MODELS FOR PROTECTING AIRPORT INFORMATION SYSTEMS FROM CYBER INCIDENTS

B. Allaberganov; D. Abdullayev

doi:10.5281/zenodo.7445057

B. Allaberganov , D. Abdullayev

Abstract. In today’s information age, government organizations and business enterprises are heavily relying on interconnected computer systems to manage a variety of public services including energy, transportation, water, etc. While this increased connectivity has many operational advantages benefitting the public, they have also become vulnerable to cyber attacks such as Corporate Security Breaches, Spear Phishing, and Social Media Fraud. The aviation sector is one the critical infrastructure systems that is not only vulnerable to physical threats, but also cyber threats, especially with the increased use of Bring Your Own Device (BYOD) at airports. It has been recognized that there is currently no cyber security standards established for airports in the United States as the existing standards have mainly focused on aircraft Control System (CS). This paper summarizes the need, background, ongoing developments and research efforts with respect to the establishment of cyber-security standards and best practices at U.S. airports with special emphasis on cyber security education and literacy.

Keywords: Airport, critical infrastructure, security, cyber, communications, networks, digital, penetration, vulnerability.

References:

1. ACI-NA . 2021. ACI-NA Business Information Technology Committee Participation Plan. Airports Council International of North America. Available from Internet: . 2. AirTight Networks. 2020. Impacts of Bring Your Own Device (BYOD) on Enterprise Security. A Survey by AirTight Networks, Inc. Available from Internet: . 3. Cook, C. 2020. Heathrow Terminal 5: An IT Infrastructure success story. Airports International Magazine, Key Publishing Ltd. 4. Cheong, B. 2021. Cyber security at airports. Airports Council International of North America. Available from Internet: . 5. Duggan, D.P. 2020. SAND2005-2846P: Penetration Testing of Industrial Control Systems. Technical report, Sandia National Laboratories. 6. Fortinet. 2019. Top 10 Network Security Threats. Fortinet, Inc. Available from Internet: . 7. GAO. 2019. Aviation Security: A National Strategy and Other Actions Would Strengthen TSA’s Efforts to Secure Commercial Airport Perimeters and Access Controls. 8. GAO-09-399. Report to Congressional Requesters, US Government Accountability Office (GAO), Washington, D.C. Available from Internet: . 9. Hahn, A.; Kregel, B.; Govindarasu, M.; Fitzpatrick, J.; Adnan, R.; Sridhar, S.; Higdon, M. 2020. Development of the PowerCyber SCADA security testbed.