The ICAO Secretariat Study Group on Cybersecurity (SSGC) was established in August 2017 to advance the policy work on aviation cybersecurity. Between 2017 and 2021, the SSGC supported the work on the development of the ICAO Aviation Cybersecurity Strategy, the Cybersecurity Action Plan, and guidance material. In addition, the SSGC conducted a review on the adequacy of international air law instruments to address cyber-attacks against civil aviation, which was submitted to the ICAO Legal Committee for its consideration.
In 2019, ICAO established the Trust Framework Study Group (TFSG) to advance the work on the International Aviation Trust Framework, which took place between 2019 and 2022.
In 2021, the ICAO Council adopted a new governance structure for cybersecurity in ICAO, in order to ensure the convergence of all aviation cybersecurity initiatives undertaken by the different expert groups in ICAO into a unified aviation cybersecurity work programme, hence enhancing the accountability, transparency, efficiency, and coordination of ICAO's work on these topics. The new governance structure evolves the SSGC into a Cybersecurity Panel reporting to the Council's Aviation Security Committee, evolves the TFSG into the Air Navigation Commission's Panel structure, and establishes an Ad-hoc Cybersecurity Coordination Committee under the ICAO Council to coordinate all initiatives related to aviation cybersecurity in different ICAO Panels and expert groups.
In 2022, the Cybersecurity Panel (CYSECP) was established. The Terms of Reference of the CYSECP include the following:
Also in 2022, the Air Navigation Commission agreed to evolve the TFSG into the Trust Framework Panel (TFP). The Terms of Reference of the TFP include the following: