MARITIME CYBER SECURITY Archives - Page 24 of 40

The Ports and Maritime Organization of Iran announced in a statement that its information technology experts have thwarted a cyberattack targeting the electronic infrastructures of the Iranian ports.

All missions and activities of the Ports and Maritime Organization are going on normally, the statement added, noting that online services are being provided to prevent any disruption to the freight services or loading and unloading operations even for a moment.

Last month, an official said the export of non-oil commodities in the first half of the current Iranian year via the southeastern port city of Chabahar has risen by 95 percent compared to the corresponding period a year earlier.

Chabahar is the closest and best access point of Iran to the Indian Ocean and Iran has devised serious plans to turn it into a transit hub for immediate access to markets in the northern part of the Indian Ocean and Central Asia.

Source: tasnimnews.com

With greater than 90 percent of all global trade tonnage transported by sea and vital global energy networks, maritime infrastructure has never been more essential and yet also more at risk. In just the last two weeks, there have been several high-profile attacks on the maritime industry, with both the fourth largest global shopping company and the International Maritime Organization (IMO) targeted.

To dive deeper on this topic, we asked seven experts—including several who spoke at a recent Scowcroft Center for Strategy and Security event on maritime cybersecurity—about these threats and how policymakers can help protect against them:

What are the most vulnerable aspects of our maritime infrastructure? What makes them such attractive targets?

“When compared to commercial IT, the technologies used within the maritime sector illustrate the difficulties new sectors have to adapt to the Internet of Everything (IoE). Like many other sectors, the maritime sectors used to develop stand-alone software and hardware, inherently “limiting” the risks to internal threats. The new IoE paradigm, however, proves that it is challenging to securely design, develop, and operate a fully connected environment. Current GPS, ECDIS, and AIS systems have demonstrated various vulnerabilities in the last couple of years. So in order for the maritime environment to develop and operate in a secure fashion, it will be essential to have an overall view of the supply chain, from third party manufacturer to the people operating and maintaining the equipment. This view should further evolve over the lifetime of the equipment, with updates, upgrades, and training.

“In its current state, the maritime industry is a prime target due the many moving parts of ports and vessels, the increasing attack surface (e.g. adding connectivity to devices that had never been thought to be connected), the current lack of security and privacy by design, as well as the inadequacy of cyber-security training. Furthermore, with the industry quickly bridging the gap between IT and Operational Technology (OT), we may soon see wide-spread vulnerabilities impacting the maritime sector as a whole.”

Dr. Xavier Bellekens, Lecturer and Chancellor’s Fellow, Institute for Signals, Sensors, and Communications,University of Strathclyde

From a government standpoint, what can the US government do to incentivize the maritime industry to invest more in cybersecurity?

“I believe that the most impactful things the US government can do to incentivize maritime industry investments in cybersecurity are:

Promote robust, real-time, maritime-specific cyber threat and incident information sharing between maritime industry stakeholders, and between those stakeholders and the US government (and vice versa), when appropriate.
Share cybersecurity threat intelligence with cleared maritime industry stakeholders.

I believe that these two measures are critically important as, currently, maritime industry executives have limited information about cybersecurity threats that other companies have experienced. Only by sharing cybersecurity threat and incident information widely with and between maritime companies can their senior executives gain a clear appreciation of the collective threats and potential financial and national security impacts of failing to adequately invest in IT and OT infrastructure improvements and other cybersecurity enhancement measures. Having this complete cybersecurity threat picture is key to making corporate cost-benefit decisions on increased investments in cybersecurity, and to ensuring that those investments achieve the best possible cybersecurity protections.”

Cameron Naron, Director, Office of Maritime Security, Maritime Administration, US Department of Transportation

What kind of players exist in the maritime industry and what role should they play in driving improved cybersecurity outcomes?

“The challenges in driving improvement in cybersecurity programs within the global maritime industry result from the many links in the marine transportation system and the personnel at each of these links. With enhanced technology, the interconnectivity—while improving the efficiency of the system itself—also presents multiple nodes which provide opportunities for cyberattacks. Looking at the system as a whole and starting at the most basic level, the vessel and its systems, interconnected within the ship and interfaced with shore management, is the basic building block. Key links to and from the vessel include shore management (ship owner, operator, or charterer), government agencies requiring electronic reporting of vessel information, third-party contractors including classification societies, vendors, technical service providers, and port and terminal authorities. Simply put, in an ideal world, the entire logistics chain is interconnected and provides stakeholders real-time information essential to scheduling and decision making. Integrating cybersecurity programs at each interface is critical as is also the education of personnel at each interface. In such an integrated system, the cybersecurity programs are only as good as the weakest link, making it critical that all links in the logistics chain collaborate in establishing robust programs, properly training personnel and maintaining the operational efficiency necessary for all parts to work as one.”

Ms. Kathy Metcalf, President and Chief Executive Officer, Chamber of Shipping of America

Cyber-attacks on maritime infrastructure can be especially alarming because of potential compounding effects. What lessons can be taken from other sectors to help better protect maritime infrastructure from systemic threats?

“Three opportunities for maritime to build on the cybersecurity lessons learned by others jump out. First, from the energy sector, how to monitor and alert on malicious system behaviors in technology without a great deal of computing head room left for big commercial IT security applications. Second, from the US financial sector, the importance of regular and realistic joint exercises to build confidence in the collaborative links between stakeholders and raise awareness of channels for cascade failure between them. Third, from the telecommunications sector, how some companies have approached repeated adversarial events as an issue of resilience—building flexibility, capacity to adapt, and deep system expertise as a means of operating through failure rather than endlessly seeking to prevent it.”

Trey Herr, Director, Cyber Statecraft Initiative, Scowcroft Center for Strategy and Security, Atlantic Council

What was your biggest takeaway from the Atlantic Council panel conversation? How does it align with what you see as the biggest threat to maritime cybersecurity that needs to be tackled?

“Sustaining a safe, secure, and resilient marine transportation system is foundational to our economic and national security. When we consider evolving risks in the cyber domain, the maritime sector is on par with other more widely recognized sectors, like finance and energy, in terms of the potential for significant consequences. As we have seen from recent incidents, the maritime industry’s growing dependence on continuous network connectivity and converging layers of information and operational technology make it inherently vulnerable to cyber threats.

“The first step for the maritime industry is to recognize that cyber risk management is not an administrative function that can be left solely to company IT professionals, but rather a strategic and operational imperative that must be managed at the C-suite level. We also need to recognize that cyber security is a team sport; no single public or private entity has the capabilities, authorities, resources, and partnerships to do it alone, so information sharing and collaboration are essential to managing this risk.”

Captain Jason P. Tama, Commander, Sector New York; Captain of the Port of New York and New Jersey, United States Coast Guard

How does cyber insecurity in civilian maritime infrastructure impact military readiness and capabilities? Why should the cybersecurity of our commercial fleets be a priority for the US government and the Department of Defense (DoD)?

“While cyber insecurity in civilian maritime infrastructure has not yet been a hindrance to force projection, it could be in the future, given the right set of circumstances. In the past, we have operated under the assumption of an uncontested homeland and uncontested passage. However, exploring the asymmetric level of effort required for successful cyber-attacks juxtaposed against the damage they may cause, has forced a re-evaluation of whether our infrastructure and routes will remain uncontested in the future. Because the Army relies on the civilian maritime industry to move equipment, when US forces need to be sent overseas quickly, minor delays throughout our civilian critical infrastructure could have a ripple effect on the deployment timeline. The cybersecurity of commercial fleets should be a priority for the US government and DoD because disruptions or delays to military deployments could jeopardize our ability to maintain stability and to support our allies and partners.”

Dr. Erica Mitchell, Critical Infrastructure/Key Resources Research Group Leader, Army Cyber Institute, West Point; Assistant Professor in the Electrical Engineering and Computer Science Department, West Point

How can we help better enable and operationalize the Maritime industry to ensure that cybersecurity is not only understood, but also prioritized?

“First, to understand and prioritize cybersecurity, persistent visibility into organizations’ own networks, assets, and critical third-party integration must be achieved. This is the spectrum of attack surfaces that requires the same continual monitoring and awareness that we have practiced for centuries at sea: inspections of cargo holds and machinery spaces, watertight enclosures and hatches, and material conditions throughout the vessel to ensure seaworthiness. An understanding of network architecture, what is connected, when it connects, and who may be required to connect is an imperative. Real-time knowledge of business, vessel, and marine terminal networks and technologies presents the greatest power of information to empower stakeholders because what belongs and what doesn’t belong is discoverable and tangible in the present, allowing actions to be taken early, instead of after a breach. Observable behaviors of how systems react to detectable adversarial activities and breach attempts is convincing and defensible evidence from which to understand then prioritize the risk through informed decisions. This is largely missing—inconsistent at best—across the maritime industry, with some exceptions. Without persistent monitoring in a rapidly advancing digital ecosystem, decisions will be farther behind the curve and based on scanty information.

“Second, cybersecurity leadership is necessary in the board room to ensure leadership is informed, that all the appropriate considerations are included in strategic planning and governance, and that cybersecurity actions taken are translated to a business language for all leadership and stakeholders to understand. In operating ships and marine terminals where cyber-physical systems integrate with IT, leaders must create and implement unified strategies for how the fleet or facilities will be protected; to support the vessel masters, crews, and employees through the creation of sensible plans to respond and recover, and to maintain safe operations. This is no different from how responsible maritime companies develop strategies to understand and manage other forms of somewhat tangible risk, such as geopolitical, climate change, ballast water, and even obsolescent technology replacement. As an example, many operational and safety checks are required to be performed and logged for a vessel preparing to sail or arrive in port. Very little in the form of pre-departure or arrival cybersecurity checks are provided to the vessel as tested and validated from ashore. This type of assurance and safety due diligence can be organized and led by a maritime Chief Information Security Officer (CISO). At the present, very few maritime companies are staffed with a CISO, with some exceptions. So how can we sail into the digital future without the dedicated leadership and the processes to trust-but-verify?

“Third, industry would benefit from discreet information sharing exchanges from which stakeholders may meet in private to discuss not only cybersecurity threat information, but also strategy and best practices, and to meet with government representatives as needed. As the deployment of OT monitoring software solutions by vendors increases, we must understand industry’s experiences with the performance of these technologies, the value of the output data, and new unintended security vulnerabilities. These lessons learned should be shared so industry can advance through digitalization together, vice operate in a vacuum. Lastly, as businesses interface with shareholder and government entities in the sharing of cybersecurity information, organizations need the right blend of industry and cyber leadership expertise to represent their equities ahead of regulation.

“We are always thinking ahead in maritime—monitoring through watchkeeping, anticipating, scanning, plotting navigation fixes, inspecting, analyzing trends, and preparing—because the sea is unforgiving, and the duty of care is neither optional nor negotiable. Until now, cyber has run counter to every best practice we have learned and practiced—react, wait for the bad news, then scramble (with some exceptions). Instead, turn the constraints of limited resources, talent, and low priority into advantages and strategy by simplifying the cybersecurity problem through continuous monitoring, dedicated cybersecurity leadership, and discreet collaboration.

Source: atlanticcouncil

As hackers become even more sophisticated in their tactics, it’s inevitable that maritime cyber-attacks against OT on ships are becoming the norm rather than the exception. The stats speak for themselves:

Of respondents, 77% view cyber-attacks as a high or medium risk to their organizations, yet only 64% said their organization has a business continuity plan in place to follow in the event of a cyber incident. But only 24% claimed it was tested every three months, and only 15% said that it was tested every six to 12 months. Only 2 of 5 respondents said that their organization protects vessels from operational technology (OT) cyber threats, and some respondents went so far as to describe their company policy to OT cyber risk as “careless.”

It’s time for the maritime industry to take a look at every aspect of their ship operations to ensure they’re protected and resilient against these growing threats.

In this eBook, we will help you navigate the ins and outs of maritime cybersecurity, address cybersecurity challenges and compliance considerations, and get you geared up to establish your maritime cybersecurity action plan.

Source: missionsecure

Anastasios Arampatzis reports for Tripwire.com in its official website about the biggest challenges and best practices to mitigate risks in maritime cybersecurity.

Lets look at the essential factors that are crucial in strengthening the cybersecurity of Maritime Industry.

Maritime industry a target for cyber attackers

With more than 90% of the world’s trade being carried by shipping, according to the United Nations’ International Maritime Organization, the maritime industry is an attractive target for cyber attackers.

The European Union has recognized the importance of the maritime sector to the European and global economy and has included shipping in the Network and Information Systems (NIS) Directive, which deals with the protection from cyber threats of national critical infrastructure.

Ships rely on information and technology

Ships are increasingly using systems that rely on digitalization, integration, and automation, which call for cyber risk management on board.

The convergence of information technology (IT) and operational technology (OT) onboard ships and their connection to the Internet creates an increased attack surface that needs to be addressed.

Challenges in Maritime Cybersecurity

The evolution of digital and communications technology has allowed the integration of these two worlds, IT and OT.

The IT world includes systems in offices, ports, and oil rigs, OT is used for a multitude of purposes such as controlling engines and associated systems, cargo management, navigational systems, administration, etc.

Adjunct Professor at the Hellenic American University says, “Maritime industry, especially through vessels digitalization and with the numerous different Operational Technology devices deployed, creates a digital landscape previously unknown to a big extent due to the specific hardware and software being used. New security risks will be evolved with the impact being very significant mainly due to the direct connection with the physical world and the consequent operational damage.”

The maritime OT world includes systems like:

Vessel Integrated Navigation System (VINS)
Global Positioning System (GPS)
Satellite Communications
Automatic Identification System (AIS)
Radar systems and electronic charts

These technologies and systems provide significant efficiency gains for the maritime industry.

They also present risks to critical systems and processes linked to the operation of systems integral to shipping.

These risks may result from vulnerabilities arising from inadequate operation, integration, maintenance, and design of cyber-related systems as well as from intentional and unintentional cyberthreats.

To address the cyberthreats, it is important to consider the uniqueness of OT systems, as these assets control the physical world. There are certain challenges to consider, such as:

OT systems are responsible for real-time performance, and response to any incidents is time-critical to ensure the high reliability and availability of the systems.
Access to OT systems should be strictly controlled without disrupting the required human-machine interaction.
Safety of these systems is paramount, and fault tolerance is essential. Even the slightest downtime may not be acceptable.
OT systems present extended diversity with proprietary protocols and operating systems, often without embedded security capabilities.
They have long lifecycles, and any updates or patches to these systems must be carefully designed and implemented (usually by the vendor) to avoid disrupting reliability and availability.
The OT systems are designed to support the intended operational process and may not have enough memory and computing resources to support the addition of security capabilities.

Disruption of the operation of OT systems may impose significant risk to the safety of onboard personnel and cargo, cause damage to the marine environment, and impede the ship’s operation.

Safety warning from USCG

In fact, it was only last July that the U.S. Coast Guard issued a safety alert warning all shipping companies of maritime cyber-attacks.

The incident that led to this warning happened in February 2019 when a large ship on an international voyage bound for the Port of New York and New Jersey reported “a significant cyber incident impacting their shipboard network.”

The Coast Guard led an incident-response team to investigate the issue and found that “although the malware significantly degraded the functionality of the onboard computer system, essential vessel control systems had not been impacted.”

A series of incidents

This was not the first time the U.S. Coast Guard had released a cyber safety warning.
In May 2019, they published a bulletin to raise the awareness of maritime stakeholders of “email phishing and malware intrusion attempts that targeted commercial vessels.”

A cyber incident in ships might have severe consequences for the crew, the passengers, and the cargo on board.

Considering that many ships carry harmful substances, a cyber incident might have severe environmental consequences or might lead to hijacking the ship to steal the cargo.

The Baltic and International Maritime Council (BIMCO) has defined a cyber safety incident any incident that leads to “the loss of availability or integrity of safety critical data and OT.”

Cyber safety incidents can be the result of:

a cyber security incident, which affects the availability and integrity of OT (for example, corruption of chart data held in an Electronic Chart Display and Information System (ECDIS))
a failure occurring during software maintenance and patching
loss or manipulation of external sensor data that’s critical to the operation of a ship including but not limited to Global Navigation Satellite Systems (GNSS)

Best practices to mitigate maritime cyber threats

In 2017, the International Maritime Organization (IMO) adopted resolution MSC.428(98) on Maritime Cyber Risk Management in Safety Management System (SMS).

The Resolution stated that an approved SMS should consider cyber risk management and encourages administrations to ensure that cyber risks are appropriately addressed in safety management systems.

The same year, IMO developed guidelines that provide high-level recommendations on maritime cyber risk management to safeguard shipping from current and emerging cyber threats and vulnerabilities.

In addition, BIMCO has developed the Guidelines on Cyber Security Onboard Ships, which are aligned with the NIST Cybersecurity Framework.

To achieve this goal, maritime companies should follow these best practices:

Identify the threat environment to understand external and internal cyber threats to the ship.
Identify vulnerabilities by developing complete and full inventories of onboard systems and understanding the consequences of cyber threats to these systems.
Assess risk exposure by determining the likelihood and impact of a vulnerability exploitation by any external or internal actor.
Develop protection and detection measures to reduce the likelihood and the impact of a potential exploitation of a vulnerability.
Establish prioritized contingency plans to mitigate any potential identified cyber risk
Respond and recover from cyber incidents using the contingency plan to ensure operational continuity.

“Maintaining effective cybersecurity is not just an IT issue but is rather a fundamental operational imperative in the 21st century maritime environment,” said the U.S. Coast Guard in their July 2019 security warning.

Did you subscribe to our daily newsletter?

It’s Free! Click here to Subscribe!

Source: Tripwire

Despite the recent years’ NSA spying revelations, numerous international malware attacks and North Koreas’ hacking of Sony Pictures, maritime cyber-security is not an issue at the forefront of many ship-owners and managers minds.

However, whilst the maritime industry might not seem a likely target, reports of successful cyber-attacks are not unknown. Take, for example, the Port of Antwerp, where hackers working with a drug-smuggling gang repeatedly breached digital tracking systems to locate containers holding large quantities of drugs. They then dispatched their own drivers to retrieve the containers ahead of the scheduled collection time.

After two years, the operation was eventually shut down and there were no major repercussions for the Port of Antwerp or the companies involved. However, according to security experts at Trend Micro, these companies were extremely fortunate. Using the same techniques, it would not be difficult for criminals to cause chaos at sea. By simply accessing and manipulating a vessel’s AIS, hackers could prevent ships from providing movement information, cause AIS users to detect vessels in false locations or make “phantom” structures or vessels appear.

Other examples of an industry at risk include a drilling rig being hacked and forced to suspend operations, as well as a container line’s entire database of cargo information, including container number, location, place of origin, being erased. Furthermore, instances of maritime and offshore companies that have potentially fallen victim to cyber-attacks may be under-reported, as companies may fear appearing to have allowed confidential information to be compromised.

While maritime cyber-security is an issue that falls outside MTI’s traditional domain, we are in a position to use our platform to raise awareness of the issues at the executive level. Adopting good “cyber-hygiene” will dissuade opportunistic attacks and prevent accidental security compromises.

Developing and implementing such policies will require a top down approach within a company. At the most basic level a company should:

• Set strong user access controls

• Set strong network access controls

• Perform regular backups

• Keep software up to date

Training employees on how to recognize cyber-attacks and implementing policies on computer hard-ware usage, particularly the use of USB memory sticks, are further steps a company should consider.

Doing what you can to secure your networks and taking the time to integrate cyber-security into your risk management and crisis communications procedure, are the two most strategic things you can do to ensure you can respond effectively to maritime cyber-security threats and in doing so, protect your reputation as a secure service provider.

Source: mtinetwork

These threats are taken seriously by international and national regulatory organisations and industry trade bodies, which demand action by ship owners and operators, charterers, ports and other maritime companies, great and small.

With our strong heritage from the UK Ministry of Defence, we provide technological and scientific expertise to help protect and advance your vital interests. We are a trusted, independent advisor and security partner for clients who recognise that cyber resilience can deliver a business-winning edge in a highly regulated and competitive environment.

Our cyber solutions address three key areas of the maritime industry at risk:

On-board technology
Shipping headquarters and port operations
Regulatory requirements

On-board Technology

The maritime industry is striving quickly towards greater efficiencies, often through internet-enabling their on-board operational systems. Opening up platforms to the internet exposes potentially dangerous vulnerabilities, which can be exploited by those seeking to interfere with a ship’s seagoing operation with potentially catastrophic consequences for the ship, its crew and the wider environment.

Our maritime domain experience and cyber expertise enable us to really understand the threats our clients face. We can help you protect against these threats and manage the risk to your systems and platforms.

Critical Infrastructure

Ports and the shore-based operations of shipping companies are essential to the maritime industry and the integrity of the global supply chain.

These are critical assets which need to be resilient against a wide variety of cyber threats.

We have a proven track record of supporting companies to understand their risk profile and determine cost-effective remediation to improve their cyber resilience.

Regulatory Requirements

International regulatory bodies are taking cyber threats seriously. The United Nations’ International Maritime Organization has moved for cyber risks to be considered as part of a company’s safety management system by 2021.

It is anticipated that national regulatory bodies could take a stronger stand within their own territorial waters.

We have the expertise and sector partnerships which, combined with our in-depth knowledge of these regulations and industry guidelines, enable us to ensure you are prepared and compliant.

By getting ahead of these regulations now, you will have the edge over your competitors.

Our Services

We can help you become cyber resilient. Our services range from an introductory review of your cyber preparedness to a full cyber maturity assessment against international standards and guidelines.

Maritime Cyber Security Services

This compliance-based review gives you an overview, from any location, of your current cyber preparedness compared to relevant good practice guides.

Source: qinetiq

Any industry in the world cannot develop steadily without the use of modern technologies. Shipbuilding is also actively applying modern technologies, and is now developing at an increased speed. While the automotive and aviation industries have long gone ahead in automation, shipbuilding is in its infancy in comparison. But the variety of modern technologies will soon allow it to catch up with the two previously designated industries and even get ahead of them in the field of IT application.

Some of today’s technologies could be revolutionary for the shipbuilding industry. In this article, we would like to outline only a small part of them, the benefits from the use of which, we believe, will be felt at the turn of the next 5-7 years.

3D printing

The Economist argues that industrial-scale use of this technology will be “the fourth industrial revolution.” This technology allows you to create real objects from virtual 3D models. Special equipment recreates a 3D object by printing sections into which the virtual object is “cut”. Today this technology is actively used for the production of scientific equipment, the creation of small structures, the creation of prostheses and models for various purposes.

The shipbuilding industry can use this technology to create ships of complex geometry by printing various elements of the ship’s skin on a 3D printer. Moreover, 3D printers allow in a short time to recreate a part that is out of order and requires quick replacement.

Robotics

It is one of those technologies of the third industrial revolution that has undergone changes due to the development of digital technologies. Modern realities force us to create robots more flexible, able to perform various tasks, and not monotonous repetition, to which everyone is accustomed (conveyor belt). Moreover, the use of modern sensors allows integration between the robot and the operator, which leads to an increase in the possible tasks performed by the robot.

Although this technology is mainly used to perform very simple repetitive actions, such as on a production line, leading shipyards have introduced this technology into their production systems, dramatically increasing the scale and speed of production. In addition, new advances have been made in developing robots for specific shipbuilding tasks such as inspecting pipes or cleaning hulls.

Virtual and Augmented Reality (VR/AR)

On the one hand, virtual reality implies the complete immersion of a person in the virtual world using a special device connected to simulation. In this virtual world, the user can interact with virtual elements in order to significantly train and improve their knowledge. It also applies to testing and validation of complex products.

On the other hand, augmented reality connects the real world with the virtual one with the help of a device, adding data from the virtual system (or digital twin) exactly where it is needed. This technology is useful not only in manufacturing processes but also in maintenance tasks. Augmented reality also offers applications for quality control, product and tool location, warehouse management, and support for the visualization of hidden areas, among others.

In the shipbuilding industry, both technologies are already being used in small training and part positioning applications.

Engines powered by LNG

The popularity of liquefied natural gas (LNG) as an alternative fuel for ships these days is evident due to its environmental friendliness. Therefore, the market for LNG-powered marine engines is in its infancy and prospects are also high.

LNG engines reduce CO2 emissions by 20-25% compared to diesel engines, NOX emissions are reduced by almost 92%, and SOX and particulate matter emissions are almost completely eliminated. Moreover, new generation marine engines are imperatively required to comply with IMO restrictions. These engines are one of the ways to optimize fuel consumption along with FOS (Fuel Optimization System)

Major marine engine designers – Mitsubishi, Wartsila, Rolls-Royce and MAN Diesel & Turbo – are engaged in the technological development of CNG engines.

In addition to being an environmentally friendly fuel, LNG is also cheaper than diesel fuel, which helps the vessel save significant amounts of money over time.

Laser Cladding Machine

One of their latest developments is a laser cladding machine used to clad steel or stainless steel piston rods for hydraulic cylinders. Laser technology provides greater precision but is more harmful to the environment.

With the ability to combine alloys, it is helping to investigate different types of liners that could lead the marine industry away from the current preferred ceramic coating for ships.

As this technology shortens the supply chain, provides a higher quality lining process and is more resistant to damage during transportation, it is a reliable solution that will provide benefits in the distant future.

Smart Ship Solution

The shipping industry is vulnerable to cyber attacks, as proven by a number of large companies and their vessels. It is important to understand that ships are also part of cyberspace, which means that security measures need to be taken not only ashore, but also integrated into the ship’s onboard architecture.

Smart ship solution uses real-time data from various sensors (on hull, equipment, boats, etc.), as well as managers on land to improve the efficiency of the vessel. The engineers of this system are aware that this transfer of data between the ship and the shore carries a cybersecurity risk.

But at the same time, the correct use of sensors and their compliance with cybersecurity requirements will make the Smart Ship solution a safe choice for all shipping professionals concerned with cybersecurity. This means that the technology could be the beginning of a new generation of ships.

Fuel Optimization System

Such a system allows monitoring the vessel’s performance and fuel consumption, offering recommendations for optimizing fuel costs and reducing harmful emissions into the environment by up to 12%. The fuel optimization system can be installed at the stage of shipbuilding, this will allow the production of more competitive ships, which will initially consume less fuel and emit less harmful (greenhouse gases, sulfur, etc.) emissions. Reducing fuel consumption and harmful emissions by up to 12% is achieved through a more accurate and optimal connection between it and all other sensors on the ship, so that the data transfer meets all cybersecurity standards and recommendations. The installation of this system is possible on ships that are already at sea. For example, Marine Digital FOS is a faster and more economical solution to reduce emissions and save fuel compared to engines using natural liquefied gas for shipping companies whose fleet is older than 10 or even 15 years. Read more about green technologies in maritime industry and shipping in the article about green ship.

Source: marine-digital

Digitalization is already changing the operations and strategies of shipping companies. First of all, the digitalization of shipping generates new business logic and new business models to create economic and social value. A wide range of decision support systems to optimize shipping operations, information systems for logistic support of ports and tools for policymakers are the legacy of modern digitalization of shipping.

Many orthogonal or interconnected technologies such as A.I. blockchain algorithms and platforms are creating a variety of digital solutions, such as digital assistants for transportation professionals or secure, decentralized cargo tracking processes. Digital technologies and solutions for shipping are also intertwined with related technologies and supply chain solutions.

A digital business strategy is coherently and consistently articulated along with simple “tactical and operational” goals to reduce costs, improve processes, or improve operational efficiency, as well as goals to interact with suppliers and customers, understand and support decision making. Streams of business model research and digital innovation have enriched the debate with new corners of value creation and digital value propositions, and data monetization.

Driver design is used to solve digital strategy. Drivers are understood as perceived or anticipated business benefits arising from digital delivery operations, intelligent delivery systems, or new business models such as blockchain-enabled smart contracts and open Internet courts for data exchange and delivery services.

In addition, the concept of value creation and digital business models are used; in particular, how the concept of value creation resonates and is implemented in the context of digital strategy in shipping, how it is understood by practitioners and to what extent it is a utilitarian, practice-oriented construct that allows for the actualization of digitization initiatives.

Digitalization can improve cost efficiency. For example, using FOS (Fuel Optimization System) to reduce fuel consumption and vessel performance monitoring. Or using Machine Learning algorithms to predict maintenance.

Instructions

Regulatory standards, industry associations and related industry institutions play a huge role in setting different rules, business and technical standards and optimizations, acting like external partner

Process improvements

All current business processes can be improved using technologies in case of safety, customer attraction, speed up processes and so on

Data Monetization

New business models can be created from datafication. All historical and real-time data can be used by third parties in their projects or on a daily basis.

Digital thinking is emerging to complement the traditional strategic orientations of existing shipping companies. Traditional shipping companies coordinate their business activities using a combination of incremental and radical digital business models, in which digital assets are the main strategic resource, together with traditional (analog) shipping business models. Strategic embeddedness and digital leadership are the defining factors of digitalization.

Digital governance is the result of a balanced portfolio strategy. The scale of digital transformation, options for repurposing the business model and “exploring the boundaries”, as well as the logic of prioritizing short-term improvements over paradigmatic digital projects and the possibilities of implementing their strategies (eg partnerships, creating new sites) entail different (often competing) business logic and innovation modes (exploration-exploitation).

Ability to leverage resources for ships / fleets with autonomous functions built into cyber-physical systems with IoT support, innovative artificial intelligence. business software or blockchain applications are intentionally planned and materialized in different orders and rhythms. Technology alliances and joint ventures are the primary forms of interorganizational collaboration used to address the uncertainties, knowledge dispersion, and resource complementarities inherent in digital transformation activities.

In Marine Digital we are solving every problem that may occur during vessel performance monitoring. This includes not only data gathering from different vessels, but also processing and interpretation of the received data, creation of convenient reports, delivery of charts to the vessel’s navigation system (ECDIS), as well as recommendations for the best route according to weather, fuel consumption and other data.

Source: marine-digital

ENISA has published the first EU report ever on cyber security challenges in the Maritime Sector. This principal analysis highlights essential key insights, as well as existing initiatives, as a baseline for cyber security.

The high-level recommendations are given for addressing these risks, Cyber threats are a growing menace, spreading to all industry sectors that relying on ICT systems. Recent deliberate disruptions of critical automation systems, such as Stuxnet, prove that cyber-attacks have a significant impact on critical infrastructures. Disruption of these ICT capabilities may have disastrous consequences for the EU Member States’ governments and social wellbeing. The need to ensure ICT robustness against cyber-attacks is thus a key challenge at national and pan-European level.

Some key findings of the report

Maritime cyber security awareness is currently low, to non-existent. Member States are thus highly recommended to undertake targeted maritime sector awareness raising campaigns and cyber security training of shipping companies, port authorities, national cyber security offices, etc.
Due to the high ICT complexity, it is major challenge to ensure adequate maritime cyber security. A common strategy and development of good practices for the technology development and implementation of ICT systems would therefore ensure “security by design” for all critical maritime ICT components.
As current maritime regulations and policies consider only physical aspects of security and safety, policy makers should add cyber security aspects to them.
We strongly recommend a holistic, risk-based approach; assessment of maritime specific cyber risks, as well as identification of all critical assets within this sector.
As maritime governance is fragmented between different levels (i.e. international, European, national), the International Maritime Organisation together with the EU Commission and the Member Statesn should align international and EU policies in this sector.
Better information exchange and statistics on cyber security can help insurers to improve their actuarial models, reduce own risks, and thus offering better contractual insurance conditions for the maritime
sector. Information exchange platforms, such as CPNI.NL, should be also considered and by Member States to better communications.

Source: enisa.europa

Namely, the top priority in the following year would be the implementation of cyber security measures as vessels are more and more connected and further integrated into corporate IT networks.

In addition, in the new year, shipping companies will assess their risk exposure and develop measures to include in their Safety Management Systems to mitigate cyber threats. The owners are called to not only to be in line with IMO’s regulations, -coming into force in January 2021- but to also ensure their assets, IT and operational technology is protected from rising cyber threats.

Year 2020 will bring many changes in the spotlight of the shipping industry, highlighted by IMO’s Sub-Committee on Navigation, Communications and Search and Rescue (NCSR) meetings on 13-24 January to discuss progress on modernising the Global Maritime Distress and Safety System (GMDSS) and performance standards for navigational and communication equipment.

The meeting will focus on improving Inmarsat’s GMDSS services and will continue with the implementation of IMO’s e-navigation strategy. The sub-committee will discuss the feedback from joint working groups on harmonising aeronautical and maritime search and rescue, and from International Telecommunications Union’s group on maritime radio-communications matters.

2020 will also focus on developing regulations about testing and operating maritime autonomous surface ships (MASS).

One of the first tests for MASS will come in September 2020 when Mayflower Autonomous Ship attempts the world’s first unmanned transatlantic crossing from the UK to Plymouth in the US.

Source: safety4sea

Newer Posts

Older Posts