Shipping Giants Back Standard to Stop Ship Cyber Attacks

Twitter
Facebook
LinkedIn
Email
Ship_Wheelhouse_Control_1280_800_84_s_c1

Major maritime organisations including BP Shipping, Maersk Line and Emarat Maritime are taking steps to combat containership system errors and cyber-attacks by developing a standard that would ensure software updates take place correctly.

Two international associations — BIMCO, a representative of shipowners, and Comité International Radio-Maritime (CIRM), an organisation involved in the development of the marine electronics industry, have sent a proposal to the International Maritime Organization (IMO) after a four-year period of collaboration industry leaders.

BIMCO has warned that the likelihood of severe incidents on ships, delays and costs to shipowners and cybersecurity problems will increase without a standard on software maintenance of shipboard equipment.

It has documented complete blackouts and malfunctions in radar and other related systems on ships due to unforeseen difficulties with a software update.

BIMCO and CIRM expect a work group to complete the standard in 2021 and want it to become an ISO-standard to make it “more robust”.

The IMO will consider the software maintenance standard for shipping at the NCSR-meeting in February 2018.

Pilot tests took place in 2017 and involved BIMCO, CIRM, BP Shipping, Emarat Maritime, Kongsberg, Furuno, Maersk Line, MAN Diesel & Turbo, Radio Holland, and Sperry Marine.

In total, more than 20 companies have taken part.

Cybersecurity practices will be debated at Port Technology's Container Terminal Automation Conference

Angus Frew, Secretary General and CEO at BIMCO, said: “We hope the entire industry will adopt these standards, to make ships safer, to prevent cybersecurity problems and to save money.

“The industry has been living in a world of hardware. But software has been integrated into most physical equipment on the vessels, and the systems and procedures to manage the software have not kept up with technical developments, and it creates problems.”

BIMCO said that it should increase the visibility of the software installed on board, ensure the effective planning of maintenance and communication between the different parties involved in supporting the software.

It demands that users have a complete list of what software versions are currently running on the ship's equipment, and ensures that all equipment can display the current software version.

This means that ships can also do a complete roll-back to an earlier software version, if an update goes wrong, which will enhance safety.

The proposed standard has an identification of the various roles involved in maintaining software — producer, system integrator, data provider, service and shipowner — a procedural flow for maintenance and an outline of the requirements and responsibilities of the five roles.

Frew added: “It is our hope that BIMCO members will use suppliers who use this standard and that the shipowners will adhere to it as well, for example, by ensuring that there is an updated software log on board.”

The standard is available on BIMCO's website

Read more: PTI has released its new edition of the journal, The Cyber Risk & Security Issue, in which the authors of over 30 technical papers will help you understand how to address the growing call for improved cybersecurity

Daily Email Newsletter

Sign up to our daily email newsletter to receive the latest news from Port Technology International.
FREE

Supplier Directory

Find out how to get listed

Webinar Series

Find out how to attend

Latest Stories

Cookie Policy. This website uses cookies to ensure you get the best experience on our website.