scope:

The rapid growth of unmanned aerial vehicle (UAV) usage in both commercial and defense areas has increased the requirement for advanced security schemes for vehicle-to-vehicle (V2V) and vehicle-to-infrastructure (V2I) communications for unmanned aircraft systems (UAS).

The security aspects of V2V communications in UAS addressed by IEEE P1920.2 are delineated in this paper. Those include the architecture of communication interfaces, authentication of V2V parties, cryptographic key management, and zero trust architecture.

Data confidentiality and data integrity with state-of-the-art cryptographic primitives for low-power consumption implementations are comprised by data protection. In particular, UAVs' Remote ID (in cleartext) must be broadcast to comply with regulations. Hence, protection of Remote ID to avoid spoofing is done by authenticating a digital signature of such Remote ID.

Public key infrastructure (PKI) is relied upon by the trust model, but with support for use cases when UAVs are out of coverage from infrastructure.

Potential cyberattacks and their countermeasures in such systems enabling them to address vulnerabilities quickly or prevent them entirely are described in this paper.

The cybersecurity protocols addressed by IEEE P1920.2 are intended to meet the needs of:

• Regulatory requirements, including the FAA's Remote ID

• Other industry standards organizations, such as ASTM and RTCA working on the ACAS Xu solution for UAVs

• Aerospace original equipment manufacturers (OEMs) building UAVs

• Operators of UAVs