论文信息 - Integrating and Validating Maritime Transport Security Services: Initial results from the CS4EU demonstrator

Integrating and Validating Maritime Transport Security Services: Initial results from the CS4EU demonstrator

Maritime transport is a characteristic example of a collaborative and complex cyber-physical environment, involving various stakeholders and actors, with different goals and requirements. Securing such a complex ecosystem is a challenging task and has recently attracted various research efforts in different areas including, threat management, system hardening, trust management and communication security. However, the integration and validation of such targeted maritime transport security services is a complex task that has its own challenges. In this paper we present the preliminary results of the maritime transport security services demonstrator, developed under the CyberSecurityForEurope (CS4EU) pilot project. We have set up a demonstrator to integrate, extend and validate four maritime-specific security services, covering risk and threat management, system hardening, trust management and secure communications. Our goal is to enhance the provisioning of these services and to identify possible research and implementation gaps.

[1] Ping Wang,et al. A Security Analysis of Honeywords , 2018, NDSS.

[2] Timothy Casey,et al. Threat Agent Library Helps Identify Information Security Risks , 2007 .

[3] Karin Bernsmed,et al. Protecting Future Maritime Communication , 2017, ARES.

[4] Stefan Schauer,et al. MITIGATE: a dynamic supply chain cyber risk assessment methodology , 2018, Journal of Transportation Security.

[5] Nineta Polemi,et al. Design and validation of the Medusa supply chain risk assessment methodology and system , 2018, Int. J. Crit. Infrastructures.

[6] Ronald L. Rivest,et al. Honeywords: making password-cracking detectable , 2013, CCS.

[7] Karin Bernsmed,et al. On the Certificate Revocation Problem in the Maritime Sector , 2020, NordSec.

[8] Elias Athanasopoulos,et al. HoneyGen: Generating Honeywords Using Representation Learning , 2021, AsiaCCS.

[9] Elias Athanasopoulos,et al. Practical Password Hardening Based on TLS , 2019, DIMVA.

[10] Cristiano Giuffrida,et al. VTPin: practical VTable hijacking protection for binaries , 2016, ACSAC.

[11] Nineta Polemi,et al. CYSM: An Innovative Physical/Cyber Security Management System for Ports , 2015, HCI.

[12] David Mazières,et al. The Advanced Computing Systems Association a Future-adaptable Password Scheme a Future-adaptable Password Scheme , 2022 .