Journal of Information Technology Applications and Management

Korea Data Strategy Society (한국데이터전략학회)
권호 표지
DOI QR코드

DOI QR Code

Cyber Security Considerations and Countermeasures for UAM Air Traffic Management Infrastructure

UAM 항공교통관리 인프라의 사이버보안 고려사항 및 대응방안

  • Kyungwook Kim (Sungkyunkwan University(SKKU), Hanwha Systems Co., Ltd.)
  • Received : 2023.11.21
  • Accepted : 2023.12.18
  • Published : 2023.12.31
Download PDF
⟨ Previous Next ⟩

Abstract

In this paper, we aim to propose cyber security considerations and countermeasures for infrastructure and services in the UAM(Urban Air Mobility) Air Traffic Management field, which is one of the key elements of the UAM market that has not yet bloomed. Air traffic management is an important factor for safe navigation and social acceptance of UAM. In order to realize air traffic management, infrastructure and services based on solid network connectivity must be established. And for industries where connectivity is the core component, it can become an infiltration route for cyber threats. Therefore, cyber security is essential for the infrastructure and services. In detail, we will look into the definition of the existing air traffic management field and the cyber threats. In addition, we intend to identify cyber security threat scenarios that may occur in the newly designed UAM air traffic management infrastructure. Moreover, in order to study the cyber security countermeasures of the UAM air traffic management infrastructure, there will be analysis of the UAM operation concept. As a result, countermeasures applicable to the infrastructure and service fields will be suggested by referring to the cyber security frameworks.

Keywords

Acknowledgement

This research was supported by "Development of CNSi Acquisition and Utilization System Reliability Verification Technology for Low-density Urban Air Mobility(UAM) Traffic Management(RS-2022-00141758)" from Korea Agency for Infrastructure Technology Advancement(KAIA).

References

  1. Choi, C. H., Shin, C. H., and Shin, S. U., "Cyber Attack Group Classification Based on MITRE ATT&CK Model", Journal of Internet Computing and Services, Vol. 23, No. 6, 2022, pp. 1-13.
  2. EUROCONTROL, "EUROCONTROL EATMCERT Services Think Paper #12 - 5 July 2021", 2021.
  3. ICAO, "Procedures for Air Navigation Services: Air Traffic Management (Doc 4444)", 2001.
  4. ICAO, "Security and Facilitation Strategic Objective: Aviation Cybersecurity Strategy", 2019.
  5. Lim, I. K. and Kang, J. Y., "Security Problems in Aircraft Digital Network System and Cybersecurity Strategies", Journal of Advanced Navigation Technology, Vol. 21, No. 6, 2017, pp. 633-637. https://doi.org/10.12673/JANT.2017.21.6.633
  6. Lykou, G., Anagnostopoulou, A.. and Gritzalis, D., "Smart Airport Cybersecurity: Threat Mitigation and Cyber Resilience Controls", Sensors, Vol. 19, No. 1, 2018, p. 19.
  7. Ministry of Land, Infrastructure and Transport, "Korean Urban Air Transportation(K-UAM) Roadmap", 2020.
  8. Morgan Stanley, "Flying Cars: Investment Implications of Autonomous UAM", 2019.
  9. Naik, N., Jenkins, P., Grace, P., and Song, J., "Comparing Attack Models for IT Systems: Lockheed Martin's Cyber Kill Chain, MITRE ATT&CK Framework and Diamond Model", 2022 IEEE International Symposium on Systems Engineering (ISSE), Vienna, Austria, 2022, pp. 1-7.
  10. NEASCOG, "Manual for National ATM Security Oversight", 2013.
  11. Shin, Y., Kim, K., Lee, J. J., and Lee, K., "ART: Automated Reclassification for Threat Actors based on ATT&CK Matrix Similarity", 2021 World Automation Congress (WAC), Taipei, Taiwan, 2021.
  12. Tamasi, G. and Demichela, M., "Risk assessment techniques for civil aviation security" Reliability Engineering & System Safety, Vol. 96, 2011, pp. 892-899.