Skip to main content

2019 | OriginalPaper | Buchkapitel

Aviation Cybersecurity and Cyber-Resilience: Assessing Risk in Air Traffic Management

verfasst von : Georgia Lykou, George Iakovakis, Dimitris Gritzalis

Erschienen in: Critical Infrastructure Security and Resilience

Verlag: Springer International Publishing

Aktivieren Sie unsere intelligente Suche um passende Fachinhalte oder Patente zu finden.

search-config
loading …

Abstract

Civil aviation is the safest transport mode in the world and probably also the most interconnected system of information and communication technology. Cyber-attacks are increasing in quantity and persistence, so the consequences of a successful malicious cyber-attack on civil aviation operations could be severe nowadays. New technologies, extension of connectivity and their integration in the aviation industry, especially in the field of Air Traffic Management (ATM), increase the risk to these critical assets. This chapter examines cyber security challenges and interoperability in ATM systems. We propose an extended threat model for analyzing possible targets and risks involved. We also introduce and analyze cyber resilience aspects in the aviation context and the need for holistic strategy of defense, prevention and response. Under the resilience umbrella, all actors should work on collaborative, risk-based framework to address security threats and increase the aviation systems resilience against future attacks.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

  • über 102.000 Bücher
  • über 537 Zeitschriften

aus folgenden Fachgebieten:

  • Automobil + Motoren
  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Elektrotechnik + Elektronik
  • Energie + Nachhaltigkeit
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Maschinenbau + Werkstoffe
  • Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

  • über 67.000 Bücher
  • über 390 Zeitschriften

aus folgenden Fachgebieten:

  • Automobil + Motoren
  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Elektrotechnik + Elektronik
  • Energie + Nachhaltigkeit
  • Maschinenbau + Werkstoffe




 

Jetzt Wissensvorsprung sichern!

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

  • über 67.000 Bücher
  • über 340 Zeitschriften

aus folgenden Fachgebieten:

  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Versicherung + Risiko




Jetzt Wissensvorsprung sichern!

Fußnoten
1
IMPROVER is a Horizon 2020 project focusing on how to improve European critical infrastructure resilience
 
Literatur
1.
Zurück zum Zitat Lim B (2014) Aviation security – emerging threats from cyber security in aviation – challenges and mitigations. J Aviat Manag Lim B (2014) Aviation security – emerging threats from cyber security in aviation – challenges and mitigations. J Aviat Manag
2.
Zurück zum Zitat Industry High-Level Group (IHLG) (2017) Aviation benefits 2017 report Industry High-Level Group (IHLG) (2017) Aviation benefits 2017 report
3.
Zurück zum Zitat De Zan T, d’Amore F, Di Camillo F (2015) The Defence of civilian air traffic systems from cyber threats De Zan T, d’Amore F, Di Camillo F (2015) The Defence of civilian air traffic systems from cyber threats
4.
Zurück zum Zitat Kreuzer M, Kiesling T (2017) Recommendations to strengthen the cyber resilience of the air traffic system, ARIEL, Air Traffic Resilience Kreuzer M, Kiesling T (2017) Recommendations to strengthen the cyber resilience of the air traffic system, ARIEL, Air Traffic Resilience
5.
Zurück zum Zitat Lykou G, Anagnostopoulou A, Gritzalis D (2018) Implementing cyber-security measures in airports to improve cyber-resilience, WIIoTS in the 2nd global IoT summit Lykou G, Anagnostopoulou A, Gritzalis D (2018) Implementing cyber-security measures in airports to improve cyber-resilience, WIIoTS in the 2nd global IoT summit
6.
Zurück zum Zitat Strohmeier M et al (2014) Realities and challenges of nextgen air traffic management: the case of ADS-B. IEEE Communations Magazine 52(5):111–118CrossRef Strohmeier M et al (2014) Realities and challenges of nextgen air traffic management: the case of ADS-B. IEEE Communations Magazine 52(5):111–118CrossRef
7.
Zurück zum Zitat Strohmeier M et al (2016) Assessing the impact of aviation security on cyber power. In the 8th international conference on cyber conflict cyber power Strohmeier M et al (2016) Assessing the impact of aviation security on cyber power. In the 8th international conference on cyber conflict cyber power
8.
Zurück zum Zitat Strohmeier M et al (2016) On perception and reality inWireless air traffic communications security Strohmeier M et al (2016) On perception and reality inWireless air traffic communications security
9.
Zurück zum Zitat Costin A, Francillon A (2012) Ghost is in the air(traffic): on insecurity of ADS-B protocol and practical attacks on ADS-B devices. In black hat USA Costin A, Francillon A (2012) Ghost is in the air(traffic): on insecurity of ADS-B protocol and practical attacks on ADS-B devices. In black hat USA
10.
Zurück zum Zitat The European Commission (2011) Commission regulation laying down common airspace usage requirements and operating procedures for airborne collision avoidance, no. 1332. European Union The European Commission (2011) Commission regulation laying down common airspace usage requirements and operating procedures for airborne collision avoidance, no. 1332. European Union
11.
Zurück zum Zitat International Civil Aviation Organisation (2013) Initial capability for ground surveillance. In global air navigation plan 2013–20282 International Civil Aviation Organisation (2013) Initial capability for ground surveillance. In global air navigation plan 2013–20282
13.
Zurück zum Zitat CANSO (2014) Cyber security and risk assessment. Civil Air Navigation Services Organization CANSO (2014) Cyber security and risk assessment. Civil Air Navigation Services Organization
14.
Zurück zum Zitat Kumar S, Xu B (2017) Vulnerability assessment for security in aviation cyber-physical systems. IEEE 4th international conference on cyber security and cloud computing Kumar S, Xu B (2017) Vulnerability assessment for security in aviation cyber-physical systems. IEEE 4th international conference on cyber security and cloud computing
15.
Zurück zum Zitat Sampigethaya K, Poovendran R, Bushnell L (2008) Secure operation, control and maintenance of future E-enabled airplanes, Network Security Lab (NSL), EE Department, University of Washington, SeattleCrossRef Sampigethaya K, Poovendran R, Bushnell L (2008) Secure operation, control and maintenance of future E-enabled airplanes, Network Security Lab (NSL), EE Department, University of Washington, SeattleCrossRef
16.
Zurück zum Zitat Lim B (2014) Aviation security – emerging threats from cyber security in aviation – challenges and mitigations, J Aviat Manag Lim B (2014) Aviation security – emerging threats from cyber security in aviation – challenges and mitigations, J Aviat Manag
17.
Zurück zum Zitat Stander A, Ophoff J (2016) Cyber security in civil aviation Stander A, Ophoff J (2016) Cyber security in civil aviation
18.
Zurück zum Zitat Jeyakodi D (2015) Cyber security in civil aviation Jeyakodi D (2015) Cyber security in civil aviation
19.
Zurück zum Zitat Stouffer K, Falco J, Scarfone K (2007) Guide to industrial control systems (ICS) security. Recommed. NIST., no. SP 800–82, pp 1–157 Stouffer K, Falco J, Scarfone K (2007) Guide to industrial control systems (ICS) security. Recommed. NIST., no. SP 800–82, pp 1–157
20.
Zurück zum Zitat Theocharidou M et al (2016) D1.3-final lexicon of definitions related to critical infrastructure resilience, IMPROVER, European Union’s horizon 2020 research Theocharidou M et al (2016) D1.3-final lexicon of definitions related to critical infrastructure resilience, IMPROVER, European Union’s horizon 2020 research
21.
Zurück zum Zitat Lange D et al (2017) Framework for implementation of resilience concepts to critical infrastructure, IMPROVER, European Union’s horizon 2020 research Lange D et al (2017) Framework for implementation of resilience concepts to critical infrastructure, IMPROVER, European Union’s horizon 2020 research
22.
Zurück zum Zitat EUROCONTROL (2012) Manual for national ATM security oversight, Eurocontrol Publications EUROCONTROL (2012) Manual for national ATM security oversight, Eurocontrol Publications
24.
Zurück zum Zitat Delgado L, Cook A, Tanner G, Cristóbal S (2016) Quantifying resilience in ATM, in the proc. of 6th SESAR innovation days, Technical University of Delft, The Netherlands Delgado L, Cook A, Tanner G, Cristóbal S (2016) Quantifying resilience in ATM, in the proc. of 6th SESAR innovation days, Technical University of Delft, The Netherlands
Metadaten
Titel
Aviation Cybersecurity and Cyber-Resilience: Assessing Risk in Air Traffic Management
verfasst von
Georgia Lykou
George Iakovakis
Dimitris Gritzalis
Copyright-Jahr
2019
DOI
https://doi.org/10.1007/978-3-030-00024-0_13