Security

National Critical Infrastructure for Air Transportation

Aviation forms a part of a country's critical national infrastructure, and the impact of attacks on the aviation system, be they physical or in the cyber domain, can have devastating consequences, but many aviation systems are still unsecure.

Neuron provide advanced cyber security management for critical aviation systems, be it legacy systems that need linking to new digital systems, or implementing cutting-edge solutions based on the latest digital technologies and public/private key encryption.

We are able to audit your existing infrastructure and to assess the integration of new systems to create a cyber-secure operating environment. Network architectures can be checked for vulnerabilities and penetration testing can be planned and conducted to ensure end-to-end system cyber security.

With the introduction of advanced systems into an airport, or adjacent transportation systems, a series of checks and audits must be made to ensure the ongoing operational effectiveness of the technology infrastructure. Neuron Security is well equipped on the best approach to achieving a secure network system and to put long term protection in place.

Stakeholder Challenges

People: Behavioural analytics leveraging advanced segmentation, modelling and even machine learning, gamification, and geo-locations services.

Widespread interactive surfaces and devices enable real-time information and feedback but are key cyber threats.

Aircraft: Massive transformation which involves digitalisation to become connected aircraft.

Regulator: Air traffic control services, transportation systems, security (e.g. baggage handling and screening, customs and immigration). Airport infrastructure and service providers within airport systems.

Industry / Third-Party Providers: Fuel, cargo, transport sercvices, security services and other private operators often use siloed systems and in some cases old legacy technology designed long before cybersecurity was even a concern.







Digital Airport Security

The main areas to consider must include:

  • IT and Communications including internal and external infrastructure (LAN, WiFi, Cloud access)

  • Airside Operations: including among others – air traffic management (Refuelling, Cargo access)

  • Landside Operations: including the landside operations systems control centre

  • Safety and Security: authentication systems, surveillance systems, perimeter intrusion detection

  • Facilities and Maintenance: airport vehicles, energy management systems

All these present a possible threat vector that needs to be considered not only and the physical but at the electronic level which is where Neuron Security has domain level expertise.






Major Challenges to Overcome

Data Silos

Legacy or incompatible systems make it difficult to implement streamlined end-to-end security.

Connectivity

Physical assets are often controlled using the digital world, for example scanners, security cameras which are now connected to an airport’s or military systems, making it easier for a cybercriminal to get access to physical equipment. 5G is bringinng an explosion of IoT devices and therefore new challenges appear, connected to the inherent lack of security within these devices.

Threat Landscape

Technology is bringing the world of Stuxnet into the airport domains, criminals use increasingly sophisticated tools which might challenge any cybersecurity budgets, particularly at those without an intelligent approach to how to secure assets.

Without an ability to implement the latest security technologies is will be be lower than at a fortified airport. This will generate a disparity amongst airports and based in the methods and degree to which cybersecurity is addressed, some of them having a very mature cybersecurity posture while others will have limited capabilities.

Regulation

These come form local, regional and global organisations make it difficult to keep up with any sort of compliance, bolted onto Standards some of which benefit the security approach e.g. ISO27001 whereas others may impede good control and data governance

Stakeholders

Combine all the above, each with their own domain of control you get a complex ecosystem, with massive data flows moving among the different parties, with the volume, velocity and variety of the data quickly increasing. Big Data solutions are becoming ever more necessary in order to properly manage both the unstructured and structured data that is being generated, processed and stored within this complex ecosystem.

The Cyber Security System

The Neuron Cyber Security system makes the service simple, intuitive and hassle free for the user:


  1. We start by identifying the threat vectors and all possible vulnerabilities within the system of systems

  2. We check, and apply protections such that attacks can be blocked, and in the case of advanced blocks further measures can be undertaken.

  3. When breaches occur we ensure that they are detected in a timely fashion, and that full detection categorisation is achieved.

  4. This allows us to react to the attack quickly and in an informed way, ensuring that damage is limited, redundancy protections are activiated to ensure the continuity of operations, and that protections are updated to ensure ongoing network protection.

  5. We ensure this isn't just a point solutuion but one that works across a suite of budgets and locations to ensure a coordinated response to any attack in the future.

Confidence in system security and resilience measures will ensure confidence in the team's ability to to react successfully in the future.

Please get in touch to find out more about the Neuron Security solution