Use of computer networks and loadable software enables time-efficiency and cost reduction during aircraft lifecycle when compared to legacy solutions. As aircraft become connected to an online environment, it is susceptible to security threats impacting safety and operation. These security
threats due to intentional unauthorized electronic interaction can reduce safety levels and impacts operational and business aspects such as: passenger confidence, airline reputation and processes (e.g. flight delays). This paper presents a cybersecurity risk assessment conducted on in-service aircraft, through an application of tailored process based on available guidelines considering Aircraft Embedded Systems and exercising Threat Scenarios to identify sources of threats to safe operation, providing insights for strengthening confidentiality, integrity and availability of assets to improve Cybersecurity Aspects on further designs and assessments.
Ricardo Moraes Dos Santos, Gustavo de Carvalho Bertoli