Unifly, in cooperation with Nexova, has announced the successful completion of SecureUTM 2 Phase one under the European Space Agency’s (ESA) NAVISP programme. “The project establishes a certification-aligned, risk-driven cybersecurity foundation for secure, resilient and scalable Unmanned Traffic Management (UTM) and U-space services across Europe,” said the companies in a press release.
SecureUTM 2 embeds cybersecurity engineering into the core architecture of UTM systems, aligning with European U-space regulations, Common Criteria methodology and ENISA risk frameworks. It has focused on mitigating GNSS jamming and spoofing risks through a dedicated U-space proof-of-concept testbed with Hardware-in-the-Loop UAV simulations.
Validated measures include: on-board GNSS jamming detection, fleet-level interference inference, trajectory plausibility and conformance monitoring, OSNMA-based message verification, structured anomaly logging and alerting
The testbed enables repeatable attack simulation, KPI-based evaluation and regulator-ready evidence generation.
Phase one also delivered a structured U-space testbed blueprint, verification methodologies and digital twin foundations to support continued validation, operator training and continuous cybersecurity testing.
“Building on SecureUTM 1, SecureUTM 2 Phase I significantly expanded the cybersecurity baseline for UTM systems. Key outcomes include refinement of a harmonised Protection Profile (PP) for UTM; development of an updated Security Target (ST) for the Unifly platform ; structured risk assessment and certification-aligned gap analysis; definition of a secure architectural baseline addressing real-world U-space complexity’ setup of a PoC Testbed
SecureUTM 2 directly supports Belgium’s U-space deployment strategy and strengthens its position in secure drone integration.
Phase two will focus on implementing prioritised controls, expanding validation capabilities and further aligning with EU certification frameworks.
For more information