{"identifier":"/us/usc/t49/s40131","title":49,"num":"\u00a7\u202f40131.","heading":"National airspace system cyber threat management process","text":"\u00a7\u202f40131.\nNational airspace system cyber threat management process\n(a)\nEstablishment.\u2014\nThe Administrator of the Federal Aviation Administration, in consultation with the heads of other agencies as the Administrator determines necessary, shall establish a national airspace system cyber threat management process to protect the national airspace system cyber environment, including the safety, security, and efficiency of air navigation services provided by the Administration.\n(b)\nIssues To Be Addressed.\u2014\nIn establishing the national airspace system cyber threat management process under subsection (a), the Administrator shall, at a minimum\u2014\n(1) monitor the national airspace system for significant cybersecurity incidents;\n(2) in consultation with appropriate Federal agencies, evaluate the cyber threat landscape for the national airspace system, including updating such evaluation on both annual and threat-based timelines;\n(3) conduct national airspace system cyber incident analyses;\n(4) create a cyber common operating picture for the national airspace system cyber environment;\n(5) coordinate national airspace system significant cyber incident responses with other appropriate Federal agencies;\n(6) track significant cyber incident detection, response, mitigation implementation, recovery, and closure;\n(7) establish a process, or utilize existing processes, to share relevant significant cyber incident data related to the national airspace system;\n(8) facilitate significant cybersecurity reporting, including through the Cybersecurity and Infrastructure Agency; and\n(9) consider any other matter the Administrator determines appropriate.\n(c)\nDefinitions.\u2014\nIn this section:\n(1)\nCyber common operating picture.\u2014\nThe term \u201ccyber common operating picture\u201d means the correlation of a detected cyber incident or cyber threat in the national airspace system and other operational anomalies to provide a holistic view of potential cause and impact.\n(2)\nCyber environment.\u2014\nThe term \u201ccyber environment\u201d means the information environment consisting of the interdependent networks of information technology infrastructures and resident data, including the internet, telecommunications networks, computer systems, and embedded processors and controllers.\n(3)\nCyber incident.\u2014\nThe term \u201ccyber incident\u201d means an action that creates noticeable degradation, disruption, or destruction to the cyber environment and causes a safety or other negative impact on operations of\u2014\n(A) the national airspace system;\n(B) civil aircraft; or\n(C) aeronautical products and articles.\n(4)\nCyber threat.\u2014\nThe term \u201ccyber threat\u201d means the threat of an action that, if carried out, would constitute a cyber incident or an electronic attack.\n(5)\nElectronic attack.\u2014\nThe term \u201celectronic attack\u201d means the use of electromagnetic spectrum energy to impede operations in the cyber environment, including through techniques such as jamming or spoofing.\n(6)\nSignificant cyber incident.\u2014\nThe term \u201csignificant cyber incident\u201d means a cyber incident, or a group of related cyber incidents, that the Administrator determines is likely to result in demonstrable harm to the national airspace system of the United States.","url":"https://projectusc.org/usc/t49/s40131.html","content":[{"t":"sec","id":"/us/usc/t49/s40131","children":[{"t":"num","text":"\u00a7\u202f40131."},{"t":"heading","text":"National airspace system cyber threat management process"},{"t":"subsec","id":"/us/usc/t49/s40131/a","children":[{"t":"num","text":"(a)"},{"t":"heading","text":"Establishment.\u2014"},{"t":"content","text":"The Administrator of the Federal Aviation Administration, in consultation with the heads of other agencies as the Administrator determines necessary, shall establish a national airspace system cyber threat management process to protect the national airspace system cyber environment, including the safety, security, and efficiency of air navigation services provided by the Administration.","tail":"\n"}],"tail":"\n"},{"t":"subsec","id":"/us/usc/t49/s40131/b","children":[{"t":"num","text":"(b)"},{"t":"heading","text":"Issues To Be Addressed.\u2014"},{"t":"chapeau","text":"In establishing the national airspace system cyber threat management process under subsection (a), the Administrator shall, at a minimum\u2014"},{"t":"para","id":"/us/usc/t49/s40131/b/1","children":[{"t":"num","text":"(1)"},{"t":"content","text":" monitor the national airspace system for significant cybersecurity incidents;","tail":"\n"}],"tail":"\n"},{"t":"para","id":"/us/usc/t49/s40131/b/2","children":[{"t":"num","text":"(2)"},{"t":"content","text":" in consultation with appropriate Federal agencies, evaluate the cyber threat landscape for the national airspace system, including updating such evaluation on both annual and threat-based timelines;","tail":"\n"}],"tail":"\n"},{"t":"para","id":"/us/usc/t49/s40131/b/3","children":[{"t":"num","text":"(3)"},{"t":"content","text":" conduct national airspace system cyber incident analyses;","tail":"\n"}],"tail":"\n"},{"t":"para","id":"/us/usc/t49/s40131/b/4","children":[{"t":"num","text":"(4)"},{"t":"content","text":" create a cyber common operating picture for the national airspace system cyber environment;","tail":"\n"}],"tail":"\n"},{"t":"para","id":"/us/usc/t49/s40131/b/5","children":[{"t":"num","text":"(5)"},{"t":"content","text":" coordinate national airspace system significant cyber incident responses with other appropriate Federal agencies;","tail":"\n"}],"tail":"\n"},{"t":"para","id":"/us/usc/t49/s40131/b/6","children":[{"t":"num","text":"(6)"},{"t":"content","text":" track significant cyber incident detection, response, mitigation implementation, recovery, and closure;","tail":"\n"}],"tail":"\n"},{"t":"para","id":"/us/usc/t49/s40131/b/7","children":[{"t":"num","text":"(7)"},{"t":"content","text":" establish a process, or utilize existing processes, to share relevant significant cyber incident data related to the national airspace system;","tail":"\n"}],"tail":"\n"},{"t":"para","id":"/us/usc/t49/s40131/b/8","children":[{"t":"num","text":"(8)"},{"t":"content","text":" facilitate significant cybersecurity reporting, including through the Cybersecurity and Infrastructure Agency; and","tail":"\n"}],"tail":"\n"},{"t":"para","id":"/us/usc/t49/s40131/b/9","children":[{"t":"num","text":"(9)"},{"t":"content","text":" consider any other matter the Administrator determines appropriate.","tail":"\n"}],"tail":"\n"}],"tail":"\n"},{"t":"subsec","id":"/us/usc/t49/s40131/c","children":[{"t":"num","text":"(c)"},{"t":"heading","text":"Definitions.\u2014"},{"t":"chapeau","text":"In this section:"},{"t":"para","id":"/us/usc/t49/s40131/c/1","children":[{"t":"num","text":"(1)"},{"t":"heading","text":"Cyber common operating picture.\u2014"},{"t":"content","text":"The term \u201ccyber common operating picture\u201d means the correlation of a detected cyber incident or cyber threat in the national airspace system and other operational anomalies to provide a holistic view of potential cause and impact.","tail":"\n"}],"tail":"\n"},{"t":"para","id":"/us/usc/t49/s40131/c/2","children":[{"t":"num","text":"(2)"},{"t":"heading","text":"Cyber environment.\u2014"},{"t":"content","text":"The term \u201ccyber environment\u201d means the information environment consisting of the interdependent networks of information technology infrastructures and resident data, including the internet, telecommunications networks, computer systems, and embedded processors and controllers.","tail":"\n"}],"tail":"\n"},{"t":"para","id":"/us/usc/t49/s40131/c/3","children":[{"t":"num","text":"(3)"},{"t":"heading","text":"Cyber incident.\u2014"},{"t":"chapeau","text":"The term \u201ccyber incident\u201d means an action that creates noticeable degradation, disruption, or destruction to the cyber environment and causes a safety or other negative impact on operations of\u2014"},{"t":"subpara","id":"/us/usc/t49/s40131/c/3/A","children":[{"t":"num","text":"(A)"},{"t":"content","text":" the national airspace system;","tail":"\n"}],"tail":"\n"},{"t":"subpara","id":"/us/usc/t49/s40131/c/3/B","children":[{"t":"num","text":"(B)"},{"t":"content","text":" civil aircraft; or","tail":"\n"}],"tail":"\n"},{"t":"subpara","id":"/us/usc/t49/s40131/c/3/C","children":[{"t":"num","text":"(C)"},{"t":"content","text":" aeronautical products and articles.","tail":"\n"}],"tail":"\n"}],"tail":"\n"},{"t":"para","id":"/us/usc/t49/s40131/c/4","children":[{"t":"num","text":"(4)"},{"t":"heading","text":"Cyber threat.\u2014"},{"t":"content","text":"The term \u201ccyber threat\u201d means the threat of an action that, if carried out, would constitute a cyber incident or an electronic attack.","tail":"\n"}],"tail":"\n"},{"t":"para","id":"/us/usc/t49/s40131/c/5","children":[{"t":"num","text":"(5)"},{"t":"heading","text":"Electronic attack.\u2014"},{"t":"content","text":"The term \u201celectronic attack\u201d means the use of electromagnetic spectrum energy to impede operations in the cyber environment, including through techniques such as jamming or spoofing.","tail":"\n"}],"tail":"\n"},{"t":"para","id":"/us/usc/t49/s40131/c/6","children":[{"t":"num","text":"(6)"},{"t":"heading","text":"Significant cyber incident.\u2014"},{"t":"content","text":"The term \u201csignificant cyber incident\u201d means a cyber incident, or a group of related cyber incidents, that the Administrator determines is likely to result in demonstrable harm to the national airspace system of the United States.","tail":"\n"}],"tail":"\n"}],"tail":"\n"},{"t":"text","text":"\n"},{"t":"text","text":"\n"}]}]}