SOLUTION 05

Maritime Cybersecurity

– Maritime Cybersecurity –

Maritime Cybersecurity
Our affiliate, Athena Dynamics Pte Ltd (ADPL) in Singapore, has organized a global specialized IT team (GHA/gha: Good Hackers Alliance) that can comprehensively implement cybersecurity measures for onboard network systems, from Identification → Defense → Detection → Response → Recovery, using remote access via satellite communication.

■Specific Cyberattack Methods

• Ransomware hijacking of ship management systems
• GPS spoofing to falsify location information (a type of cyberattack that misleads GPS location information by transmitting false GPS signals, disrupting ship routes or causing collisions)
• Theft of crew members’ personal information through phishing scams, etc.

Based on reported cases to date, the following onboard systems are the main targets of cyberattacks.
➣ IT (Information Technology) systems such as PCs for office work on ships
➣ OT (Operation Technology) systems such as navigation equipment, engine control devices, and cargo monitoring devices

We can remotely access and conduct Asset Discovery (asset survey) of vessels operated by ship management companies, in accordance with the IMO-mandated cybersecurity standard UR E26.

Furthermore, if you install cloud-based software (XDR agent) on the ship’s network from land, our Security Operation Center (SOC) can provide full support, from implementation to operation, maintenance, and 24/7/365 continuous monitoring.

There are two mandatory IACS requirements applicable to vessels whose construction contracts are signed on or after July 1, 2024 (for newly built vessels):

UR E26 “Cyber Resilience of Ships”
UR E27 “Cyber Resilience of Onboard Systems and Equipment”

– For newly built ships –

– For Existing Vessels –
The mandatory requirements of IACS UR E26/27 mentioned above do not apply to existing vessels. However, since cyber risks are the same, cybersecurity measures for the onboard network are necessary.
As a countermeasure, we propose a straightforward modification of the onboard network using the following procedure (3 steps + Site installation).

Overview of Onboard Network Modification Work:

Phase 1 – Network Asset Discovery

A Network Asset Discovery (onboard network asset survey) must be conducted, and the verification and evaluation report must be submitted to the relevant classification society using the specified form to obtain certification. We conduct this survey remotely using satellite communication lines and report the evaluation (this can be done even on a ship at sea).

* Process Management for Onboard Asset Surveys (Dashboard Example)

Phase 2 – Vulnerability Assessment and Penetration Testing (VAPT)

Onboard Network Configuration
Our IT staff will remotely access the onboard network to conduct Vulnerability Assessment and Penetration Testing (VAPT) of the ship’s network system.
We will also verify the weaknesses in the ship’s cybersecurity (for OT & IT) and conduct a system evaluation.

PHASE 3 – Improved Security Levels

Onboard Network System Modification and Installations
For OT network modifications, we propose the following two products:

1．USB Sanitization in Vessel – Advance

This device prevents viruses from being introduced via USB devices when manufacturer technicians install the latest data on OT equipment. (Numerous successful implementations on ocean-going vessels and Singaporean government ministries.)

2. USB Cleaning Kiosk – Basic

Basic detection and threat removal from USB

3．OT Protection via Uni-Direction Data Diode

This prevents the acquisition of confidential information via bidirectional communication (approved by IACS classification society).

Furthermore, the cyber status of operating vessels can be continuously monitored 24/7 from land (Operating Care Center). We promptly provide individual vessel cyber information to the Security Operation Centers (SOCs) of shipowners and ship management companies.

Cyber Health Dashboard accessible from the vessel, shore office, or shore Security Operation Center (SOC)

Maritime Cybersecurity