In the field of aviation, modern aircraft represent complex systems that are subject to legal regulations regarding operational and information security. Increased system integration and the increasing use of digital control and communication based on standard procedures in almost all areas of modern aviation increase the attack surface for cyber attacks and significantly increase the risk of successful attacks. In contrast to the established processes in the area of operational security, the particular challenge is to maintain the effectiveness of the protective functions demonstrated at the time of approval throughout the entire life cycle, to detect and ward off possible attacks, and to be able to react appropriately to new attack techniques. In RESISTANT, the zero-trust principle is to be transferred to the safety-critical avionics sector. This allows great flexibility in the integration of software and hardware from the COTS area, as non-trust is the basic assumption and the platform can deal with it. Increased fault and attack tolerance is to be achieved by reconfiguring services and restoring the original redundancy as a result of a failure or attack. Furthermore, an Aircraft Security Operation Centre (ASOC) is to be designed in RESISTANT, which will allow detailed monitoring of aircraft and entire aircraft fleets. To this end, the monitoring is to be used both to generate and to compare digital twins for the detection of (unknown) errors and attacks.
