Pomorstvo, Vol. 33 No. 2, 2019.
Izvorni znanstveni članak
https://doi.org/10.31217/p.33.2.7
Shipboard ECDIS Cyber Security: Third-Party Component Threats
Boris Svilicic
orcid.org/0000-0002-7280-9525
; Sveučilište u Rijeci, Pomorski fakultet, Rijeka, Hrvatska
Igor Rudan
; Sveučilište u Rijeci, Pomorski fakultet, Rijeka, Hrvatska
Vlado Frančić
; Sveučilište u Rijeci, Pomorski fakultet, Rijeka, Hrvatska
Mateo Doričić
; Sveučilište u Rijeci, Pomorski fakultet, Rijeka, Hrvatska
Sažetak
The Electronic Chart Display and Information System (ECDIS) plays a central role in safe navigation of ships. The ECDIS is basically a software package running on a general operating system that could be comprised of the third-party components. This paper presents an analysis of cyber security weaknesses of a shipboard ECDIS raising from the ECDIS software’s third-party components. The analysis is based on the cyber security testing of the shipboard ECDIS using an industry vulnerability scanner. Detected vulnerabilities are analysed regarding the protection measures implemented on the ship. The results suggest that even the type approved ECDIS system with maintained ECDIS software and the underlying operating system could be vulnerable due to weaknesses in the ECDIS software’s third-party components.
Ključne riječi
Navigation safety; ECDIS; Maritime cyber security; Cyber security testing; Third-party threat
Hrčak ID:
229306
URI
Datum izdavanja:
19.12.2019.
Posjeta: 2.252 *