maritime cyber security
play

Maritime cyber security Jakob P. Larsen, Head of Maritime Security - PowerPoint PPT Presentation

Apr 05, 2024 •242 likes •355 views

Maritime cyber security Jakob P. Larsen, Head of Maritime Security jpl@bimco.org 2019 ReCAAP ISC Piracy and Sea Robbery Conference Agenda The regulatory framework Shipping industry guidance Cyber incident examples from real life

  1. Maritime cyber security Jakob P. Larsen, Head of Maritime Security jpl@bimco.org 2019 ReCAAP ISC Piracy and Sea Robbery Conference

  2. Agenda • The regulatory framework • Shipping industry guidance • Cyber incident examples from real life

  3. Regulatory framework for cyber security • Ambiguity from IMO: • “…recommend a risk management approach to cyber risks that is resilient and evolves as a natural extension of existing safety and security management practices.” • “ENCOURAGES Administrations to ensure that cyber risks are appropriately addressed in safety management systems no later than the first annual verification of the company's Document of Compliance after 1 January 2021.”

  4. BIMCO, ICS and United States’ approach • Physical access to restricted areas should be managed under the ISPS Code (Ship Security Assessment and Ship Security Plan) • Other cyber risks should be managed under the ISM Code in the Safety Management System • This will facilitate  Up to date procedures,  Avoiding duplication,  Best possible level of cyber security,  Reduced cost to ship owners (avoiding frequent updates to SSP).

  5. Industry guidance for cyber security on board ships • Cyber security and safety management • Threat identification • Vulnerability identification • Risk assessment • Protection and detection measures • Contingency plans • How to respond and recover

  6. Virus in ECDIS delays ship’s departure • Technical problem • No paper charts on board • Maker’s technician called in • Virus discovered, isolated and ECDIS computers restored • Deleays cost hundreds of thousands USD

  7. Crash of integrated navigation bridge • Ship experienced failure of nearly all systems at sea, in dense traffic and reduced visibility • Ship had to navigate for two days using paper chart and a stand- alone radar to reach port • Maker’s technician had performed software updates of navigation software running on ship’s computer • Outdated operatingn system was unable to run the updated software, and crashed • Extensive cost was incurred

  8. Worm attack on maritime IT and OT • Onboard power management system connected to the internet • Company IT department discovered a dormant worm that could have activated when ship was connected to the internet • Worm believed to originate from maker’s service technician • Worm spread via USB to all servers and associated equipment • Worm was undiscovered for 875 days

  9. Main application server infected by ransomware • Ransomware infection on the main application server of a ship caused complete disruption of the IT infrastructure • Ransomware encrypted all essential files and data was lost • Poor password policy enabled attackers to log on via remote management services • The undocumented user was deactivated and stronger password policy was introduced

  10. Comments and questions

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Maritime Cyber Security Its definitely a VUCA* environment * Army War College

Maritime Cyber Security Its definitely a VUCA* environment * Army War College

Maritime Cyber Security Its definitely a VUCA* environment * Army War College 1990s Maritime Cyber Security Its definitely a VUCA environment Volatile Maritime Cyber Security Its definitely a VUCA environment

323 views • 13 slides
The Little-known Challenge of Maritime Cyber Security Joseph DiRenzo, US Coast Guard Dana

The Little-known Challenge of Maritime Cyber Security Joseph DiRenzo, US Coast Guard Dana

The Little-known Challenge of Maritime Cyber Security Joseph DiRenzo, US Coast Guard Dana Goward, Resilient Navigation and Timing Foundation Fred S. Roberts, CCICADA Center, Rutgers University 1 Hacking into a Ship A recent demonstration

1.23k views • 44 slides
Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework Reporting Objectives Executive Summary Information Assess Current Cyber Security Posture Measure Progress Toward Improvement Assess

634 views • 5 slides
9 th ARF ISM on Maritime Security International Maritime Organization Security and Safety

9 th ARF ISM on Maritime Security International Maritime Organization Security and Safety

9 th ARF ISM on Maritime Security International Maritime Organization Security and Safety Dave Edwards U.S. Coast Guard Chairman, International Civil Aviation Organization/International Maritime Organization Joint Working Group on SAR 1

299 views • 5 slides
Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial

Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial

ABB MINING USER CONFERENCE, MAY 02-05, 2017 Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial Automation Division Agenda Why worry about cyber security? ABBs approach to cyber security Cyber security

1.07k views • 39 slides
Threat and Challenges of the Maritime Industry The Vision of the Maritime Authorities of the

Threat and Challenges of the Maritime Industry The Vision of the Maritime Authorities of the

Threat and Challenges of the Maritime Industry The Vision of the Maritime Authorities of the Americas XI International Forum and Fair on Maritime Security Puerto Vallarta, Mexico September 4, 2017 Global Challenges to Maritime Security

887 views • 12 slides
UCP GROUP Maritime Security Services UCP GROUP ONE SOLUTION ONE PLATFORM ONE SECURITY SERVICE

UCP GROUP Maritime Security Services UCP GROUP ONE SOLUTION ONE PLATFORM ONE SECURITY SERVICE

UCP GROUP Maritime Security Services UCP GROUP ONE SOLUTION ONE PLATFORM ONE SECURITY SERVICE Maritime Security - Commercial Shipping Security - Cruise Liner Security - Super-Yacht Security Maritime Security Services UCP GROUP is a market

247 views • 22 slides
Web Security Cyber Security Lab Spring '10 04/15/10 Cyber Security Lab 1 Outline Web

Web Security Cyber Security Lab Spring '10 04/15/10 Cyber Security Lab 1 Outline Web

Web Security Cyber Security Lab Spring '10 04/15/10 Cyber Security Lab 1 Outline Web application weaknesses XSS AJAX weaknesses SQL Injection Attacks (Slides from Lars Olson)

588 views • 41 slides
Cyber Security Maintaining Your Identity on the Net Why Cyber Security? There are three

Cyber Security Maintaining Your Identity on the Net Why Cyber Security? There are three

Cyber Security Maintaining Your Identity on the Net Why Cyber Security? There are three points of failure in any secure network: Technology (hardware and software) Technology Support (ITS) End Users (USD students and employees)

359 views • 23 slides
CYBER SECURITY PROTECTING AGAINST CYBER FRAUD IN SCALEUP COMPANIES AND WHAT TO DO SHOULD THEY

CYBER SECURITY PROTECTING AGAINST CYBER FRAUD IN SCALEUP COMPANIES AND WHAT TO DO SHOULD THEY

CYBER SECURITY PROTECTING AGAINST CYBER FRAUD IN SCALEUP COMPANIES AND WHAT TO DO SHOULD THEY HAPPEN London June 2019 INTRODUCTION Cyber Security The activity or process, ability or capability, or state whereby information and

735 views • 24 slides
ICSS2015: International Cyber Security Strategy Congress: Cyber Security and Forensic Readiness* *

ICSS2015: International Cyber Security Strategy Congress: Cyber Security and Forensic Readiness* *

ICSS2015: International Cyber Security Strategy Congress: Cyber Security and Forensic Readiness* * Preliminary programme, subject to revision/update status 16 December 2014 4 February 2015 Day 1: Cyber Security Readiness Registration KU

306 views • 4 slides
Homeland Security Perspectives: Cyber Security Partnerships and Measurement Activities Bradford

Homeland Security Perspectives: Cyber Security Partnerships and Measurement Activities Bradford

16 Oct 2012 Homeland Security Perspectives: Cyber Security Partnerships and Measurement Activities Bradford Willke Cyber Security Advisor, MidAtlantic Region National Cyber Security Division (NCSD) Office of Cybersecurity and Communications

443 views • 20 slides
Cyber security Current challenges Ludovic M, septembre 2019 Cyber security ? Three triptychs !

Cyber security Current challenges Ludovic M, septembre 2019 Cyber security ? Three triptychs !

Cyber security Current challenges Ludovic M, septembre 2019 Cyber security ? Three triptychs ! 3 properties ... Confidentiality (including personal data) Integrity Availability 2 -Sminaire LIRIMA: Cyber security: current

876 views • 64 slides
Combined Maritime Forces An International Approach to Maritime Security Combined Maritime Forces

Combined Maritime Forces An International Approach to Maritime Security Combined Maritime Forces

Combined Maritime Forces An International Approach to Maritime Security Combined Maritime Forces Ready Together 1 The Importance of the Indian Ocean Combined Maritime Forces Ready Together 2 COMMANDERS VISION A global maritime

406 views • 28 slides
U.S. Coast Guard Americas Maritime First Responder Maritime Stewardship Maritime Safety

U.S. Coast Guard Americas Maritime First Responder Maritime Stewardship Maritime Safety

U.S. Coast Guard Americas Maritime First Responder Maritime Stewardship Maritime Safety Maritime Security 2 Commander in Chief US President Dept of Defense Dept of Homeland Security Dept of the Army Dept of the Air Force Dept of the

614 views • 22 slides
2018 Legislative Ag Chairs Summit Cyber Security Geoff Jenista, CISSP Cyber Security Advisor,

2018 Legislative Ag Chairs Summit Cyber Security Geoff Jenista, CISSP Cyber Security Advisor,

2018 Legislative Ag Chairs Summit Cyber Security Geoff Jenista, CISSP Cyber Security Advisor, Region VII Office of Cybersecurity and Communications (CS&C) National Protection and Programs Directorate (NPPD) FOUO / UNCLASS Cyber Security

333 views • 12 slides
When the Web Goes to Jail David Runge 2019-08-10 Contents Outline The Good Old Days Where We

When the Web Goes to Jail David Runge 2019-08-10 Contents Outline The Good Old Days Where We

When the Web Goes to Jail David Runge 2019-08-10 Contents Outline The Good Old Days Where We Want to Be How We Get There Where We Are Contact Who? Trusted User (2017)/ Developer (2019) Pro-audio, Python tools, web apps

411 views • 22 slides
9M 2019 Results Hanover November 12, 2019 Ticker: CON ADR-Ticker: CTTAY Twitter:

9M 2019 Results Hanover November 12, 2019 Ticker: CON ADR-Ticker: CTTAY Twitter:

9M 2019 Results Hanover November 12, 2019 Ticker: CON ADR-Ticker: CTTAY Twitter: @Continental_IR Wolfgang Schaefer CFO http://www.continental-ir.com Agenda 1 Current Market Situation 3 2 Corporation Highlights 6 3 Automotive

617 views • 48 slides
Uploading Adobe Presenter Presentation through FTP These step-by-step instructions will

Uploading Adobe Presenter Presentation through FTP These step-by-step instructions will

UTHSC Teaching and Learning Center Uploading Adobe Presenter Presentation through FTP These step-by-step instructions will demonstrate how to successfully upload your published Adobe Presenter Presentation to the web server through FTP. I. Once

72 views • 5 slides
Business Driven Technology Solutions Infosun Technologies (P) Ltd. Agenda Introduction

Business Driven Technology Solutions Infosun Technologies (P) Ltd. Agenda Introduction

Business Driven Technology Solutions Infosun Technologies (P) Ltd. Agenda Introduction Areas Of Expertise ITL technology Expertise Offshore Development ITL for Outsourcing Quick Facts How ITL Customers have

236 views • 21 slides
Vembu Service Provider Program Built for CSPs, MSPs, HSPs and other Solution / Service Providers

Vembu Service Provider Program Built for CSPs, MSPs, HSPs and other Solution / Service Providers

Vembu Service Provider Program Built for CSPs, MSPs, HSPs and other Solution / Service Providers VEMBU TECHNOLOGIES PARTNERS www.vembu.com Vembu Technologies Founded in 2002 Headquartered in Chennai 10+ Years of Experience 100+ Countries

943 views • 15 slides
Financial Update Q3 FY19 NYSE: CRM @Salesforce_ir Safe Harbor "Safe harbor"

Financial Update Q3 FY19 NYSE: CRM @Salesforce_ir Safe Harbor "Safe harbor"

Financial Update Q3 FY19 NYSE: CRM @Salesforce_ir Safe Harbor "Safe harbor" statement under the Private Securities Litigation Reform Act of 1995: This presentation contains forward-looking statements about our financial results,

356 views • 33 slides
2018-2019 IDD Waivers Renewal Children s Extensive S upport (CES ) Waiver Waiver Appendices

2018-2019 IDD Waivers Renewal Children s Extensive S upport (CES ) Waiver Waiver Appendices

9/ 6/ 2018 2018-2019 IDD Waivers Renewal Children s Extensive S upport (CES ) Waiver Waiver Appendices D, E,& F Presented by: Dennis Roy S ept-06 1 Our Mission Improving health care access and outcomes for the people we serve

539 views • 16 slides
Human Service Grant Application Workshop Fall 2019 Brittany Voll, Transit Program Manager

Human Service Grant Application Workshop Fall 2019 Brittany Voll, Transit Program Manager

Human Service Grant Application Workshop Fall 2019 Brittany Voll, Transit Program Manager Department of Rail and Public Transportation Agenda 1. Welcome and Introductions 2. FTA Section 5310 Program Overview 3. FTA 5310 Capital Program 4.

504 views • 38 slides

More recommend