The specific objective of this task is to create a regulatory system that efficiently contributes to the protection of the aviation system from cyber-attacks and their consequences. To achieve this objective, it is proposed to introduce provisions for the management of cybersecurity risks by organisations in all the aviation domains (design, production, continuing airworthiness management, maintenance, operations, aircrew, ATM/ANS, aerodromes). These provisions would include high-level, performance-based requirements, and would be supported by AMC & GM material and industry standards.