This is the mobile-friendly web version of the original article.

Cyber security training strategy - dealing with maritime SCADA risks

World Maritime University

The Maritime Commons: Digital Repository of the World Maritime University

Conference Proceedings

2021

Dimitrios Dalaklis

World Maritime University

Nikitas Nikitakos

University of the Aegean

Razali Yaacob

Netherland Maritime Institute of Technology

Video: World Maritime University At a Glance

Recommended Citation Dalaklis, D., Nikitakos, N. & Yaacob, R. (2021). Cyber security training strategy: dealing with maritime SCADA risks. In Pazaver, A., Manuel, M. E., Bolmsten, J., Kitada, M., Bartuseviciene, I. (Eds.), Proceedings of the International Maritime Lecturers’ Association. Seas of transition: setting a course for the future (pp. 53-61). World Maritime University. http://dx.doi.org/10.21677/imla2021.05

This Paper is brought to you courtesy of Maritime Commons. Open Access items may be downloaded for noncommercial, fair use academic purposes. No items may be hosted on another server or web site without express written permission from the World Maritime University. For more information, please contact [email protected].

1. Cyber security training strategy - dealing with maritime SCADA risks

Abstract: Control systems on board ships collect sensor measurements and data from various operational activities and display all the relevant information; they also facilitate relaying of control commands to local or remote equipment. Distributed control systems (DCS) are typically used within a single process or generating plant; supervisory control and data acquisition (SCADA) systems are used for larger-scale environments. The SCADA system communications infrastructure tends to be slower and less reliable, and so the remote terminal unit in a SCADA system has local control schemes to handle that eventuality. Security in general and cyber security specifically were not the major concerns of early standalone maritime SCADA systems. Security was primarily achieved by controlling physical access to system components, which were unique and used proprietary communication protocols. For years, security in SCADA systems was viewed as just an implication of safety. Over the last decade, however, the situation has changed, and numerous standards/directives dealing with the cyber security of SCADA systems have emerged. Characteristics of maritime SCADA cyber security are discussed; related training needs are identified next. The pedagogical approaches are also presented in order to train seafarers in risk assessment, prevention and mitigation strategies related with maritime SCADA cyber security risks.

Keywords: Cyber Security; Training Needs; Maritime Supervisory Control and Data Acquisition (SCADA) Systems.