Since our inception, Skydio has been unwavering in our dedication to the safety of our merchandise and our buyer’s information. As the biggest U.S. drone producer, we acknowledge our duty to uphold these features as foundational parts of our services and products. The US Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Safety Company (CISA), a part of the U.S. Division of Homeland Safety, not too long ago launched a Cybersecurity Steering report, outlining their UAS Cybersecurity Suggestions. We commend them for this work and are proud to say that our long-standing dedication to safety absolutely aligns with the suggestions put forth within the doc.
Safe-by-Design: A Foundational Precept
At Skydio, safety isn’t an afterthought; it’s a major design precept. From the early phases of our product improvement, now we have built-in strong safety measures to safeguard towards exterior threats. This strategy ensures the confidentiality, integrity, and availability of knowledge – a stance that mirrors the secure-by-design advice by the FBI and CISA. For Skydio X10 we applied industry-leading Safe Boot options that make sure that solely code signed by Skydio can run on our X10 product.
Proactive Growth and Common Updates
Our proactive stance on safety is obvious in our strategy to software program improvement and updates. We’ve got all the time prioritized figuring out and mitigating vulnerabilities early within the improvement course of. Skydio undergoes no less than one third-party penetration take a look at a 12 months on each our drones and cloud and shortly remediates any critical vulnerabilities. Common firmware updates that embody safety enhancements are a testomony to our dedication to conserving our programs safe towards rising threats.
Superior Encryption for Knowledge Safety
Understanding the criticality of knowledge safety, Skydio drones make the most of robust encryption mechanisms for information in transit and at relaxation. Our use of AES-256 bit encryption in our X10 drone and thru Skydio Join SL ensures that information transmitted between the drone and the controller is securely encrypted, thus sustaining information integrity and privateness. Moreover, our use of TLS 1.2/1.3 utilizing non-weak ciphers to encrypt all data between our merchandise and Skydio Cloud in addition to using AES-256 for storing buyer information at relaxation meets the safety necessities of our most superior cloud clients.
Community Segmentation and Zero Belief Structure
Adhering to the rules of community segmentation and the Zero Belief framework, Skydio drones are designed to attenuate the impression of any cyberattack on UAS programs. This structure of steady verification and authentication considerably reduces unauthorized entry and limits the assault floor of our merchandise.
Provide Chain Integrity and Transparency
From the outset, now we have been conscious of our provide chain’s safety, making certain that parts are sourced from producers adhering to stringent safety insurance policies. This apply aligns with the steering’s emphasis on understanding the origins of UAS parts and their safety requirements. It additionally ensures that the Skydio X2 and X10 merchandise are NDAA compliant.
Steady Safety Coaching and Consciousness
Recognizing the human facet of cybersecurity, Skydio has all the time invested in common IT safety schooling and coaching. This ensures that our workforce is supplied to determine, mitigate, and successfully reply to rising cybersecurity threats.
Exterior Audits
Skydio undergoes a number of exterior audits yearly by main third-party evaluation organizations for each ISO27001:2022 and SoC2 Sort II. These audits present a complete evaluate of Skydio’s data safety measures making certain they persistently meet the belief providers standards related to safety and privateness along with adherence to worldwide finest practices in data safety administration. These ongoing verifications present confidence to our clients and companions that Skydio is dedicated to excessive requirements of knowledge safety and operational reliability.
Conclusion
Skydio’s unwavering dedication to cybersecurity and information safety since our founding has all the time aligned with the best requirements, together with these advisable by the FBI and CISA. We proceed to evolve these methods to fulfill the ever-changing panorama of digital safety, making certain that our merchandise are usually not solely revolutionary but additionally safe and reliable. At Skydio, we take the duty of offering safe, dependable, and superior UAS know-how very severely, making certain that our merchandise are a beacon of belief within the {industry}.
Jeff Horne, because the Head of Safety at Skydio, leads the corporate’s efforts in making certain that its UAS options meet the best cybersecurity requirements.