A Study on Cyber Security Threats in a Shipboard Integrated Navigational System

The integrated navigational system (INS) enhances the effectiveness and safety of ship navigation by providing multifunctional display on the basis of integration of at least two navigational functions, the voyage route monitoring with Electronic Chart Display and Information System (ECDIS) and collision avoidance with radar. The INS is essentially a software platform for fusion of data from the major ECDIS and radar systems with sensors for the additional navigation functions of route planning, status and data display, and alert management. This paper presents a study on cyber security resilience examination of a shipboard INS installed on a RoPax ship engaged in international trade. The study was based on a mixed-method approach, combining an interview of the ship’s navigational ranks and cyber security testing of the INS using an industry vulnerability scanner. The identified threats were analyzed qualitatively to study the source of cyber risks threatening the INS. The results obtained point out cyber threats related to weaknesses of the INS underlying operating system, suggesting a need for occasional preventive maintenance in addition to the regulatory compliance required.

[1]  Mass Soldal Lund,et al.  Integrity of Integrated Navigation Systems , 2018, 2018 IEEE Conference on Communications and Network Security (CNS).

[2]  Junzo Kamahara,et al.  Assessing ship cyber risks: a framework and case study of ECDIS security , 2019, WMU Journal of Maritime Affairs.

[3]  Leszek Chybowski,et al.  Assessing the Unreliability of Systems during the Early Operation Period of a Ship—A Case Study , 2019, Journal of Marine Science and Engineering.

[4]  Gary C. Kessler,et al.  A Taxonomy Framework for Maritime Cybersecurity: A Demonstration Using the Automatic Identification System , 2018 .

[5]  C. Wan,et al.  Identification and Analysis of Vulnerability in Traffic-Intensive Areas of Water Transportation Systems , 2019, Journal of Marine Science and Engineering.

[6]  Piotr Borkowski Presentation algorithm of possible collision solutions in a navigational decision support system , 2014 .

[7]  C. Edward Chow,et al.  Secure GPS Data for Critical Infrastructure and Key Resources: Cross‐Layered Integrity Processing and Alerting Service , 2018 .

[8]  David Brčić,et al.  Raising Awareness on Cyber Security of ECDIS , 2019, TransNav, the International Journal on Marine Navigation and Safety of Sea Transportation.

[9]  EunSu Lee,et al.  The Maturity of Automatic Identification Systems (AIS) and Its Implications for Innovation , 2019, Journal of Marine Science and Engineering.

[10]  Margareta Lützhöft,et al.  Frequency of use – the first step toward human-centred interfaces for marine navigation systems , 2019 .

[11]  Marie-Helen Maras,et al.  Trojan horse risks in the maritime transportation systems sector , 2018 .

[12]  Mohammed A. Al Ghamdi,et al.  Understanding the Vulnerabilities in Digital Components of An Integrated Bridge System (IBS) , 2019, Journal of Marine Science and Engineering.

[13]  Michael Tsimplis,et al.  Information Technology in Navigation: Problems in Legal Implementation and Liability , 2019, Journal of Navigation.

[14]  Sang-Kyun Park,et al.  Improving cyber security awareness in maritime transport : A way forward , 2017 .

[15]  Haralambos Mouratidis,et al.  Cyber-attack path discovery in a dynamic supply chain maritime risk management system , 2018, Comput. Stand. Interfaces.

[16]  Kevin D. Jones,et al.  MaCRA: a model-based framework for maritime cyber-risk assessment , 2019, WMU Journal of Maritime Affairs.

[17]  Junzo Kamahara,et al.  Maritime Cyber Risk Management: An Experimental Ship Assessment , 2019, Journal of Navigation.

[18]  Larisa A. Dobryakova,et al.  GNSS Spoofing Detection Using Static or Rotating Single-Antenna of a Static or Moving Victim , 2018, IEEE Access.

[19]  Remus Zăgan,et al.  Realities in Maritime Domain Regarding Cyber Security Concept , 2018 .

[20]  Mass Soldal Lund,et al.  Enhancing Navigator Competence by Demonstrating Maritime Cyber Security , 2018, Journal of Navigation.

[21]  Vlado Frančić,et al.  Towards a Cyber Secure Shipboard Radar , 2019, Journal of Navigation.

[22]  Nineta Polemi,et al.  Knowledge management methodology for identifying threats in maritime/logistics supply chains , 2018, Knowledge Management Research & Practice.

[23]  Junzo Kamahara,et al.  A FRAMEWORK FOR CYBER SECURITY RISK ASSESSMENT OF SHIPS , 2018 .