Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

Maritime Cybersecurity: A Comprehensive Review

Meixuan Li, Jianying Zhou, Sudipta Chattopadhyay, Mark Goh

TL;DR

This survey provides an in-depth analysis of threats in key maritime systems, including AIS, GNSS, ECDIS, VDR, RADAR, VSAT, and GMDSS, while exploring real-world cyber incidents that have impacted the sector.

Abstract

The maritime industry stands at a critical juncture, where the imperative for technological advancement intersects with the pressing need for robust cybersecurity measures. Maritime cybersecurity refers to the protection of computer systems and digital assests within the maritime industry, as well as the broader network of interconnected components that make up the maritime ecosystem. In this survey, we aim to identify the significant domains of maritime cybersecurity and measure their effectiveness. We have provided an in-depth analysis of threats in key maritime systems, including AIS, GNSS, ECDIS, VDR, RADAR, VSAT, and GMDSS, while exploring real-world cyber incidents that have impacted the sector. A multi-dimensional taxonomy of maritime cyber attacks is presented, offering insights into threat actors, motivations, and impacts. We have also evaluated various security solutions, from integrated solutions to component specific solutions. Finally, we have shared open challenges and future solutions. In the supplementary section, we have presented definitions and vulnerabilities of vessel components that have discussed in this survey. By addressing all these critical issues with key interconnected aspects, this review aims to foster a more resilient maritime ecosystem.

Maritime Cybersecurity: A Comprehensive Review

TL;DR

This survey provides an in-depth analysis of threats in key maritime systems, including AIS, GNSS, ECDIS, VDR, RADAR, VSAT, and GMDSS, while exploring real-world cyber incidents that have impacted the sector.

Abstract

The maritime industry stands at a critical juncture, where the imperative for technological advancement intersects with the pressing need for robust cybersecurity measures. Maritime cybersecurity refers to the protection of computer systems and digital assests within the maritime industry, as well as the broader network of interconnected components that make up the maritime ecosystem. In this survey, we aim to identify the significant domains of maritime cybersecurity and measure their effectiveness. We have provided an in-depth analysis of threats in key maritime systems, including AIS, GNSS, ECDIS, VDR, RADAR, VSAT, and GMDSS, while exploring real-world cyber incidents that have impacted the sector. A multi-dimensional taxonomy of maritime cyber attacks is presented, offering insights into threat actors, motivations, and impacts. We have also evaluated various security solutions, from integrated solutions to component specific solutions. Finally, we have shared open challenges and future solutions. In the supplementary section, we have presented definitions and vulnerabilities of vessel components that have discussed in this survey. By addressing all these critical issues with key interconnected aspects, this review aims to foster a more resilient maritime ecosystem.
Paper Structure (45 sections, 6 figures, 5 tables)

This paper contains 45 sections, 6 figures, 5 tables.

Table of Contents

  1. Introduction
  2. Existing Work Comparisons
  3. Our Contributions
  4. Challenges in Maritime Cybersecurity
  5. Vessel Security
  6. Port Security
  7. Supply Chain Security
  8. Risk Assessment Method
  9. Regulatory Frameworks/Laws
  10. Human Factor
  11. Maritime Cyber Attacks
  12. Real-Life Maritime Incidents (Industry)
  13. Multi-dimensional Attack Taxonomy
  14. Evaluation of Incidents by 2014 - 2023
  15. Lesson Learned Summary
  16. ...and 30 more sections

Figures (6)

  • Figure 1: Illustration of a typical maritime shipboard IT/OT system that combines hardware and software to monitor and control physical devices in real time. The increasing interconnectivity of IT and OT systems have expanded the potential attack surface.
  • Figure 2: Structure of this study
  • Figure 3: Six challenges in maritime cybersecurity (a) and the connection between them (b)
  • Figure 4: Multi-dimensional Maritime Cyber Attack Taxonomy
  • Figure 5: The timeline of the significant maritime cyber attack incidents with color representations
  • ...and 1 more figures