How do you address cybersecurity in connected avionics systems?

Modern avionics connectivity (EFB, SATCOM, wireless) creates cybersecurity risks per DO-326A/ED-202A. Assessment: Identify entry points and threat vectors, Security Risk Assessment (SARA) analogous to safety assessment, and Threat and vulnerability analysis. Protections: Network architecture - separation of aircraft control domain from information services domain (e.g., Boeing 787 domains), firewalls and data diodes; Authentication and encryption - secure boot, cryptographic authentication of software loads, encrypted communication links; Monitoring - intrusion detection, anomaly monitoring, and audit logging. Certification: Security-specific supplement to safety processes, penetration testing, and ongoing vulnerability management. Challenges: Safety vs security tradeoffs (availability vs confidentiality), legacy system updates, supply chain security, and coordinated disclosure of vulnerabilities. EUROCAE WG-72 and RTCA SC-216 develop standards. Maintenance includes security patches throughout aircraft life.