Policy for Building Resilience to Cyber Threats in Civil Aviation

Authors

DOI:

https://doi.org/10.5281/zenodo.17768527

Keywords:

cyberattacks, civil aviation, cybersecurity, cyber threats, aviation

Abstract

Building resilience to cyber threats requires the synergy of regulatory, operational, and educational actions in order to effectively protect the aviation sector. The aim of the article will be an analysis of dynamically developing digital threats in the aviation industry and the ways of counteracting them. An identification of threats in civil aviation will be carried out. Due to the fact that, along with the progressing digitalization of aviation infrastructure and operations, the risk of cyberattacks is increasing, which may disrupt the functioning of navigation systems, reservation systems, or airport infrastructure. The main international and European regulations and the strategies for counteracting these threats will be discussed, both by intergovernmental organizations such as ICAO, the EU, or EASA, but also by industry non-governmental organizations such as IATA. Key challenges and the necessity of developing a culture of digital security will also be analyzed.

References

Ayçiçek, S., Öz, S., (2021). Fair Logistics, Journal of Industriaal Policy and Technology Management (JIPAT), 4(1), pp. 11-25.

Bayram, S., Öz, S., Ekmekci, İ., (2022). Metaverse platformlarında siber güvenliğe yönelik yaklaşımlar, Chapter in the Book: Metaverse, Saabri Öz, Rızvan Yılmaz, Cengiz Akyıldız, İstanbul, Hiperyayın, pp. 163-191.

Çelik, F.B., Avşar, B., Öz, S., (2019). Structural Investigation of Project Logistics and Transportation, Journal of Industriaal Policy and Technology Management (JIPAT), 2(1), pp. 13-22.

European Commission. (2019). Commission Implementing Regulation (EU) 2019/1583 of 25 September 2019 amending Implementing Regulation (EU) 2015/1998 laying down detailed measures for the implementation of the common basic standards on civil aviation security with regard to cybersecurity measures (OJ L 246, 15–18).

European Commission. (2020a). Communication from the Commission to the European Parliament, the European Council, the Council, the European Economic and Social Committee and the Committee of the Regions on the EU Security Union Strategy (COM(2020) 605 final).

European Commission & European External Action Service. (2020b). Joint Communication to the European Parliament and the Council: The EU’s Cybersecurity Strategy for the Digital Decade (JOIN(2020) 18 final).

European Parliament & Council of the European Union. (2021). Regulation (EU) 2021/696 of 28 April 2021 establishing the Union Space Programme and the European Union Agency for the Space Programme and repealing Regulations (EU) No 912/2010, (EU) No 1285/2013, (EU) No 377/2014 and Decision No 541/2014/EU (OJ L 170, 69–148).

Filinovych, V., & Hu, Z. (2021). Aviation and the cybersecurity threats. In Advances in Economics, Business and Management Research (Vol. 188, pp. 120–126). https://doi.org/10.2991/aebmr.k.210826.021

Madej, M., & Terlikowski, M. (2009). Teleinformation security of the state. Polish Institute of International Affairs.

Nassi, B., Bitton, R., Masuoka, R., Shabtai, A., & Elovici, Y. (2021). SoK: Security and privacy in the age of commercial drones. In 2021 IEEE Symposium on Security and Privacy (SP) (p. 1434). IEEE.

Official Journal of the European Union. (2018). Regulation (EU) 2018/1139 of the European Parliament and of the Council of 14 August 2018 on common rules in the field of civil aviation and establishing a European Union Aviation Safety Agency, and amending various aviation-related regulations and directives (OJ L 212, 1–122).

Official Journal of the European Union. (2019a). Commission Implementing Regulation (EU) 2019/947 of 24 May 2019 on the rules and procedures for the operation of unmanned aircraft (OJ L 152, 1–40).

Official Journal of the European Union. (2019b). Commission Delegated Regulation (EU) 2019/945 of 12 March 2019 on unmanned aircraft and on third-country operators of unmanned aircraft systems (OJ L 152, 45–71).

Official Journal of the European Union. (2022). Directive (EU) 2022/2555 of the European Parliament and of the Council of 14 December 2022 on measures for a high common level of cybersecurity across the Union (NIS 2 Directive) and repealing Directive (EU) 2016/1148 (OJ L 333, 80–152).

Sidorkiewicz, K. (2010). Contemporary approaches to the functions of the state. Studia Elbląskie, 11, 215–229.

Szczepaniuk, E. (2023). Selected aspects of cybersecurity in civil aviation. Aviation and Security Issues, 3(1/2023), 110.

Tubis, A. A., Poturaj, H., Dereń, K., & Żurek, A. (2024). Risks of drone use in light of literature studies. Sensors, 24(4), 1205.

Ukwandu, E., Ben-Farah, M., Hindy, H., Bures, M., Atkinson, R., Tachtatzis, C., Andonovic, I., & Bellekens, X. (2022). Cyber-security challenges in the aviation industry: A review of current and future trends. Information, 13(3), 146. https://doi.org/10.3390/info13030146

Zając, G. (2021). Advancement of unmanned aircraft machines applications for aviation safety and global marketplace. In Technology Management and Industrial Policy (Vol. 1, pp. 62). Istanbul, Turkey.

11 Valuable Study is Publishing in 1(2) of JISTECH

Downloads

Published

2025-12-04

How to Cite

Zajac, G. K. (2025). Policy for Building Resilience to Cyber Threats in Civil Aviation. Journal of İstanbul School of Technology, 1(2), 350–371. https://doi.org/10.5281/zenodo.17768527

Issue

Vol. 1 No. 2 (2025): JISTECH

Section

Articles

License

Copyright (c) 2025 Grzegorz K. ZAJAC

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.