Search for an article

Select a plan

Choose a plan from below, subscribe, and get access to our exclusive articles!

Monthly plan

$
13
$
0
billed monthly

Yearly plan

$
100
$
0
billed yearly

All plans include

  • Donec sagittis elementum
  • Cras tempor massa
  • Mauris eget nulla ut
  • Maecenas nec mollis
  • Donec feugiat rhoncus
  • Sed tristique laoreet
  • Fusce luctus quis urna
  • In eu nulla vehicula
  • Duis eu luctus metus
  • Maecenas consectetur
  • Vivamus mauris purus
  • Aenean neque ipsum
Customize Consent Preferences

We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.

The cookies that are categorized as "Necessary" are stored on your browser as they are essential for enabling the basic functionalities of the site. ... 

Always Active

Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.

No cookies to display.

Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.

No cookies to display.

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.

No cookies to display.

Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.

No cookies to display.

Advertisement cookies are used to provide visitors with customized advertisements based on the pages you visited previously and to analyze the effectiveness of the ad campaigns.

No cookies to display.

HomeSecurity ArchitectureNew regulations proposed to improve cyber security in the maritime industry

New regulations proposed to improve cyber security in the maritime industry

Published on

spot_img

The maritime industry is on the cusp of significant changes as vessel operators may soon be facing new federal regulations to prevent cyber security attacks. The U.S. Coast Guard has proposed regulations that would establish minimum cybersecurity requirements for U.S.-flagged vessels and maritime facilities under the Maritime Transportation Security Act.

According to the recently published Notice of Proposed Rulemaking, vessel and facility operators would be mandated to conduct a cybersecurity assessment and develop a Coast Guard-approved cybersecurity plan that could be integrated into an existing security plan. This new plan would cover various areas of operation, including personnel training, drills and exercises, device and data security, reporting, and risk and supply chain management, all susceptible to cyber infiltrations.

The scope of the proposed rule includes offshore drilling units, cargo vessels, most passenger vessels, barges, towing vessels, and tankships. Each owner or operator would need to designate a qualified individual to develop and implement the cybersecurity plan. The primary goal of the proposed rule is to address current and emerging cybersecurity threats in the marine transportation system.

As the maritime industry evolves with the increased use of cyber-connected systems, the Coast Guard recognizes the necessity for changes to protect against potential cyberattacks. The agency acknowledges that while these systems enhance vessel and port facility operations, they also bring forth challenges in design, operations, safety, security, training, and workforce management. The increased reliance on information technology systems exposes the maritime domain to cyber threats that could disrupt operations of U.S. facilities and vessels.

The proposed regulations highlight the vulnerabilities posed by autonomous vessel technology, automated operational systems, and remotely operated machines. These technologies serve as prime targets for cyberattacks from various sources, including insider threats, criminal organizations, and nation-state actors. Concerns also arise regarding cyberattacks altering a vessel’s navigational system, which could lead to accidents or groundings, disrupt communications with ports, and impact national and global maritime commerce.

To counter these threats, the Coast Guard believes that implementing new cyber risk management measures outlined in the proposed rule would better equip the maritime industry to detect, respond to, and recover from cybersecurity breaches. Updating regulations to include minimum cybersecurity requirements is seen as a step towards strengthening security posture and increasing resilience against cyber threats.

Vessel owners and operators would be granted a 12-18 month period following the effective date of the final rule to determine the best approach to implement and comply with the new requirements. The Coast Guard is currently seeking input from the maritime industry on the proposed regulations until April 22 to ensure that all perspectives are considered.

Meanwhile, additional measures have been introduced to clarify reporting requirements for security breaches and suspicious activity within the maritime industry. A notice from the Coast Guard establishes guidelines for reporting cyber incidents, with owners or operators of vessels or facilities required to immediately report any actual or threatened cyber incidents to relevant authorities.

The proposed regulations and clarification on reporting requirements emphasize the growing importance of cybersecurity in the maritime industry and the need for proactive measures to safeguard against potential threats. By staying vigilant and implementing robust cybersecurity practices, vessel operators can ensure the safety and security of their operations in an increasingly digital environment.

Source link

Latest articles

Fraudulent Government Officials Utilize Remote Access Tools for Card Fraud

A recent discovery by security researchers has brought to light a highly intricate fraud...

Dutch hackers find weaknesses in SonicWall VPN server

Ethical hackers from Computest Security, a Dutch company, recently discovered a vulnerability in a...

Transcend Migration Accelerator enhances privacy strategies for organizations

Transcend, a leading provider of automated privacy management solutions, has introduced a new white-glove...

More like this

Fraudulent Government Officials Utilize Remote Access Tools for Card Fraud

A recent discovery by security researchers has brought to light a highly intricate fraud...

Dutch hackers find weaknesses in SonicWall VPN server

Ethical hackers from Computest Security, a Dutch company, recently discovered a vulnerability in a...