Cyber Security

Programme Topics:

Shipping and Internet of Things

The Internet of Things (IoT) is a phrase that explains the concept of physical devices being linked to the web, and each other. It is a computing technology that enables physical devices to exchange data. The physical devices can be objects, animals and digital machines given special identifiers, and the capacity to exchange information over the internet without human intervention. The use of it in modern logistics is gathering pace, as developers work around the clock to address fundamental challenges. On the other hand, the cloud (or more formally, cloud computing) is the ability to access personal or business data using the internet, rather than the computer’s physical hard drive. A perfect example of a cloud computing service is Google Drive. Cloud computing allows people to backup, synchronize, and store emails and data. Advances in cloud computing and Internet of Things (IoT) technologies have opened huge opportunities in the logistics industry, in ways never experienced before.

Introduction to Cyber security on board ships

Cyber security is seen as a high priority issue for those in the passenger ship industry but not for those carrying cargo/freight. The majority view among the shipowners/operators carrying cargo was that cyber security is an emerging issue but presently carries no or low level threat. Ships carrying cargo/freight are seen as outside the sphere of cyber-attack. The risk of external interference or takeover of a vessel is seen as remote. The biggest threats currently are ‘internal sabotage’ of systems, such as an employee or unsupervised vendor inserting a corrupted USB stick into a computer, data theft or an anonymous party somewhere in the world attempting to extort payments over the web. It was generally acknowledged that there is a ‘knowledge gap’ on cyber security in the maritime industry. Ship managers, in particular, saw an effective cyber security system as a useful marketing tool when promoting their services to ship owners for managing their ships.

Cyber Security Approach

The development, comprehension and awareness of key elements of cyber security and safety as per the cyber security guidelines are explained as shown below

Cyber Security and Safety Management

Cyber Security management mainly include techniques to protect the underlying Information Technology (IT), Operational Technology (OT) and data from various cyber crimes like illegal access, manipulation and interruption in the shipboard operations. Cyber Security should be efficiently addressed in all the levels of a shipping company, from senior management offshore to the shipboard personnel onboard.

Threats / Risk assessments

Tech Savvy criminals around the globe are exploiting cyber vulnerabilities to perpetrate a wide range of crimes from long standing physical ship-related dangers like piracy and smuggling to more recent financial-related frauds like the diversion of payments.

Risks posed by Technology

Over the past five decades, computer controls have been integrated into innumerable operational and business processes across diverse industries, including the shipping industry, resulting in considerable improvements in safety, accuracy and profitability. There is another side to the digital revolution, however. In the absence of appropriate protection and loss prevention measures, the increased reliance on technology for even the most basic operations can

Security recommendations

Develop guidelines for the use of email and safe custody of sensitive information. Consider who actually needs to be copied in to emails and who should have vessel itineraries. Also, where possible, avoid sending messages to third party “group email”