FAQ n.137872

The HAO roadmap recommends re-evaluating the current scope of the information security regulations, in order to assess the need to extend the applicability of already existing requirements (e.g., CS-XX.1319, Part-IS) to new aviation products and approved organisations (e.g. spaceports). The purpose of the re-evaluation would be to assess if certain activities and the relevant organisations (under EASA approval) may pose information security risks with the potential to generate events that can have direct consequences on the safety of flight. In doing this, several inputs such as the type of the operations and the interfaced organisations should be considered.