A US government watchdog says the Federal Aviation Administration has not done enough to protect aircraft from cyberattacks.
The Government Accountability Office says improvements are needed as the FAA cannot ‘ensure sufficient oversight to guard against evolving avionics cybersecurity risks.’
The GAO report wants the aviation regulator to implement a risk assessment of security risks to aircraft systems and conduct training for inspectors to identify vulnerabilities.
The report states there are ‘new opportunities for persons with malicious intentions to target commercial transport airplanes’ although there have been no reports of successful hacks of aircatft in flight.
Airbus says cyber-penetration tests have been conducted in France, Germany and the UK and Boeing says third-party testing has taken place during airplane certification after a request by the FAA.
The FAA has acknowledged the risks and agrees with most of the recommendations in the report.
The GAO report focused on avionic systems that transmit data to maintenance personnel and air traffic control towers.
Written by Ray Montgomery, US Editor
















