Maritime Cyber Security
The traditional image of the seafaring vessel with captain and crew using the stars for navigation and the wind for propulsion is a distant memory from the past. Today’s commercial ships and superyachts are often huge floating computer systems relying on complex IT and OT infrastructure to operate everything from navigation systems, cargo management, propulsion, security, passenger and bridge systems.
While ships might not seem a likely target for cyber attacks, this almost complete reliance on such sophisticated digital technologies – which result in hugely improved operational efficiencies – can mean that such vessels are left exposed if these systems are not managed correctly.
The implications of a maritime cyber attack are also huge, in many cases much more significant than an attack on a conventional computer network such as a land-based office environment. Any maritime professional is aware that ballast system failure or infiltration could result in a ship sinking. And cargo management systems often have to keep transported produce such as fruits at a specific temperature for the cargo to retain its value during a long sea journey.
Despite published statistics showing a huge increase in the number of maritime cyber attacks – An increase of 900% in three years – coupled with a shift in industry attitude that a recent BIMCO Maritime Cyber Security Survey described as an evolution from “awareness to preparedness”, there is still a perception that maritime cyber security is not being given the full attention and focus that is required. This can be in part due to ship owners not wanting to share or officially log such incidents for fear of reputational damage. Also, crew members or operators mistakenly thinking that an anti-virus system installed on e.g a Bridge navigation system means that the ship’s systems are protected, without understanding that IT system protection does not mean that OT systems such as vessel berthing and cargo handing systems are also protected. Attacks on such OT systems can be mistakenly logged as system failures and the inadequacies of these systems are then never addressed.
Both IT And OT Sytems Are Essential
IT systems manage the ship’s data, as data technologies have improved, these systems have naturally evolved with them and generally work seamlessly with commonly known operating systems. As such, securing these systems can be relatively straightforward, installing a high-end anti-virus and firewall system can make life harder for a potential attacker as part of a risk-based information security management approach that incorporates the identify, protect, detect, respond and recover principles.
OT systems are hardware and software that directly control physical devices such as cargo handling and safety systems, they, therefore, have a real impact on the physical world, and so safety is crucial.
Operational technology is often built on bespoke, proprietary operating systems without in-built security software. Installation of basic protection applications is therefore not straightforward and software upgrades and improvements usually have to be made by the software vendors. Such legacy systems also may not have the computational resources to support the addition of security patches or upgrades.