“Recent cyberattacks on European airports have highlighted how vulnerable the digital infrastructure of air traffic is.” With this statement, Peter Machat, Senior Director EMEA Central at Armis, sums up the current situation. In fact, in recent months, a single ransomware attack was enough to massively disrupt operations at major European airports.

Passengers at Berlin’s BER airport had to wait for hours, resulting in delays of more than an hour. In Brussels, half of all departures were temporarily canceled. “These incidents show how quickly digital failures can paralyze entire operations – and how important resilient security strategies are for airports,” Machat emphasizes.

Flying in the digital age

“Airport processes are more digitized today than ever before,” explains Machat. Whether online check-in, automated baggage drop-off, biometric border controls, or digital displays: technology permeates all areas. Added to this are smart kiosks, mobile apps, eGates, and IoT devices that direct passenger flows and support security tasks.

This brings efficiency and convenience – but also increases risk. “If one system fails, it can quickly trigger a chain reaction,” warns the expert.

Security reimagined

Machat makes it clear: “Airport security is no longer just about securing the external area. It’s about protecting all processes and systems.” A modern concept must therefore address several levels:

• “Complete device transparency” – knowing every device, its function, who is responsible for it, and its connections.
• “Proactive risk management” – identifying vulnerabilities before attackers exploit them.
• “AI-supported anomaly detection” – automatically detecting unusual activities.
• “Secure remote access” – strict access restrictions, complete logging, time-limited rights.
• “Network segmentation” – compromised machines must not be allowed to connect to air traffic control systems.
• “Continuous evaluation of third-party providers” – regularly check risks posed by external service providers.
• “Attack path mapping” – simulate how attacks could spread and take countermeasures.

Digital security creates trust

“Travelers are not concerned with technical terms such as zero-trust architectures or programming interfaces,” explains Machat. “Above all, they expect their flight to depart on time, their luggage to arrive, and to be able to travel safely.”

The key point: the reliability of digital systems is now decisive for the overall success of an airport. Cybersecurity is therefore no longer a purely technical issue, but a basic requirement for operations and passenger confidence.

Resilience as the key

“Airports are resilient when they identify threats early on, report anomalies immediately, and contain risks directly,” summarizes Machat. Transparency, clear network separation, and consistent risk management are the basis for this.

His conclusion is clear: “Understanding cybersecurity as a basic requirement is the only way to ensure the stability and continuity that modern air traffic requires today.”