Systematic Cyber Threat Modeling for Maritime Operations: Attack Trees for Shipboard Systems

Systematic Cyber Threat Modeling for Maritime Operations: Attack Trees for Shipboard Systems

The increasing reliance on digital and automated systems in the maritime industry has introduced significant cybersecurity risks to ship operations. While prior research has examined cyber risk management, systematic modeling of attack scenarios remains limited. This study addresses this gap by empl...

Full description

Saved in:
Bibliographic Details
Main Authors: Omer F. Keskin, Karl Lubja, Hayretdin Bahsi, Unal Tatar
Format: Article
Language:English
Published: MDPI AG 2025-03-01
Series:Journal of Marine Science and Engineering
Subjects:
maritime cybersecurity
ship systems
cyber threats
attack trees
operational technology (OT)
threat modeling
Online Access:https://www.mdpi.com/2077-1312/13/4/645
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:The increasing reliance on digital and automated systems in the maritime industry has introduced significant cybersecurity risks to ship operations. While prior research has examined cyber risk management, systematic modeling of attack scenarios remains limited. This study addresses this gap by employing attack trees to systematically analyze potential cyberattack pathways against modern ships. Drawing insights from the literature and interviews with 10 experts, this research identifies key vulnerabilities in navigation, operational, and communication systems. The study outlines 20 attack scenarios across three primary objectives: crashing, capsizing, and immobilizing a ship. Expert validation emphasizes the real-world feasibility of these threats, with cyberattack scenarios involving crashing and immobilization deemed the most plausible, while capsizing was considered unlikely due to robust ship designs. The findings highlight the importance of strengthening network security, implementing redundancy measures, and enhancing crew training to mitigate cyber risks.in Expert feedback helped validate these insights, underscoring their relevance to real-world maritime operations. This research presents a systematic threat modeling framework that supports effective risk assessment and cybersecurity strategy development, offering a valuable contribution to the advancement of maritime cybersecurity practices.
ISSN:2077-1312

Similar Items