Cyber attacks real time detection: towards a Cyber Situational Awareness for naval systems

Jacq, Olivier; Brosset, David; Kermarrec, Yvon; Simonin, Jacques

doi:10.1109/cybersa.2019.8899351

Cited by 23 publications

(13 citation statements)

References 3 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…In order to identify the potential cyber-risks from this embedded software, the recognition approaches can be grouped into scanning tools, online surveys, participators interviews, introducing threats and simulation, conception and elaboration method and attack graph generation, as well as the cyber-attack path discovery method (Balduzzi et al, 2014;Kalogeraki et al, 2018b;Lee and Wogan, 2018;Möller et al, 2018;Mouratidis and Diamantopoulou, 2018;Polatidis et al, 2018;Jacq et al, 2019a;Tam and Jones, 2019b). For example, we can use the industry-leading vulnerability scanning tool (i.e.…”

Section: Recognising Maritime Cyber-threatsmentioning

confidence: 99%

Literature review on maritime cybersecurity: state-of-the-art

Meng

Fang

et al. 2023

J. Navigation

View full text Add to dashboard Cite

Maritime cybersecurity has attracted increasing attention in industrial and academic scope, which may be relevant to the increasing cyber-incidents in the maritime shipping industry. This paper presents a critical review of publications related to cybersecurity in the maritime transportation industry, to explore the current research status and gaps, as wells as to guide new probe avenues by employing bibliometric approaches. With the advantage of bibliometric methods, the research focus and evolution are conformed and visualised. Representative papers are reviewed together to demonstrate maritime cyber-threats recognition and categories, as well as potential consequence assessment and risk mitigation actions recommendation. This paper also created a detailed database that is comprised of attack form, occurring time, targets, purpose, as well as potential results and cost, which has been included in the Appendix and is fully portable and extendible.

show abstract

Section: Recognising Maritime Cyber-threatsmentioning

confidence: 99%

Literature review on maritime cybersecurity: state-of-the-art

Meng

Fang

et al. 2023

J. Navigation

View full text Add to dashboard Cite

show abstract

“…Two main categories of IDS are observed in the literature, namely Host-based IDS (HIDS) and Network-based IDS (NIDS). Jacq et al [50] have discussed the concept of situational awareness in naval systems and indicated the challenge in the application of HIDS due to possible warranty disruptions. On the other hand, NIDS is a more suitable deployment option, as it can be added to the networks for monitoring NMEA traffic and detecting anomalies.…”

Section: Deployment Optionsmentioning

confidence: 99%

Navigation Data Anomaly Analysis and Detection

Amro¹,

Oruc²,

Gkioulos³

et al. 2022

Preprint

View full text Add to dashboard Cite

Several disruptive attacks against companies in the maritime industry have led experts to consider the increased risk imposed by cyber threats as a major obstacle to undergoing digitization. The industry is heading toward increased automation and connectivity, leading to reduced human involvement in the different navigational functions and increased reliance on sensor data and software for more autonomous modes of operations. To meet the objectives of increased automation under the threat of cyber attacks, the different software modules that are expected to be involved in different navigational functions need to be prepared to detect such attacks utilizing suitable detection techniques. Therefore, we propose a systematic approach for analyzing the navigational NMEA messages carrying the data of the different sensors, their possible anomalies, malicious causes of such anomalies as well as the appropriate detection algorithms. The proposed approach is evaluated through two use cases, traditional Integrated Navigation System (INS) and Autonomous Passenger Ship (APS). The results reflect the utility of specification and frequency-based detection in detecting the identified anomalies with high confidence. Also, the analysis is found to facilitate the communication of threats through indicating the possible impact of the identified anomalies against the navigational operations. Moreover, we have developed a testing environment that facilitates conducting the analysis. The environment includes a developed tool, NMEA−Manipulator that enables the invocation of the identified anomalies through a group of cyber attacks on sensor data. Our work paves the way for future work in the analysis of NMEA anomalies toward the development of an NMEA intrusion detection system.

show abstract

“…We believe cyber vulnerabilities could occur due to various duties discharged by the operational staff of IPPs hence, evaluating human behaviours in the power generation sector. These vulnerabilities can occur in any of the layers; physical layer, information layer, and the human layers in the CI [33]. Also see Appendix.…”

Section: E Cyber Situational Awarenessmentioning

confidence: 99%

Predicting Cyber-Attack using Cyber Situational Awareness: The Case of Independent Power Producers (IPPs)

Matey¹,

Danquah²,

Koi-Akrofi³

2022

IJACSA

View full text Add to dashboard Cite

The increasing critical dependencies on Internetof-Things (IoT) have raised security concerns; its application on the critical infrastructures (CIs) for power generation has come under massive cyber-attack over the years. Prior research efforts to understand cybersecurity from Cyber Situational Awareness (CSA) perspective fail to critically consider the various Cyber Situational Awareness (CSA) security vulnerabilities from a human behavioural perspective in line with the CI. This study evaluates CSA elements to predict cyber-attacks in the power generation sector. Data for this research article was collected from IPPs using the survey method. The analysis method was employed through Partial Least Squares Structural Equation Modeling (PLS-SEM) to assess the proposed model. The results revealed negative effects on people and cyber-attack, but significant in predicting cyber-attacks. The study also indicated that information handling is significant and positively influences cyber-attack. The study also reveals no mediation effect between the association of People and Attack and Information and Attack. It could result from an effective cyber security control implemented by the IPPs. Finally, the study also shows no sign of network infrastructure cyber-attack predictions. The reasons could be because managers of IPPs had adequate access policies and security measures in place.

show abstract

Cyber attacks real time detection: towards a Cyber Situational Awareness for naval systems

Cited by 23 publications

References 3 publications

Literature review on maritime cybersecurity: state-of-the-art

Literature review on maritime cybersecurity: state-of-the-art

Navigation Data Anomaly Analysis and Detection

Predicting Cyber-Attack using Cyber Situational Awareness: The Case of Independent Power Producers (IPPs)

Contact Info

Product

Resources

About