Cyber-security challenges in aviation industry: a review of current and future trends

Elochukwu Ukwandu; Mohamed Amine Ben-Farah; Hanan Hindy; Miroslav Bures; Robert Atkinson; Christos Tachtatzis; Ivan Andonovic; Xavier Bellekens

doi:10.3390/info13030146

Cyber-security challenges in aviation industry: a review of current and future trends

Elochukwu Ukwandu, Mohamed Amine Ben-Farah, Hanan Hindy, Miroslav Bures, Robert Atkinson, Christos Tachtatzis, Ivan Andonovic, Xavier Bellekens

Research output: Contribution to journal › Review article › peer-review

42 Citations (Scopus)

493 Downloads (Pure)

Abstract

The integration of Information and Communication Technology (ICT) tools into mechanical devices in routine use within the aviation industry has heightened cyber-security concerns. The extent of the inherent vulnerabilities in the software tools that drive these systems escalates as the level of integration increases. Moreover, these concerns are becoming even more acute as the migration within the industry in the deployment of electronic-enabled aircraft and smart airports gathers pace. A review of cyber-security attacks and attack surfaces within the aviation sector over the last 20 years provides a mapping of the trends and insights that are of value in informing on future frameworks to protect the evolution of a key industry. The goal is to identify common threat actors, their motivations, attacks types and map the vulnerabilities within aviation infrastructures most commonly subject to persistent attack campaigns. The analyses will enable an improved understanding of both the current and potential future cyber-security protection provisions for the sector. Evidence is provided that the main threats to the industry arise from Advance Persistent Threat (APT) groups that operate, in collaboration with a particular state actor, to steal intellectual property and intelligence in order to advance their domestic aerospace capabilities as well as monitor, infiltrate and subvert other sovereign nations’ capabilities. A segment of the aviation industry commonly attacked is the Information Technology (IT) infrastructure, the most prominent type of attack being malicious hacking with intent to gain unauthorised access. The analysis of the range of attack surfaces and the existing threat dynamics has been used as a foundation to predict future cyber-attack trends. The insights arising from the review will support the future definition and implementation of proactive measures that protect critical infrastructures against cyber-incidents that damage the confidence of customers in a key service-oriented industry.

Original language	English
Article number	146
Number of pages	22
Journal	Information
Volume	13
Issue number	3
Early online date	10 Mar 2022
DOIs	https://doi.org/10.3390/info13030146
Publication status	Published - 10 Mar 2022

Funding

Funding: The research is supported by the European Union Horizon 2020 Programme “FORESIGHT (Advanced cyber-security simulation platform for preparedness training in Aviation, Naval and Power-grid environments)” under Grant Agreement No. 833673. The content reflects the authors’ view only and the Agency is not responsible for any use that may be made of the information within the paper.

Keywords

aviation industry
cyber-security
threat dynamics
information and communication technologies
cyber-incidents

Access to Document

10.3390/info13030146Licence: CC BY 4.0

Ukwandu-etal-Information-2022-Cyber-security-challenges-in-aviation-industryFinal published version, 430 KBLicence: CC BY 4.0

Advanced Cyber-Security Simulation Platform For Preparedness Training in Aviation, Naval and Powergrid environments (FORESIGHT) (H2020 SC7)
Bellekens, X. (Principal Investigator), Atkinson, R. (Co-investigator) & Tachtatzis, C. (Co-investigator)
European Commission - Horizon Europe + H2020
1/10/19 → 30/09/22
Project: Research

Cite this

@article{9943c03f5ee74380acfae2db47fdd568,

title = "Cyber-security challenges in aviation industry: a review of current and future trends",

abstract = "The integration of Information and Communication Technology (ICT) tools into mechanical devices in routine use within the aviation industry has heightened cyber-security concerns. The extent of the inherent vulnerabilities in the software tools that drive these systems escalates as the level of integration increases. Moreover, these concerns are becoming even more acute as the migration within the industry in the deployment of electronic-enabled aircraft and smart airports gathers pace. A review of cyber-security attacks and attack surfaces within the aviation sector over the last 20 years provides a mapping of the trends and insights that are of value in informing on future frameworks to protect the evolution of a key industry. The goal is to identify common threat actors, their motivations, attacks types and map the vulnerabilities within aviation infrastructures most commonly subject to persistent attack campaigns. The analyses will enable an improved understanding of both the current and potential future cyber-security protection provisions for the sector. Evidence is provided that the main threats to the industry arise from Advance Persistent Threat (APT) groups that operate, in collaboration with a particular state actor, to steal intellectual property and intelligence in order to advance their domestic aerospace capabilities as well as monitor, infiltrate and subvert other sovereign nations{\textquoteright} capabilities. A segment of the aviation industry commonly attacked is the Information Technology (IT) infrastructure, the most prominent type of attack being malicious hacking with intent to gain unauthorised access. The analysis of the range of attack surfaces and the existing threat dynamics has been used as a foundation to predict future cyber-attack trends. The insights arising from the review will support the future definition and implementation of proactive measures that protect critical infrastructures against cyber-incidents that damage the confidence of customers in a key service-oriented industry.",

keywords = "aviation industry, cyber-security, threat dynamics, information and communication technologies, cyber-incidents",

author = "Elochukwu Ukwandu and Ben-Farah, {Mohamed Amine} and Hanan Hindy and Miroslav Bures and Robert Atkinson and Christos Tachtatzis and Ivan Andonovic and Xavier Bellekens",

year = "2022",

month = mar,

day = "10",

doi = "10.3390/info13030146",

language = "English",

volume = "13",

journal = "Information",

issn = "2078-2489",

publisher = "MDPI AG",

number = "3",

}

TY - JOUR

T1 - Cyber-security challenges in aviation industry

T2 - a review of current and future trends

AU - Ukwandu, Elochukwu

AU - Ben-Farah, Mohamed Amine

AU - Hindy, Hanan

AU - Bures, Miroslav

AU - Atkinson, Robert

AU - Tachtatzis, Christos

AU - Andonovic, Ivan

AU - Bellekens, Xavier

PY - 2022/3/10

Y1 - 2022/3/10

N2 - The integration of Information and Communication Technology (ICT) tools into mechanical devices in routine use within the aviation industry has heightened cyber-security concerns. The extent of the inherent vulnerabilities in the software tools that drive these systems escalates as the level of integration increases. Moreover, these concerns are becoming even more acute as the migration within the industry in the deployment of electronic-enabled aircraft and smart airports gathers pace. A review of cyber-security attacks and attack surfaces within the aviation sector over the last 20 years provides a mapping of the trends and insights that are of value in informing on future frameworks to protect the evolution of a key industry. The goal is to identify common threat actors, their motivations, attacks types and map the vulnerabilities within aviation infrastructures most commonly subject to persistent attack campaigns. The analyses will enable an improved understanding of both the current and potential future cyber-security protection provisions for the sector. Evidence is provided that the main threats to the industry arise from Advance Persistent Threat (APT) groups that operate, in collaboration with a particular state actor, to steal intellectual property and intelligence in order to advance their domestic aerospace capabilities as well as monitor, infiltrate and subvert other sovereign nations’ capabilities. A segment of the aviation industry commonly attacked is the Information Technology (IT) infrastructure, the most prominent type of attack being malicious hacking with intent to gain unauthorised access. The analysis of the range of attack surfaces and the existing threat dynamics has been used as a foundation to predict future cyber-attack trends. The insights arising from the review will support the future definition and implementation of proactive measures that protect critical infrastructures against cyber-incidents that damage the confidence of customers in a key service-oriented industry.

AB - The integration of Information and Communication Technology (ICT) tools into mechanical devices in routine use within the aviation industry has heightened cyber-security concerns. The extent of the inherent vulnerabilities in the software tools that drive these systems escalates as the level of integration increases. Moreover, these concerns are becoming even more acute as the migration within the industry in the deployment of electronic-enabled aircraft and smart airports gathers pace. A review of cyber-security attacks and attack surfaces within the aviation sector over the last 20 years provides a mapping of the trends and insights that are of value in informing on future frameworks to protect the evolution of a key industry. The goal is to identify common threat actors, their motivations, attacks types and map the vulnerabilities within aviation infrastructures most commonly subject to persistent attack campaigns. The analyses will enable an improved understanding of both the current and potential future cyber-security protection provisions for the sector. Evidence is provided that the main threats to the industry arise from Advance Persistent Threat (APT) groups that operate, in collaboration with a particular state actor, to steal intellectual property and intelligence in order to advance their domestic aerospace capabilities as well as monitor, infiltrate and subvert other sovereign nations’ capabilities. A segment of the aviation industry commonly attacked is the Information Technology (IT) infrastructure, the most prominent type of attack being malicious hacking with intent to gain unauthorised access. The analysis of the range of attack surfaces and the existing threat dynamics has been used as a foundation to predict future cyber-attack trends. The insights arising from the review will support the future definition and implementation of proactive measures that protect critical infrastructures against cyber-incidents that damage the confidence of customers in a key service-oriented industry.

KW - aviation industry

KW - cyber-security

KW - threat dynamics

KW - information and communication technologies

KW - cyber-incidents

U2 - 10.3390/info13030146

DO - 10.3390/info13030146

M3 - Review article

SN - 2078-2489

VL - 13

JO - Information

JF - Information

IS - 3

M1 - 146

ER -

Cyber-security challenges in aviation industry: a review of current and future trends

Abstract

Funding

Keywords

Access to Document

Fingerprint

Projects

Advanced Cyber-Security Simulation Platform For Preparedness Training in Aviation, Naval and Powergrid environments (FORESIGHT) (H2020 SC7)

Cite this