Drone Defense and Resilience for European Airports

The number of drone incidents at European airports is on the rise, including targeted and hybrid attacks in addition to classic security risks (collision, business interruption). Business interruptions caused by drones can have far-reaching consequences, from supply bottlenecks to damaged company image.

The ability to respond proactively and with resilience to these threats is becoming a strategic competitive factor. Modern counter-drone systems, regulatory compliance, and holistic resilience management are now critical to protecting security, operability, and reputation. 

Early warning systems and the next step: From detection to active defense

Many European airports have significantly invested in the expansion of detection and early-warning systems in recent years. Multi-sensory platforms, AI-supported analysis and integration into existing security architectures are now standard at many locations and have significantly increased the level of protection.

But the opening of a new chapter in attack vectors – especially by drones – renders pure early detection insufficient. Efficient and legally secure defensive measures that do not impair ongoing airport operations must form part of the solution. Modern, cyber-based drone defense systems offer a promising approach that neutralizes threats without disrupting critical communication or navigation systems. Decision-makers are called upon to actively shape this next level of resilience and integrate it into their security strategy.

Who must act and when?

• Detection: Immediate notification by security personnel or automated systems
• Evaluation: Rapid assessment of the situation by a joint situation center (airport, police, air traffic control)
• Defense: Decision and implementation by the responsible authorities (usually the police, or in some cases armed forces)
• Follow-up: Documentation, analysis and adaptation of processes

Regulatory requirements and best practices

Regulatory requirements for airports in dealing with drone threats have significantly tightened in recent years, at both European and national level (CER Directive¹, KRITIS Umbrella Law², EU Drone Strategy 2.0³). The EU Commission is calling for a harmonized legal framework for drone defense that includes both technical and organizational measures. But considerable uncertainty remains in its practical implementation:

• Legal gray areas: The powers for active defense (neutralization or takeover of drones) are not clearly regulated in many countries. Airport operators themselves often lack the legal basis to actively intervene. Sovereign responsibility for detection and physical defense usually lies with the state, particularly with the federal police and aviation security authorities.
• Responsibilities and processes: Cooperation between airport operators, air traffic control, police and other authorities is often poorly defined. In an emergency, this can lead to delays and uncertainties as to who can and must take which measures and when.
• Technological lag: While some airports have already invested in detection systems, many lack integrated processes, clear SOPs (standard operating procedures), and the ability to neutralize threats efficiently.

Technological options for drone defense

Drone defense technology is evolving rapidly, although incorporating it into airport operations is complex and fraught with challenges:

• Detection and classification: Modern multi-sensor systems (radar, radio, optical, acoustic) enable early detection of drones. AI-powered platforms help reduce false positives and prioritize threats.
  • Challenge: Many systems are not yet sufficiently incorporated into operational processes and integrated situation centers. Real-time transfer of information to all relevant points is often not guaranteed.
• Defense and intervention: Cyber-based systems that target and take over or deactivate drones show promise because they do not disrupt ongoing operations. The use of jammers is legally and technically problematic and reserved for authorities.
  • Challenge: Operational implementation, i.e., who is allowed to operate which systems in an emergency, and what the escalation chain looks like is often unclear.
• Integration and operation: The best technologies are only effective when embedded into holistic security and crisis management. This includes clear SOPs, regular exercises, and the involvement of all relevant stakeholders (airport, police, air traffic control, armed forces).

Recommended course of action for airports

Airports and their partners should act now and clearly define and train processes and responsibilities, coordinate with authorities and technology providers, integrate technology quickly and purposefully, and close operational security gaps in the short term to increase resilience.

Short-term measures:

• Risk analysis and vulnerability assessment: Identifying the specific threat scenarios for each site and analyzing both technical and organizational security gaps
• Continuous monitoring: Implementing multi-sensory detection systems and AI-powered analytics platforms to detect and assess threats at an early stage
• Awareness and training: Training staff regularly on new attack vectors, emergency procedures, and how to work with authorities

Medium-term measures:

• Piloting and integration of modern drone defense systems: Testing cyber-based solutions that neutralize threats in a targeted and legally compliant manner, without affecting airport operations
• Crisis and restart plans: Developing and testing emergency and restart plans to respond quickly and in coordination in the event of an emergency
• Partnerships and exchange: Actively seeking cooperation with authorities, technology providers, and other airports to share knowledge, experience, and best practices

Long-term strategy:

• Modular resilience management: Establishing flexible, adaptable resilience management that continuously adapts to new threats and regulatory requirements.
• Technology scouting and innovation: Continuously monitoring the market for new technologies and evaluating innovative approaches to further strengthen your security architecture
• Leverage data and AI: Leveraging data analytics and artificial intelligence to proactively detect threats and optimize defenses

Innovation approach to airport security

Deloitte is currently developing solutions to support national and international airport operators in the prevention, detection, and defense of drone threats. The core component is a modular monitoring system that combines sensor networks, drone radar and other detection methods with automated alarm levels. The aim is to detect threats early and react in stages, without disrupting ongoing operations.

Our approach also focuses on the integration of operational processes that allow airports and the authorities to act quickly and in coordination in the event of an emergency, relying on clearly defined emergency plans, escalation levels, and responsibilities. A planned proof of concept simulates targeted disruptions by drones to reveal vulnerabilities in existing security architectures and identify concrete optimization potential.

Last but not least, we also take into account regulatory and legal framework conditions, such as questions of approval, data protection, and aviation law. The aim is to create solutions that are not only technically effective, but legally viable and future-proof.

Deloitte: Your partner for resilience and innovation

Deloitte is an experienced and trusted partner to critical infrastructure operators, especially in the areas of aviation, security and crisis management. Increasing security demands and the high pace of innovation have led Deloitte to spin off a separate Garage for Resilience and Innovation to support airports and other operators of critical infrastructures with tailor-made solutions, the latest technologies, and interdisciplinary expertise.

Our services at a glance:

• Development and implementation of resilience strategies: From risk analysis and process optimization to the implementation of state-of-the-art technology
• Technology assessment and integration: Selection, piloting, and integration of anti-drone systems, tailored to individual requirements and regulatory frameworks
• Crisis exercises and red teaming: Realistic crisis exercises that test and improve processes, interfaces, and responsiveness
• Workshops and awareness programs: Sensitization and qualification of managers and operational personnel to potential new threats and innovative solutions
• Regulatory compliance: Support in compliance with all relevant legal and regulatory requirements at national and European level

Contact us to strengthen your resilience together: from initial analysis to implementation. 

¹CER Directive – Directive (EU) 2022/2557 of the European Parliament and of the Council of 14 December 2022 on the resilience of critical entities and repealing Council Directive 2008/114/EC last accessed 20.10.2025.

²KRITIS Umbrella Law – BMI: Press release on the cabinet decision regarding the umbrella law for the protection of critical infrastructures, 2025. Note: Source refers to the draft/decision, as the law has not yet been finally adopted last accessed 20.10.2025.

³EU Drone Strategy 2.0 – European Commission: Communication from the Commission to the European Parliament, the Council, the European Economic and Social Committee and the Committee of the Regions – A Drone Strategy 2.0 for a Smart and Sustainable Unmanned Aircraft Eco-System in Europe, adopted 29 November 2022 last accessed 20.10.2025