OPINION: Securely connecting the checkpoint of the future

Shawnessy Scott, director of cybersecurity operations at Leidos, provides expert insight on how airports can securely connect the checkpoint of the future

Security checkpoints are no longer standalone systems operating in isolation. Today’s airports are integrating screening equipment, credential authentication systems, remote screening stations, queue management tools, video systems and analytics platforms into interconnected digital ecosystems.

This interconnectivity can unlock powerful operational benefits, but it also introduces new cybersecurity considerations that must be managed deliberately.

The operational value of interconnectivity

Modern checkpoints generate significant volumes of data. When previously siloed systems are integrated, airports gain a more complete operational picture.

With the right architecture, operators can:

Monitor equipment health across multiple lanes in real time.
Help identify performance bottlenecks before they impact passenger flow.
Support predictive maintenance instead of reactive repairs.
Adjust staffing based on live throughput metrics.
Manage software updates and configuration changes remotely.

For airport leadership, this “at-a-glance” visibility can translate into improved passenger experience, higher equipment availability and more efficient use of resources.

The cyber risk of convergence

As operational technology (OT) and information technology (IT) environments converge, the attack surface expands. A checkpoint is no longer just screening hardware; it is a networked environment of sensors, endpoints, servers, and cloud-connected services. Without intentional safeguards, a vulnerability in one device, whether legacy firmware or a third-party component, can become an entry point into the broader ecosystem.

The challenge for airports is balancing accessibility with availability. Real-time data, remote diagnostics and centralized management require connectivity. Resilient checkpoints require architecture that enables insight without exposing critical systems.

Building a secure foundation

Airports do not need to reinvent their cybersecurity programs to support connected checkpoints. In many cases, success begins with disciplined execution of fundamentals:

Network segmentation helps ensure screening systems are logically separated from business networks and public-facing infrastructure.
Least-privilege access controls limit who can interact with critical systems and reduce the impact of compromised credentials.
Device hardening and configuration management minimize unnecessary services and protocols that can be exploited.
Continuous monitoring and tailored alerts can provide early visibility into unusual activity across OT environments.

These measures may not be new, but in highly interconnected checkpoint environments, they become essential.

Enabling visibility without compromising security

One of the most important goals for airport operators is centralized oversight, often described as a “single pane of glass” view of checkpoint performance.

Achieving this safely requires thoughtful design:

Telemetry should be aggregated securely, with encrypted communication pathways.
Remote access for maintenance must be controlled, monitored and time bound.
Patch management processes must be coordinated to avoid operational disruption during peak travel periods.
Vendor access should be governed through clearly defined cybersecurity requirements.

The objective is not to limit connectivity, but to maintain comprehensive operational visibility while preserving system integrity.

Preparing for emerging threats

Innovation in artificial intelligence (AI) and automation are accelerating across the aviation sector. AI-enabled analytics can enhance threat detection, optimize passenger flow and improve system reliability. At the same time, adversaries are increasingly leveraging AI-driven tools to identify vulnerabilities and automate attacks.

A forward-looking strategy pairs innovation with governance and accountability. The right questions include:

Does this solution reduce operational risk or introduce new dependencies?
How is data protected throughout its lifecycle?
Can this system be securely integrated into existing OT and IT environments?
What visibility does leadership have in its performance and security posture?

A changing regulatory environment

Across global markets, aviation cybersecurity expectations are expanding. Frameworks such as Europe’s NIS2 Directive, the Cyber Resilience Act and other regional aviation cybersecurity regulations reflect a broader trend: organizations, including executive leadership, are increasingly accountable for managing cyber risk in critical infrastructure.

Rather than viewing compliance as a checklist exercise, airports can use these evolving standards as a roadmap for strengthening resilience. Proactive risk management, executive engagement and cross-functional collaboration are now baseline expectations.

Collaboration across the ecosystem

Checkpoint security is never the responsibility of a single stakeholder. Airports, equipment manufacturers, system integrators and cybersecurity teams must work in partnership. To help protect existing systems, recommendations include:

Controlled network architectures.
Strong physical security.
Secure configuration baselines.
Supply chain risk management.
Clear decommissioning and sanitization processes.
Defined cybersecurity expectations within vendor contracts.

Resilience can be built not just through technology, but through governance, coordination and lifecycle planning.

Securing the future of the checkpoint

The race to innovate will continue. Airports are under pressure to process passengers more efficiently, adopt advanced screening technologies and integrate intelligent analytics, all while maintaining uninterrupted operations.

The checkpoint of the future will be more connected, more data-driven and more automated than ever before. Ensuring it is also cyber-resilient requires deliberate design, strong leadership engagement and disciplined execution of both foundational and emerging security practices.

When connectivity, visibility and security are treated as complementary objectives rather than competing priorities, airports can be better positioned to deliver safe, efficient and resilient screening environments that meet the demands of modern aviation.

This article was written by Shawnessy Scott, director, Cybersecurity Operations at Leidos, which has more than 32,000 security screening products deployed globally.

Cookie	Duration	Description
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

January 2026 issue is now available online!

January 2026 issue is now available online!

Passenger Terminal World Showcase 2026

September 2025 issue is now available online!

OPINION: Securely connecting the checkpoint of the future