New ATM system generations will be more open and flexible, making them a target for cyber attacks and terrorism. This article discusses solutions for ATSEP basic and on-the-job education on cyber-security.
For years, Air Traffic Management rooted its robustness and reliability on closed, inflexible autonomous surveillance islands. The new generation of ATM will be defined by an interconnection of entities monitoring, exchanging, aggregating, enhancing and double checking surveillance data, flight data, weather, airport information and so on. Dynamic routing and integrated areas like the Single European Sky turn ATM into an agile, decentral closed-loop control system embracing systems of many vendors.
In the past, ATCOs and ATSEP were trained to apply Electronic Counter Counter Measures on maliciously jammed or perturbed primary surveillance signals. Today, vigilance and counter strategies are needed for cyber attacks on the totality of surveillance and navigation systems, datalinks, radio and communication networks.
For the ATSEP, the utmost goal is to keep the ATM systems uncompromised and operative. In case of system degradation, escalation routines and skilled personnel shall limit the downtimes to a minimum.
Costas Christoforou, the European director of International Federation of IFATSEA, emphasized in his ATM-cyber security presentation on Feb. 25, 2021 the need for cyber-security related staff and user education. This comprises
The ATSEP needs to be skilled on cybersecurity architectures within ATM systems. Skilled means they need to be able to
The ATSEP needs to be familiar with typical components in a cyber secure infrastructure including firewalls, multifactor authentication, signed code, qualified digital signatures and seals. An important role play public key infrastructures to encrypt data at rest and in transit at all times, where the keys are accommodated in military-grade hardware security modules, managed by key life-cycle management systems.
Important components will be identifiable as attested devices with specific qualified electronic identities. Users and systems received access based on (qualified) electronic identities, managed and supervised by trust service authorities.
Intelligent AI-based analytics platforms and expert system support the discovery and localization of data breaches or malicious intrusions into systems.
The ATSEP shall understand the concepts of Artificial Intelligence, and the use, configuration and service of such systems.
Guided by analytics platforms, ATSEP should be able to discover vulnerabilities and terminate breaches within shortest response time. Depreciated systems need to be brought into a safe state in the shortest amount of time.
SkyRadar's modular training infrastructure includes
The training system can be compromised by a cyber attack simulator. The simulator creates threat awareness and teaches threat detection, prevention and post-attack recovery around the ATSEP's working environment.
The objective of these practical exercises is to help to gain the following competences:
The trainer includes
Contact us to discuss your project!
The author, Dr. Ulrich Scholten is cofounder of SkyRadar. He has been working on internet platforms since the early 2000s. Ulrich holds a PhD in information technology. He is author / editor of articles on cybersecurity with more than 30.000 monthly readers. His research is regularly published in highly rated journals and conference papers.