During Phase 1a of the ASISP program, Astronautics established a methodology that identified and categorized potential aircraft security risks to critical avionics systems. In Phase 1b, Astronautics identified and evaluate mitigation alternatives for these risks. Now in Phase 2, Astronautics, working with industry, will run Security Risk Assessments (SRA) to determine the effectiveness of the methodology, and refine the methodology as necessary. The combination of ASISP Phases 1 and 2 will form the FAA’s total SRA methodology.
“Over the next 30 months, Astronautics’ cybersecurity team will execute the methodology on several, specific SRA test cases in order to evaluate these mitigations and further refine the methodology,” explained David Jones, Astronautics’ manager of avionics security assurance. “Based on these results, Astronautics will make recommendations to the FAA that will assist both the U.S. Government and the aviation industry in addressing ASISP/cybersecurity risks.”
“As a leader in cybersecurity, Astronautics is committed to continuing our successful work with the FAA on new cybersecurity methodologies,” said Chad Cundiff, Astronautics’ president. “As a key provider of connectivity systems for fixed and rotary-wind aircraft, Astronautics realizes that being cyber secure is critical to our customers. This is why we have been at the forefront of cybersecurity research.”
Astronautics successfully completed ASISP Phase 1a in June 2017 and Phase 1b in August 2019.