UNVEX 2024 - Cybersecurity in Aviation & UAS

Vasileios PAPAGEORGIOU
Vasileios PAPAGEORGIOU • 10 June 2024
in community Cybersecurity
3 comments
4 likes

UNVEX 2024 - Cybersecurity in Aviation & UAS

 

The UNVEX of 2024 was held in Barcelona on the 4th & 5th of June 2024. The event provided a great opportunity to experts and participants from all over the world to exchange on the foreseen future of unmanned systems and to witness the latest industry solutions for numerous systems and applications in the exhibition area.

Vasileios Papageorgiou, one of the experts in Cybersecurity in Aviation at EASA, was part of a session dedicated on technological solutions in the area of UAS. The EASA representative covered the aspects of cybersecurity in aviation and UAS and provided some insights on what the Agency is doing to ensure protection in these fields.

UNVEX Session

The EASA presentation started with an introduction on what information security is, what are the assets that we want to safeguard from an aviation safety point of view, the interplay between safety and security and a few examples of security vulnerabilities in UAS systems.

The panel discussed among others the different technologies that are now applicable in the UAS domain and the increased reliance on technological solutions as we move more and more towards autonomy.

Cybersecurity is more than just applying a few technical controls. Those (types of) security controls are just a tool among others and have to be applied in a structured, informed and proportionate way. [..]

Experience has showed us that it is not primarily the technology that is “faulty” but instead humans seem to be the weakest link of this chain, being often exploited by malicious actors in this field.

                                                                             - Vasileios Papageorgiou

What are your thoughts on UAS and Cybersecurity? Let us know in the comments below.

Comments (3)

Vasileios PAPAGEORGIOU
Vasileios PAPAGEORGIOU

Hi Michal, EASA participates in a dedicated subgroup under the NIS Cooperation Group aiming to identify among other things, overlaps and gaps between Part-IS, NIS2 and the AVSEC information security requirements. To achieve this we have indeed created a mapping table comparing the requirements stemming from NIS2 to the ones of Part-IS (and AVSEC). The deadline for this activity is October of this year and the aim is to provide guidance to facilitate aviation entities across Europe during the implementation of the respective rules.

As the mapping is still in a draft version, it cannot be shared with externals. We will update the community followers with a dedicated post on the outcomes of the discussions of the subgroup by the deadline above. In the meanwhile stay tuned to our community for the latest updates on Part-IS.


Please log in or sign up to comment.