Air transport tech specialist SITA has launched a new cybersecurity hardening solution, SITA Managed NAC (Network Access Control), to address the growing demand for secure and reliable access for end users and assets.
With increasing threats to digital infrastructure, particularly in complex environments like airports, SITA Managed NAC offers protection for Local Area Network (LAN) and Wireless LAN communications with additional layers of identification checks and network segmentation. According to SITA, this ensures airports and airlines comply with industry security standards while maintaining operational efficiency and protecting passenger systems.
“Demand for secure and reliable network access controls is higher than ever, particularly in airports where traffic and device segregation is paramount in different areas of airport infrastructure and security zones,” said Martin Smillie, SITA SVP for communications and data exchange (CDE), “As external threats to digital infrastructure escalate, this solution will ensure that essential communication systems keep ahead, with built-in safeguards at access points and switches. SITA Managed NAC provides complete visibility and control over communication networks, allowing customers to monitor who is accessing what, when, and from where.”
Enhancing Compliance and Cyber Resilience
SITA Managed NAC aligns with stringent cybersecurity recommendations from authorities like the US Transportation Security Agency (TSA) and the Airports Council International (ACI). The solution provides granular control over network access, detailed logging capabilities, and the ability to quarantine non-compliant devices, helping airports and airlines enhance their cybersecurity posture and ensure regulatory compliance.
Seamless Integration and Zero Trust Security
Designed to integrate seamlessly with the existing SITA Campus Network product, SITA Managed NAC enhances network management by offering identity-based access control and policy enforcement based on Cisco’s Identity Services Engine (ISE) platform. Utilising a Zero Trust security model, every access request is authenticated, authorised, and continuously validated, ensuring only verified users and devices can connect to the network. This significantly reduces the risk of unauthorised access and potential breaches.
