How to... pro­tect your IFE net­work

Onboard Hospitality - - Inside This Issue -

Richard Wil­liams spoke to Markus Gilges at VT Mil­tope about the air­line se­cu­rity so­lu­tion

it has de­vel­oped with Ra­zorSe­cure to com­ply with an up­com­ing EU reg­u­la­tion


The EU's Net­work In­for­ma­tion Se­cu­rity di­rec­tive re­quires ac­tive mon­i­tor­ing and anom­aly de­tec­tion for IT sys­tems in trans­port in­fras­truc­ture. Fire­walls and en­cryp­tion are no longer enough.


Ra­zorSe­cure spe­cialises in cy­ber-se­cu­rity for trans­port sys­tems, and uses ma­chine learn­ing to pro­vide ad­vanced in­tru­sion pro­tec­tion. Robert Brown, ex­ec­u­tive chair­man, ex­plains: “Our sys­tem is ac­tive in seek­ing out anom­alies in us­age that typ­i­cally pre­cede an at­tack.” It is be­ing ap­plied ex­clu­sively to VT Mil­tope's WAPs to pro­tect IFE sys­tems from nui­sance or ma­li­cious dam­age. “The prob­lem in the fu­ture is less likely to be the hoodie, but more likely to come from in­ter­na­tional sab­o­tage,” said Brown.


The new EU reg­u­la­tion com­prises Gen­eral Data Pro­tec­tion Reg­u­la­tion (GDPR) and Net­work and In­for­ma­tion Se­cu­rity di­rec­tive (NIS). GDPR re­forms data pro­tec­tion law in Eu­rope, shift­ing the bal­ance of power to­wards the cit­i­zen who owns the per­sonal data, away from or­gan­i­sa­tions that col­lect, an­a­lyse and use it. The com­ple­men­tary NIS di­rec­tive fo­cuses on the pro­tec­tion of sys­tems and breach re­port­ing.

Data breaches must be re­ported within 72 hours and Pri­vacy Im­pact As­sess­ments and a new 'right to be for­got­ten' must be re­spected.

Brown says the NIS has re­ceived less at­ten­tion but means op­er­a­tors of 'essen­tial ser­vices', in­clud­ing their dig­i­tal ser­vice providers, will have to take 'ap­pro­pri­ate se­cu­rity mea­sures' and re­port se­ri­ous in­ci­dents to the na­tional author­ity. This in­cludes air, rail, road and wa­ter trans­port.


Markus Gilges, busi­ness de­vel­op­ment direc­tor of VT Mil­tope, says: “Air­lines seem some­what un­aware of their re­spon­si­bil­i­ties un­der these new rules. The penal­ties for non-com­pli­ance are €20 mil­lion or four per cent of turnover.”

By in­te­grat­ing Ra­zorSe­cure's ac­tive cy­ber­se­cu­rity soft­ware into their WAPs, Gilges ex­pects to com­ply with the reg­u­la­tions and solve an im­mi­nent headache for air­line and rail op­er­a­tors. “Our MAP3 ac­cess point can of­fer a se­cure, per­son­alised ex­pe­ri­ence for the next gen­er­a­tion of con­nec­tiv­ity. The Ra­zorSe­cure tech­nol­ogy is ex­clu­sive to VT Mil­tope ac­cess points.”

Newspapers in English

Newspapers from UK

© PressReader. All rights reserved.