A novel cyber-risk assessment method for ship systems

Bolbot, Victor; Theotokatos, Gerasimos; Boulougouris, Evangelos; Vassalos, Dracos

doi:10.1016/j.ssci.2020.104908

Cited by 75 publications

(34 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…For cybersecurity related events, in addition to the accident/incidents type, events as confidentiality breach and operation disruption are used. Furthermore, different threat groups (cyberterrorists, cybercriminals, hacktivists, generic hackers, competitors, states) 9 are considered and guidewords, such as steal (targetting at confidentiality), destroy, switch off (targetting at availability), get control over, transfer, manipulate, falsify (targetting at integrity) are used to identify relevant cybersecurity hazardous scenarios. In this way, confidentially loss, integrity loss or/and unavailability due to cyberattacks constitute either hazards or causes to hazards and are located either in the centre or at the left side of the Bow-Tie diagram shown in Figure 3.…”

Section: Risk Assessment Process Overviewmentioning

confidence: 99%

“…2 The lack of statistical data for the autonomous and unmanned ships also impedes the quantitative estimation of the risks and the associated uncertainty. 9 Another challenge is associated with the identification of relevant testing scenarios for autonomous ships. At the same time, the ship operating phases considerably affect the severity of the potential hazardous scenarios.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A novel risk assessment process: Application to an autonomous inland waterways ship

Bolbot

Theotokatos

Wennersberg

et al. 2021

Proceedings of the Institution of Mechanical Engineers, Part O:

Self Cite

View full text Add to dashboard Cite

Effectively addressing safety, security and cyber-security challenges is quintessential for progressing the development of next generation maritime autonomous shipping. This study aims at developing a novel hybrid, semi-structured process for the hazardous scenarios identification and ranking. This method integrates the operational and functional hazard identification approaches, whilst considering the safety, security and cybersecurity hazards. This method is applied to comprehensively assess the safety of an autonomous inland waterways ship at a preliminary design phase. The hazardous scenarios are identified and ranked by a number of experts participating in a series of sessions. The identified hazards risk is estimated considering the frequency and severity indices, whereas their uncertainty is estimated by employing the standard deviations in these two indices among the experts ranking results. Epistemic uncertainty is also considered during ranking. Risk control measures are proposed to de-risk the critical hazards. The results reveal that the most critical hazards from the safety, security and cybersecurity perspectives pertain to the situation awareness, remote control and propulsion functions. Based on the derived results, design enhancements along with high-level testing scenarios for the investigated autonomous ship are also proposed.

show abstract

Section: Risk Assessment Process Overviewmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

A novel risk assessment process: Application to an autonomous inland waterways ship

Bolbot

Theotokatos

Wennersberg

et al. 2021

Proceedings of the Institution of Mechanical Engineers, Part O:

Self Cite

View full text Add to dashboard Cite

show abstract

“…During a discussion at the 2004 RSA Data Security Conference, the need for dedicated stream ciphers was questioned following the success of the AES. As an argument for the use of dedicated stream cipher designs, Shamir [27, page 1] identified two key areas in which dedicated stream ciphers could offer an advantage over block ciphers, namely: "(1) where exceptionally high throughput is required in software and (2) where exceptionally low resource consumption is required in hardware".…”

Section: Estream Portfoliomentioning

confidence: 99%

Secure and Efficient Transmission of Vision-Based Feedback Control Signals

Volden

Solnør

Petrović

et al. 2021

J Intell Robot Syst

View full text Add to dashboard Cite

An ever-increasing number of autonomous vehicles use bandwidth-greedy sensors such as cameras and LiDARs to sense and act to the world around us. Unfortunately, signal transmission in vehicles is vulnerable to passive and active cyber-physical attacks that may result in loss of intellectual property, or worse yet, the loss of control of a vehicle, potentially causing great harm. Therefore, it is important to investigate efficient cryptographic methods to secure signal transmission in such vehicles against outside threats. This study is motivated by the observation that previous publications have suggested legacy algorithms, which are either inefficient or insecure for vision-based signals. We show how stream ciphers and authenticated encryption can be applied to transfer sensor data securely and efficiently between computing devices suitable for distributed guidance, navigation, and control systems. We provide an efficient and flexible pipeline of cryptographic operations on image and point cloud data in the Robot Operating System (ROS). We also demonstrate how image data can be compressed to reduce the amount of data to be encrypted, transmitted, and decrypted. Experiments on embedded computers verify that modern software cryptographic algorithms perform very well on large sensor data. Hence, the introduction of such algorithms should enhance security without significantly compromising the overall performance.

show abstract

“…The present regulatory framework governs the safety and security of conventional ships and their onboard crew, but the crew will be moved from ship to shore through the use of remote and autonomous ship technology. This disruptive shift will lead to new ship designs (MUNIN 2013), new roles for the crew, new interactions with the crew (Bolbot et al 2019) and new management procedures and leadership schemes (Kim and Mallam 2020), as well as new cybersecurity hazards (Bolbot et al 2020). These are not explicitly addressed by the present maritime regulations (neither at IMO nor at inland waterway regulatory level), as the key regulatory instruments are based on the assumption that the crew is present on board ships.…”

Section: Introductionmentioning

confidence: 99%

Regulatory framework analysis for the unmanned inland waterway vessel

Nzengu

Faivre

Pauwelyn³

et al. 2021

WMU J Marit Affairs

Self Cite

View full text Add to dashboard Cite

Several research and innovation initiatives have been pursued worldwide for the development of autonomous and unmanned ships. However, these ships’ wider adoption is limited by the existing regulatory framework, which presently does not provide clear guidelines and requirements for the design and operation of autonomous ships. The aim of this study is to comprehensively analyse the existing maritime safety and security regulatory framework including the national and international regulations for designing, building, testing and operating the unmanned next-generation inland waterways (IWW) vessel considered in the AUTOSHIP project operating in the Flemish inland waters. This study initiates with the identification of the regulatory bodies controlling the operation and testing of the investigated vessel and then identifies barriers in regulations where amendments or new developments are required. Subsequently, a strategy for overcoming these barriers is proposed. The main regulatory gaps that are identified include the requirements for navigation, emergency and environment protection functions, where new definitions are required for unmanned ship operations (e.g. master, crew, remote control centre). Moreover, some of the regulations explicitly specify the existence of crew on the ships for navigation, emergency and environment protection functions. A three-phase strategy is proposed to overcome the current regulatory barriers.

show abstract

A novel cyber-risk assessment method for ship systems

Cited by 75 publications

References 23 publications

A novel risk assessment process: Application to an autonomous inland waterways ship

A novel risk assessment process: Application to an autonomous inland waterways ship

Secure and Efficient Transmission of Vision-Based Feedback Control Signals

Regulatory framework analysis for the unmanned inland waterway vessel

Contact Info

Product

Resources

About