Technological Innovation in Aviation Security: From Industries as Policy Entrepreneurs
Keywords:technological innovation, aviation security, policy entrepreneurship
Aviation is a highly technical sector, but conversely policy regarding the security of it has historically been reactive and driven by human factors. Governance of aviation security is regulated and controlled by national governments, yet policy is primarily developed by international organisations. This article is concerned with what impact technological innovation has had on aviation security with particular focus on the effect of the developments in the cyber-sphere on the policy process. It will consider how cyber innovations have changed the aviation security threat picture and thus the policy process. Technology has become a critical enabler of those looking to subvert aviation. Yet until 9/11, an exogeneous shock to the policy area, the changing threat picture only impacted the content of aviation security policy rather than the policy process or the roles of those involved. This article will argue the industry is acting as a driving force for this legislative agenda nowadays indicating a clear role reversal. To analyse the response to the rise of the cyber threat as a determinant of the contemporary aviation security policy process, this article will use John Kingdon’s concept of policy entrepreneurs. It will argue that the industry has acted as a policy entrepreneur driving legislation due to its technical expertise in response to cyber-attacks becoming the primary threat.
Airports Council International, “ACI Launches New Guidance for Addressing Cybersecurity Threats”, 11 February 2020, at https://aci.aero/2020/02/11/aci-launches-newguidance-for-addressing-cybersecurity-threats/.
Airport Council International, “ACI Webinar – Transforming Aviation Security Through Artificial Intelligence”, 20 January 2022, at https://store.aci.aero/form/webinar-transforming-aviation-security-through-artificial-intelligence/.
Airports Council International, “Airports Council International and The Aviation Information Sharing and Analysis Center Enter Cooperative Agreement”, 23 January 2020, at https://aci.aero/2020/01/23/airports-council-international-and-the-aviation-information-sharing-and-analysis-center-enter-cooperative-agreement/.
Arghire I., “Researchers Attribute Airline Cyberattack to Chinese Hackers”, Security Week,
June 2021, at https://www.securityweek.com/researchers-attribute-sita-cyberattackchinese-hackers.
Aviation ISAC, A-ISAC Aviation Information Sharing and Analysis Center. https://www.icao.int/cybersecurity/SiteAssets/A-ISAC/04_14_15_A-ISAC_Brochure_FINAL.pdf.
Avlaw Aviation Consulting, “Cyberattacks in the Aviation Industry”, 10 March 2020, at https://avlaw.com.au/cyberattacks-aviation-industry/.
Barros X., “EU Counterterrorism and Aviation Security: Supranational Rules but Intergovernmental Politics?”, European Foreign Affairs Review, vol. 17 (2012), pp. 53-69, https://doi.org/10.54648/EERR2012014. DOI: https://doi.org/10.54648/EERR2012014
Bellamy W., III, “New Eurocontrol Data Shows Airlines Increasingly Becoming Targets for Cyber Attacks”, Aviation Today, 12 July 2021, at https://www.aviationtoday.com/2021/07/12/new-eurocontrol-data-shows-airlines-increasingly-becoming-targets-cyber-attacks.
Benda P., “Commentary: Harnessing Advanced Technology and Process Innovations to Enhance Aviation Security”, Journal of Air Transport Management, vol. 48 (2015), pp. 23-25, http://dx.doi.org/10.1016/j.jairtraman.2015.06.008. DOI: https://doi.org/10.1016/j.jairtraman.2015.06.008
Bozeman B., “Technology Transfer and Public Policy: A Review of Research and Theory”, Research Policy, vol. 29, no. 4-5 (2000), pp. 627-655, https://doi.org/10.1016/S0048-7333(99)00093-1. DOI: https://doi.org/10.1016/S0048-7333(99)00093-1
Campbell D., “El Al Guards Kill US Airport Gunman”, The Guardian, 5 July 2002, at http://www.theguardian.com/world/2002/jul/05/usgunviolence.usa.
Civil Aviation Authority, “About the Innovation Team”, at https://www.caa.co.uk/Our-work/Innovation/About-the-Innovation-Team/.
Civil Aviation Authority, “Aviation Futures: Exploring the Future of Aviation”, at https://www.caa.co.uk/Our-work/Innovation/Aviation-futures/.
Centre for Strategic and International Studies, “Significant Cyber Incidents”, at https://www.csis.org/programs/strategic-technologies-program/significant-cyber-incidents.
CyberPeace Foundation, “#Incident_Report: The Air India and SITA PSS Data Leak”, 1 June 2022, at https://www.cyberpeace.org/incident_report-the-air-india-and-sita-pss-dataleak/.
Easterbrook G., “The All Too Friendly Skies: Security as an Afterthought”, in J.F. Hoge Jr., G. Rose (eds), How Did This Happen? Terrorism and the New War, New York 2001.
Eurocontrol, “Aviation under Attack: Faced with a Rising Tide of Cybercrime, Is Our Industry Resilient Enough to Cope?”, Eurocontrol EATM-CERT Services Think Paper, vol. 12, 5 July 2021, at https://www.eurocontrol.int/sites/default/files/2021-07/eurocontrol-thinkpaper-12-aviation-under-cyber-attack.pdf.
Hololei H., “ICAO Year of Security Culture: Inauguration”, January 2021, at https://www.icao.tv/year-of-security-culture-2021/videos/avsec2020-year-of-security-culture-inauguration.
Hosalikar S., “Top Most Common Type Cyber Attacks in Aviation Industry”, Great Learning Blog, 9 November 2021, at https://www.mygreatlearning.com/blog/top-most-common-type-cyber-attacks-in-aviation-industry/#:~:text=%20Here%E2%80%99s%20 a%20list%20of%20the%20topmost%20severe,Airways%3A%20The%20British%20Airways%20breach%20is…%20More%20.
International Air Transport Association, “Aviation Cyber Security – Effective July 2015 Version 3 (May 2020)”, at https://www.iata.org/contentassets/4c51b00fb25e4b60b38376a4935e278b/aviation-cyber-security-position.pdf.
International Civil Aviation Organization, “About ICAO”, at https://www.icao.int/abouticao/Pages/default.aspx.
International Civil Aviation Organization, “Aviation Cybersecurity Strategy”, October 2019, at https://www.icao.int/aviationcybersecurity/Documents/AVIATION%20CYBERSECURITY%20STRATEGY.EN.pdf.
International Civil Aviation Organization, “Cybersecurity Action Plan”, at https://www.icao.int/cybersecurity/Pages/Cybersecurity-Action-Plan.aspx.
International Civil Aviation Organization, “ICAO Aviation Security Programme”, at http://www2.icao.int/e_n/AVSEC/Pages/default.aspx.
International Civil Aviation Organization, “ICAO Regional USAP-CMA Seminar Auditing Annex 17 Standards”, at https://www.icao.int/MID/Documents/2018/USAP-CMA%20Seminar/Module%202%20-%20Auditing%20Annex%2017%20Standards.pdf.
International Civil Aviation Organization, “No Country Left Behind”, at https://www.icao.int/about-icao/nclb/pages/default.aspx.
Jenkins B.M., “Aircraft Sabotage”, in P. Wilkinson, B.M. Jenkins (eds), Aviation Terrorism and Security, London 1999.
Kaunert Ch., “Conclusion: Assessing the External Dimension of EU Counter-Terrorism – Ten Years On”, European Security, vol. 21, no. 4 (2012), pp. 578-587, https://doi.org/10.1080/09662839.2012.688810. DOI: https://doi.org/10.1080/09662839.2012.688810
Kingdon J.W., Agendas, Alternatives and Public Policies, Boston 2011.
Lohmann G.M., Pereira B.A., “Air Transport Innovations: A Perspective Article”, Tourism Review, vol. 75, no. 1 (2020), pp. 95-101, https://doi.org/10.1108/TR-07-2019-0294. DOI: https://doi.org/10.1108/TR-07-2019-0294
MacKenzie D., ICAO: A History of the International Civil Aviation Organization, Toronto 2010, https://doi.org/10.3138/9781442670143. DOI: https://doi.org/10.3138/9781442670143
McFarlane P., “Linking Aviation Security Failures to Human-Mediated Error: A Review of the Related Literatures with Directions for Policy and Research”, Journal of Transportation Security, vol. 13 (2020), pp. 33-51, https://doi.org/10.1007/s12198-020-00209-z. DOI: https://doi.org/10.1007/s12198-020-00209-z
Mintrom M., Norman P., “Policy Entrepreneurship and Policy Change”, Policy Studies Journal, vol. 37, no. 4 (2009), pp. 649-667, http://dx.doi.org/10.1111/j.1541-0072.2009.00329.x. DOI: https://doi.org/10.1111/j.1541-0072.2009.00329.x
Mintrom M., “So You Want To Be a Policy Entrepreneur?”, Policy Design and Practice, vol. 2, no. 4 (2019), pp. 307-323, https://doi.org/10.1080/25741292.2019.1675989 DOI: https://doi.org/10.1080/25741292.2019.1675989
“Norwich Airport and Hospital Cyber-Attack: Man Admits Guilt”, BBC News, 25 May 2017, at https://www.bbc.co.uk/news/uk-england-norfolk-40047908.
Pereira B.A., Lohman G., Houghton L., “Innovation and Value Creation in the Context of Aviation: A Systemic Literature Review”, Journal of Air Transport Management, vol. 94 (2021), art. 102076, https://doi.org/10.1016/j.jairtraman.2021.102076. DOI: https://doi.org/10.1016/j.jairtraman.2021.102076
Ramadani V., Gerguri S., “Theoretical Framework of Innovation: Competitiveness and Innovation Program in Macedonia”, European Journal of Social Sciences, vol. 23, no. 2 (2011), pp. 268-276.
St. John P., Air Piracy, Airport Security and International Terrorism, New York 1991.
St. John P., “The Politics of Aviation Terrorism”, in P. Wilkinson, B.M. Jenkins (eds), Aviation Terrorism and Security, London 1999.
“Terror Plot BA Man Rajib Khan Gets 30 years”, BBC News, 11 March 2011, at https://www.bbc.co.uk/news/uk-12788224.
The United States Department of Justice, “Four Chinese Nationals Working with the Ministry of State Security Charged with Global Computer Intrusion Campaign Targeting Intellectual Property and Confidential Business Information, Including Infectious Disease Research”,
July 2021, at https://www.justice.gov/opa/pr/four-chinese-nationals-working-ministrystate-security-charged-global-computer-intrusion.
TSA. “UK 2006 Liquid Explosives Plot Trial Overview”, at https://www.tsa.gov/press/releases/2008/09/08/uk-2006-liquid-explosives-plot-trial-overview.
Wallis R., Combating Air Terrorism, Washington 1993.
Wallis R., Lockerbie: The Story and the Lessons, Westport 2001.
Wallis R., “The Role of International Aviation Organisations in Enhancing Security”, in P. Wilkinson, B.M. Jenkins (eds), Aviation Terrorism and Security, London 1999.
Whitehead M.K., “Safe Cyber: GE Aviation’s Cybersecurity Leader Talks Data Protection and STEM”, GE Aerospace. The Blog, 7 June 2019, at https://blog.geaviation.com/technology/safe-cyber-ge-aviations-cybersecurity-leader-talks-data-protection-and-stem/.
Wilkinson P., “Enhancing Global Security?”, in P. Wilkinson, B.M. Jenkins (eds), Aviation Terrorism and Security, London 1999.
Wilkinson P. (ed.), Homeland Security in the UK, London 2007, https://doi.org/10.4324/9780203087459. DOI: https://doi.org/10.4324/9780203087459
Wilkinson P., Terrorism versus Democracy: The Liberal State Response, London 2006, https://doi.org/10.4324/9780203087336. DOI: https://doi.org/10.4324/9780203087336
World Economic Forum, “Advancing Cyber Resilience in Aviation: An Industry Analysis”, January 2020, at https://www3.weforum.org/docs/WEF_Cyber_Resilience_in_Aviation_An_Industry_Analysis.pdf.
World Economic Forum, “Cybersecurity in Aviation: Building a Resilient Future”, 2 June 2021, at https://www.weforum.org/impact/we-are-building-a-cyber-resilient-future-forthe-aviation-sector.
World Economic Forum, “Pathways Towards a Cyber Resilient Aviation Industry”, 14 April 2021, at https://www.weforum.org/reports/pathways-towards-a-cyber-resilient-aviationindustry.
How to Cite
This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.