Unifly, in cooperation with Nexova, have successfully completed the SecureUTM 2 Phase I under the European Space Agency’s (ESA) NAVISP program, with emphasis on mitigating GNSS jamming and spoofing.
<p>The project establishes a certification-aligned, risk-driven cybersecurity foundation for secure, resilient and scalable unmanned traffic management (UTM) and U-space services across Europe. </p> <p>As drone operations grow in complexity and cross-border interoperability, cybersecurity is becoming essential for operational continuity and public trust. SecureUTM 2 embeds cybersecurity engineering into the core architecture of UTM systems, aligning with European U-space regulations, Common Criteria methodology and ENISA risk frameworks. Security is treated as a foundational design principle rather than a late-stage compliance requirement. </p> <p>Building on SecureUTM 1, SecureUTM 2 Phase I significantly expanded the cybersecurity baseline for UTM systems. Key outcomes include: </p> <ul class="wp-block-list"> <li>Refinement of a harmonized Protection Profile (PP) for UTM </li> <li>Development of an updated Security Target (ST) for the Unifly platform </li> <li>Structured risk assessment and certification-aligned gap analysis </li> <li>Definition of a secure architectural baseline addressing real-world U-space complexity </li> <li>Setup of a PoC Testbed </li> </ul> <p><strong>Risk-based engineering roadmap</strong></p> <p>A control-by-control gap assessment translated cybersecurity requirements into a prioritised implementation roadmap. Focus areas include: </p> <ul class="wp-block-list"> <li>PNT source authentication and plausibility checks </li> <li>Enhanced session integrity and transport protection </li> <li>Denial-of-Service resilience </li> <li>Device-level authentication and auditing </li> <li>Secure storage and encryption </li> </ul> <p>This structured approach supports operational deployment and future EU cybersecurity certification readiness. </p> <p><strong>Validated mitigations for GNSS and PNT threats</strong></p> <p>SecureUTM 2 phase I placed strong emphasis on GNSS jamming and spoofing risks increasingly observed in drone operations. Practical, layered mitigations were validated through a dedicated U-space proof-of-concept testbed with Hardware-in-the-Loop UAV simulations. </p> <p>Validated measures include: </p> <ul class="wp-block-list"> <li>On-board GNSS jamming detection </li> <li>Fleet-level interference inference </li> <li>Trajectory plausibility and conformance monitoring </li> <li>OSNMA-based message verification </li> <li>Structured anomaly logging and alerting </li> </ul> <p>The testbed enables repeatable attack simulation, KPI-based evaluation and regulator-ready evidence generation. </p> <p><strong>Foundation for Phase II and European deployment</strong></p> <p>Phase I also delivered a structured U-space testbed blueprint, verification methodologies and digital twin foundations to support continued validation, operator training and continuous cybersecurity testing. </p> <p>SecureUTM 2 directly supports Belgium’s U-space deployment strategy and strengthens its position in secure drone integration. </p> <p>Phase II will focus on implementing prioritised controls, expanding validation capabilities and further aligning with EU certification frameworks. </p> <p><p>The post <a target="_blank" rel="nofollow" href="https://www.gpsworld.com/unifly-nexova-complete-navisp-phase-to-advance-cyber-resilient-u-space-operations/">Unifly & Nexova complete NAVISP phase to advance cyber-resilient U-space operations</a> first appeared on <a target="_blank" rel="nofollow" href="https://www.gpsworld.com">GPS World</a>.</p></p>