It advises IATA towards answering the cyber security challenges faced by IATA and the airline industry.
Aviation Cyber Security Roundtable (ACSR)
Another critical component of the cyber security strategy is the Aviation Cyber Security Roundtable. This annual forum aims to better understand and manage cyber security risk collaborating across disciplines, share experience as well as develop tangible actions to help the aviation industry. The ACSR gathers all the industry stakeholders to work towards a 2030 vision for a coordinated approach to aviation cyber security.
The work of the roundtable is focused on four cornerstones:
- Cyber security culture: Promoting a positive cyber security culture and raising awareness across the industry.
- Transparency and trust: Establishing a global approach to cyber security with a similar mindset to that which has guided aviation on safety and general security issues.
- Communications and collaboration: Creating stronger relationships among players in the aviation sector and with external entities to improve the development of best practices and the management of potential vulnerabilities.
- Workforce: Ensuring that aviation personnel are trained to recognize and manage cyber security risks; and inspiring the next generation leaders.
Find out what was discussed at the last roundtable (pdf)
The next Aviation Cyber Security Roundtable is planned for Q2 of 2020.
For more information
Should you want to be involved or for any questions related to Aviation Cyber Security, please do not hesitate to contact us.
Find out more about the IATA training course on aviation cyber security.