Integrating and Validating Maritime Transport Security Services: Initial results from the CS4EU demonstrator

Grigoriadis, Christos; Kotzanikolaou, Panayiotis; Douligeris, Christos; Dionysiou, Antreas; Αθανασόπουλος, Ηλίας; Bernsmed, Karin; Meland, Per Håkon; Kamm, Liina

doi:10.1145/3474124.3474213

Cited by 3 publications

(10 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The authors surveyed the vessel cybersecurity management system consisting of several defense layers including, physical access, patching, access control, and others. Grigoriadis et al [26] proposed a group of defenses for improving the cybersecurity of ports including vulnerability assessment, communication authenticity, weak password protection, and binary protection. Kavallieratos et al [27] leveraged the STRIDE and DREAD risk analysis techniques to assess cyber risks in cyber-enabled ships, which include autonomous and remotely controlled ships.…”

Section: Maritime Cyber Risk Managementmentioning

confidence: 99%

“…Surveys through checklists and questionnaires are the most common method. Surveys focus on aspects including market research; quality and cost of controls [54], stakeholder engagement [26], usability and quality of risk assessment frameworks [80,81], existence, revision and awareness of controls [25]. Risk evaluation including risk and residual risk estimation and assessment is usually combined with another approach such as assessing the risks in scenarios using a game-based approach [82] or through questionnaires [54,81].…”

Section: Evaluation Approachesmentioning

confidence: 99%

“…Some works evaluate the performance of target systems to assess their security or the impact of security controls on their operation. This is observed to be achieved through emulating the behavior of adversaries (i.e., adversary emulation) [66,83] or testing the functionality of a specific functional unit (i.e., unit testing) [26,82,84,85]. Other works target the exiting vulnerabilities in the system as an indicator of the efficiency of its security posture [25,86].…”

Section: Evaluation Approachesmentioning

confidence: 99%

“…Other model-based approaches tend to be theoretical with the capacity for simulation [54,55]. On the other hand, in more advanced system development phases, approaches tend to consider more realistic settings reaching the ability to evaluate the real target system [25,26] and on some occasions simulating certain elements in the environment [89,90]. Additionally, some works address the software source code, middleware and hosting operating system for evaluating its security [82,84,85].…”

Section: Evaluation Approachesmentioning

confidence: 99%

“…However, the existing controls weren't sufficient for addressing critical to medium risks. [88] Number of vulnerabilities over time [88] Control [25,26,54,55,85,87,89,90] Flatness, successful logins [26] Control and host system [55,66,82,83] Defense strategy and risk level [55,82,89] Will the controls work [26,90] How does the controls work [87] How experience affects the control [87] Level of confidentiality, integrity, and availability [90] Detection quality [90] Accuracy, precession, recall, F1-score [85] Deterrence [54] Can attacks be mitigated [83] Real time defense [54] Restoration [54] Existence of controls Controls [25] Incident handling and reporting [25] Controls awareness…”

Section: Risk Evaluationmentioning

confidence: 99%

See 4 more Smart Citations

Cyber risk management for autonomous passenger ships using threat-informed defense-in-depth

Amro

Gkioulos

2022

Int. J. Inf. Secur.

View full text Add to dashboard Cite

Recent innovations in the smart city domain have led to the proposition of a new mode of transportation utilizing Autonomous Passenger Ships (APS) or ferries in inland waterways. The novelty of the APS concept influenced the cyber risk paradigm and led to different considerations regarding attack objectives, techniques as well as risk management approaches. The main factor that has led to this is the autoremote operational mode, which refers to autonomous operations and remote supervision and control in case of emergency. The autoremote operational mode influences the risk of cyber attacks due to the increased connectivity and reliance on technology for automating navigational functions. On the other hand, the presence of passengers without crew members imposes a safety risk factor in cyber attacks. In this paper, we propose a new cyber risk management approach for managing the cyber risks against cyber physical systems in general and Autonomous Passenger Ships in particular. Our proposed approach aims to improve the Defense-in-Depth risk management strategy with additional components from the Threat-Informed Defense strategy allowing for more evolved cyber risk management capabilities. Moreover, we have utilized the proposed cyber risk management approach for the proposition of a cybersecurity architecture for managing the cyber risks against an APS use case named milliAmpere2. Additionally, we present our results after conducting a Systematic Literature Review (SLR) in cybersecurity evaluation in the maritime domain. Then, the findings of the SLR were utilized for a suitable evaluation of the proposed risk management approach. Our findings suggest that our proposed risk management approach named Threat-Informed Defense-in-Depth is capable of enriching several risk management activities across different stages in the system development life cycle. Additionally, a comprehensive evaluation of the cybersecurity posture of milliAmpere2 has been conducted using several approaches including risk evaluation, simulation, checklist, and adversary emulation. Our evaluation has uncovered several limitations in the current cybersecurity posture and proposed actions for improvement.

show abstract

Section: Maritime Cyber Risk Managementmentioning

confidence: 99%

Section: Evaluation Approachesmentioning

confidence: 99%

Section: Evaluation Approachesmentioning

confidence: 99%

Section: Evaluation Approachesmentioning

confidence: 99%

Section: Risk Evaluationmentioning

confidence: 99%

See 3 more Smart Citations

Cyber risk management for autonomous passenger ships using threat-informed defense-in-depth

Amro

Gkioulos

2022

Int. J. Inf. Secur.

View full text Add to dashboard Cite

show abstract

Evaluation of a Cyber Risk Assessment Approach for Cyber-Physical Systems: Maritime and Energy Use Cases

Amro¹,

Gkioulos²

2023

Preprint

View full text Add to dashboard Cite

In various domains such as energy, manufacturing, and maritime, cyber-physical systems (CPS) have seen increased interest. Both academia and industry have focused on the cybersecurity aspects of such systems. The assessment of cyber risks in CPS is a popular research area with many existing approaches that aim to suggest relevant methods and practices. However, few works have addressed the extensive and objective evaluation of the proposed approaches. In this paper, a standard-aligned evaluation methodology is presented and empirically conducted to evaluate a newly proposed cyber risk assessment approach for CPS. The approach, which is called FMECA-ATT&CK is based on Failure Mode, Effects & Criticality Analysis (FMECA) risk assessment process and enriched with the semantics and encoded knowledge in the Adversarial Tactics, Techniques, and Common Knowledge framework (ATT&CK). Several experts were involved in conducting two risk assessment processes, FMECA-ATT\&CK and Bow-Tie, against two use cases in different application domains, particularly an autonomous passenger ship (APS) as a maritime use case and a digital substation as an energy use case. This allows for the evaluation of the approach based on a group of characteristics, namely, applicability, feasibility, accuracy, comprehensiveness, adaptability, scalability, and usability. The results highlight the positive utility of FMECA-ATT&CK in model-based, design-level, and component-level cyber risk assessment of CPS with several identified directions for improvements. Moreover, the standard-aligned evaluation method and the evaluation characteristics have been demonstrated as enablers for the thorough evaluation of cyber risk assessment methods.

show abstract

Evaluation of a Cyber Risk Assessment Approach for Cyber–Physical Systems: Maritime- and Energy-Use Cases

Amro

Gkioulos

2023

JMSE

View full text Add to dashboard Cite

In various domains such as energy, manufacturing, and maritime, cyber–physical systems (CPSs) have seen increased interest. Both academia and industry have focused on the cybersecurity aspects of such systems. The assessment of cyber risks in a CPS is a popular research area with many existing approaches that aim to suggest relevant methods and practices. However, few works have addressed the extensive and objective evaluation of the proposed approaches. In this paper, a standard-aligned evaluation methodology is presented and empirically conducted to evaluate a newly proposed cyber risk assessment approach for CPSs. The approach, which is called FMECA-ATT&CK is based on failure mode, effects and criticality analysis (FMECA) risk assessment process and enriched with the semantics and encoded knowledge in the Adversarial Tactics, Techniques, and Common Knowledge framework (ATT&CK). Several experts were involved in conducting two risk assessment processes, FMECA-ATT&CK and Bow-Tie, against two use cases in different application domains, particularly an autonomous passenger ship (APS) as a maritime-use case and a digital substation as an energy-use case. This allows for the evaluation of the approach based on a group of characteristics, namely, applicability, feasibility, accuracy, comprehensiveness, adaptability, scalability, and usability. The results highlight the positive utility of FMECA-ATT&CK in model-based, design-level, and component-level cyber risk assessment of CPSs with several identified directions for improvements. Moreover, the standard-aligned evaluation method and the evaluation characteristics have been demonstrated as enablers for the thorough evaluation of cyber risk assessment methods.

show abstract

Integrating and Validating Maritime Transport Security Services: Initial results from the CS4EU demonstrator

Cited by 3 publications

References 6 publications

Cyber risk management for autonomous passenger ships using threat-informed defense-in-depth

Cyber risk management for autonomous passenger ships using threat-informed defense-in-depth

Evaluation of a Cyber Risk Assessment Approach for Cyber-Physical Systems: Maritime and Energy Use Cases

Evaluation of a Cyber Risk Assessment Approach for Cyber–Physical Systems: Maritime- and Energy-Use Cases

Contact Info

Product

Resources

About