GENEVA - SITA, a Geneva, Switzerland-based air transport technology company, has introduced its latest cyber security solution, SITA Managed Network Access Control (NAC). This technology is aimed at strengthening the security of critical infrastructure in airports and airlines. This solution comes in response to increasing cyber threats targeting digital systems in complex environments, such as aviation.
SITA Managed NAC enhances the security of both Local Area Network (LAN) and Wireless LAN communications by adding layers of verification and segmenting the network. The system is designed to ensure compliance with industry security standards while maintaining operational efficiency and protecting vital passenger services.
“Demand for secure and reliable network access controls is higher than ever, particularly in airports where traffic and device segregation is paramount in different areas of airport infrastructure and security zones,” said Martin Smillie, SITA's Senior Vice President for Communications and Data Exchange. "As external threats to digital infrastructure escalate, this solution will ensure that essential communication systems keep ahead, with built-in safeguards at access points and switches. SITA Managed NAC provides complete visibility and control over communication networks, allowing customers to monitor who is accessing what, when, and from where."
Related: London's Heathrow Airport selects SITA to support telecom tech expansion
The solution aligns with recommendations from cyber security authorities like the U.S. Transportation Security Administration (TSA) and Airports Council International (ACI), offering features such as detailed logging and the capability to quarantine non-compliant devices. Enhancing control over network access helps airports and airlines improve their cyber security resilience and meet regulatory requirements.
SITA Managed NAC is designed to integrate with the company’s existing campus network product. Based on Cisco’s Identity Services Engine (ISE) platform, it employs a zero trust security model, which ensures that all access requests are authenticated and validated to minimize the risk of unauthorized entry.