Aviation News FAA and Regs Flight Safety

FAA Proposes New Cybersecurity Standards For Aircraft

Amelia Walsh

Thursday, August 22, 2024 at 10:24 AM ET

Verified

Key Takeaways:

The FAA has proposed new rules to update and standardize cybersecurity standards for new transport category aircraft and equipment.
These rules would mandate cybersecurity risk assessments and vulnerability mitigation for aircraft exceeding 19 passenger seats or 19,000 pounds maximum takeoff weight.
The initiative aims to address growing cybersecurity threats in increasingly connected flight equipment, while also streamlining certification processes and maintaining current safety levels.
The agency is accepting public comments on the proposed rules until October 21.

See a mistake? Contact us.

The Federal Aviation Administration introduced changes to its cybersecurity standards for new aircraft and equipment in a Notice of Proposed Rulemaking (NPRM) issued Wednesday.

According to the agency, the proposed rules would tackle cybersecurity threats for transport category aircraft, engines and propellers. The goal is to standardize the FAA’s cybersecurity criteria, which would help lower certification costs and time while maintaining the current safety levels.

Under the proposed rules, any aircraft with more than 19 passenger seats or a maximum takeoff weight exceeding 19,000 pounds will be required to undergo a cybersecurity risk assessment. Manufacturers will then need to address any vulnerabilities.

The FAA noted that the new mandates were introduced as flight equipment has become more connected to internal and external data networks and services—including satellite communications and internet-connected devices.

The agency is accepting comments and feedback on the proposed rules until Oct. 21.

faacybernprm Download

Amelia Walsh

Amelia Walsh is a private pilot who enjoys flying her family’s Columbia 350. She is based in Colorado and loves all things outdoors including skiing, hiking, and camping.