PKI and Cybersecurity
The main objective of the Implementing Project is to establish the CPH part of an European PKI, that is secure, easy to administer and fully compliant with relevant legislation and to implement a certified ‘Information Security Management System (ISMS)’ based on ISO27001.
The threats in cyberspace are ever increasing in both diversity and numbers requiring defences to be increased. To make sure that CPH is having a holistic view of cybersecurity at the airport a relevant framework has to been introduced. In a European context the ISO 27001 standard is a widely recognised framework for gaining an overview of all things that needs to be considered regarding cybersecurity.
The communication in EATMN is going to increase over the coming years significantly in order to meet the objective of much higher performance of the EATMN. The communication needs to be secured, such that all information is trustworthy and comes from a reliable partner in the network. A proper PKI-implementation ensures that the administration of certificates will not turn into hazards of its own. Since certificate-chains and trusts are only as strong as the weakest link, a good strong foundation is needed in CPH.
The IP specifically aims to build a security management system based on ISO 27001 for the aeronautical part of the airport, and perform all the necessary tasks to achieve an appropriate level of maturity. The IP also specifically aims to ensure that all internal communication is protected by certificates that are issued by CPH. External interfaces will use certificates that are signed by an external CA (Certificate Authority), preferably a central EATMN PKI CA.
CPH is prepared to handle the increasing risks relating to cybersecurity.
Security management system is implemented and provides the overall framework.
CPH’s infrastructure’s resilience towards cyberattacks is enhanced.
The main benefit is lower risk of outage of the services the airport is providing to the European ATM network. In addition, this project is necessary in order to meet the requirements as listed in the SWIM specifications.
It is estimated that the benefit will decrease the risk of outage by 25% and improve the services availability by 50% due to pre-certified certificates.
- Project Type: Airport
- CEF Call Year: 2017
- Civil/Military: Civil
- Multistakeholder: No
- Main AF: AF5 - Initial System Wide Information Management
- Sub AF: S-AF 5.2 - SWIM Technical Infrastructure and Profiles
- Progress Percentage: 26%