This article presents a new structured methodology for categorizing and analysing cybersecurity regulations relevant to European Space Agency’s (ESAs) navigation programmes. It introduces a ten-category system that organizes European Union (EU) norms affecting cybersecurity, thereby enabling a systematic assessment of their applicability. The analysis distinguishes between regulations that directly impact navigation programmes and those with no operational relevance. By demonstrating how this categorization streamlines compliance checks, improves audit consistency, and anticipates future regulatory developments, the article highlights the value of a legal analysis in strengthening the cyber resilience of the European navigation sector, which has an impact of EUR 260 billion market and five billion users.
Air and Space Law