Monthly Archives: May 2020

© Sikov / Adobe Stock

DNV GL Delivers Offshore Cyber Security Assessment Remotely

Category : News Center

The widescale impact of COVID-19 had not hit when DNV GL Maritime Advisory (DNV GL) was contracted to conduct a cyber security assessment and penetration test for an offshore asset. Before long, however, travel had become a risk, and the parties were forced to evaluate alternative means of performing the related surveys, which resulted in the completion of DNV GL’s first remote cyber security test.

Cyber security assessments and penetration testing involve the examination of an asset’s systems to find weaknesses in the network’s perimeter. Traditionally, testing involves a DNV GL Certified Ethical Hacker carrying out a series of activities aboard the asset, simulating a cybersecurity breach. With no option in the near-term to access the asset physically, DNV GL and the client worked together to define an extensive plan that would allow the assessment and the penetration testing to take place remotely. The plan involved DNV GL staff from Maritime and Digital Solutions in offices across three different countries, as well as personnel from client both in an office setting and on the asset. Each party was responsible for tasks related to the set-up of the test infrastructure, or aspects of the assessment itself.

As technology becomes more sophisticated and critical equipment becomes more interconnected, companies need to make changes that will increase their cyber defenses and the ISM Code has become another driver for this. With the requirements from IMO, ship owners and managers need to have cyber risk management incorporated into their Safety Management System (SMS) and verified at 1st Annual audit after January 1, 2021. By bridging the cyber security in information technology and operational technology critical infrastructures, DNV GL Maritime Advisory can help companies navigate their digital transformation with services that help in assessing, improving and verifying cyber security related to the increased use of technologies in our industry.

“Our world is becoming increasingly interconnected; that statement is applicable on so many fronts at this moment in history,” said Antony DSouza, Executive Vice President and Regional Manager for DNV GL Maritime Region Americas. “With the global transformations taking place, there is no company that should think cybersecurity is irrelevant to them. With trust, cooperation, and out of the box thinking, we can support our clients in these challenging times and work together towards a successful future.”


SevenCs

SevenCs Releases ORCA Pilot X Software

Category : News Center

SevenCs, part of the ChartWorld Group, announced the release of ORCA Pilot X software. 

Originally designed as a primary navigation aid for Pilots, ORCA Pilot X is a tool for professional navigators. ORCA Pilot X is being offered as a free download on the Apple AppStore for iOS tablets.

SevenCs has a long tradition of developing bespoke navigation applications for pilots around the world. Following the feedback and input from many  users, SevenCs began the development of ORCA Pilot X as the natural evolution from ORCA Pilot G2.

Ralf Lehnert, SevenCs’ Director of Navigation Solutions commented, “Time and time again we were told there was a need for a completely fresh approach and redesign of the digital navigation aids to meet the ever-expanding professional needs of the Pilot community. We had a look at what was on the market, balanced that against what could be developed, and realized there was an opportunity to provide a system that included the best hardware and software, delivered a unique 3D Head-Up situational awareness mode, rapid installation of official ENCs and chart updates, bathymetric data, route planning, navigation, and docking modes.

ORCA Pilot X is available for free download on the Apple Store for iOS tablets.


CYSEC SA Wins Maritime Cyber Security Contract

Category : News Center

CYSEC SA, a cybersecurity company from Switzerland, has been awarded a contract by the European Space Agency (ESA) to develop a solution mitigating the cyber risks related to ship tracking using satellite communications.

The digital revolution also impacts the shipping industry by integrating automated navigation, cargo-tracking systems and digital platforms which facilitate operations, trade and the exchange of data. To achieve this transformation, the mitigation of cyber security risks is critical.

There are vulnerabilities in many existing maritime communication systems that could lead to dramatic consequences when under a cyber-attack. In particular, the Global Navigation Satellite System (GNSS) provided by multiple satellite constellations has been the subject of spoofing and jamming attacks that led to a partial or total loss of the ability to locate ships at sea. Such a failure can be disastrous if the ship is, for example, navigating narrow straits or near the shore. Another critical piece of equipment on board is the Automatic Identification System (AIS), which tracks every ship in the world and whose data is used by numerous organizations and downstream services such as insurance companies. Ships have used multiple techniques to tamper with AIS data and entered zones from which they are legally excluded, for fishing or performing other illegal activities.

Both GNSS and AIS signals use satellites and are regarded as critical to improve the safety of maritime navigation and the reliability of data for downstream services. Using its family of secured servers and its experience in satellite communications, CYSEC SA will lead a feasibility study to investigate the protection of both GNSS and Satellite-AIS (SAT-AIS) communications.

CYSEC SA has established a consortium to develop and test the potential solutions composed of U-blox, a global provider of leading positioning and wireless communication technologies for the automotive, industrial, and consumer markets; and Gomspace, a globally leading designer, integrator and manufacturer of high-end nanosatellites for customers in the academic, government and commercial markets. The team will work under the guidance of both ESA and European maritime stakeholders.

CYSEC’s objective of securing maritime communications is a natural extension of its current activities in IoT and Space, where its flagship product ARCA is already used to protect communications to satellites and connected devices on ground.