Cybersecurity Issues in Aviation
Cyberattacks are one of the most threatening threats to aviation security in this age, better known as the technological era. While our networks are extremely efficient and safe in fundament, they are still very vulnerable to cyber attacks. As shown in research, we are most prone to SCADA or “infiltration of supervisory control and data acquisition” hackers. As the interconnection of aviation services grows, so does the risk of security breaches. Commercial aviation faces some unique issues when it comes to cybersecurity. Internal security breaches, for example, or assaults from outside sources, such as the supply chain and network connections inside the industry, are examples of cyberthreats. These manifest themselves as system failures, network issues and issues in flight operations. There are many systems that could be attacked, these include but are not limited to passport control, security scanning, airline systems and cloud-based information systems.
TSA, or the Transportation Security Administration, works in a risk-based strategic imperative and has divided itself into centers that work together using a prevention-detection- response model. The center that pertains to our issue is the Center for Cyber and Homeland security or CCHS. It creates new ways to address and fight existing and future threats by bringing together domestic and international policymakers as well as practitioners from all levels of government, the commercial and non-profit sectors, and academia.
In general terms, TSA is successful in their prevention and identification of threats due to their multi-level and collaborative systems. On ground, systems such as intelligence, joint terrorism, behavior detection, no flight lists, random employee screening and transportation security inspectors are crucial. Knowledgeable employees must be monitored, as well as individuals on flight lists. However, TSA is also able to mitigate issues on air, with flight marshals, hardened cockpit doors and trained flight crews. If an event was to occur, TSA is able to detect it on ground, and address the vulnerability using officers, trained flight crew and utilizing behavior detection. In air, by making the cockpit harder to access and implementing flight Marshalls.
Computerized systems, software components, software control of equipment, and off-board communication capabilities all necessitate an effective security solution for the current in-service generation of aircraft. Which brings me to my recommendation of a holistic cyber management. A great example is Boeing’s ISAC, which wen used in combination to TSA, presents a valuable and specialized venue to manage hazards to the aviation infrastructure. Utilizing TSA as well as “firewall systems” and implementing academic research such as the one presented by Boeing, can help us better track and combat threats as well as better train our crews and aeronautical officers.
Resources:
AERO. (n.d.). Securing Airline Information on the Ground and in the Air. Boeing, Securing airline information on the ground and in the Air. Retrieved February 4, 2022, from https://www.boeing.com/commercial/aeromagazine/articles/2012_q3/5/
Beckner, C. (2015). Risk-Based Security and the Aviation System: Operational Objectives and Policy Challenges. Center for Cyber and Homeland Security at Auburn University.
Parfomak, P. W. (2012, August). Pipeline cybersecurity: Federal policy. Congressional Research Service, Library of Congress.
Comments
Post a Comment