Enhancing security risk assessment towards smart maritime industry: a comprehensive analysis of candidate approaches

Ahmed Mohy Ibrahim, Mohamed Abdelfattah, Mohamed Mohasseb, Said Abdelkader

Abstract


Maritime security risk assessment forms the cornerstone of effective security measures for ships, ports, and port facilities. However, the current security risk assessment approaches lack adequate preparedness to align with the rapid technological advancements and transformations in the smart maritime industry. The main factor groups and parameters for those approaches have to be adapted, in order for the approaches to keep pace with the dynamic developments of potential technological threats.

 

This paper aims to examine points of strength and weakness in security risk approaches in the maritime industry, with a focus on the transition to a smart maritime industry. It scrutinizes recommended security risk assessment approaches outlined in security guidelines and published research, emphasizing challenges in their selection, by using a descriptive-analytical approach. It also explores their effect on the smart maritime industry when applied to ships such as maritime teleoperated vessels (MTVs), elucidating key concepts. A comparative analysis of selected approaches underscores structural characteristics and values. Finally, the study critically assesses transforming the maritime industry for improved security risk assessment practices for MTVs and their maritime teleoperation centers (MTCs). Findings highlight the necessity for a more comprehensive maritime security risk assessment approach.

 

Received: 14 February 2024

Accepted: 27 April 2024

Published: 05 May 2024


Keywords


Maritime Security, Risk Assessment, STPA/STPA-Sec, TRAM, RAMT

References


Abdelfattah, M., Elsayeh, M.E. and Abdelkader, S. (2022) ‘A proposed port security risk assessment approach, with application to a hypothetical port’, Australian Journal of Maritime and Ocean Affairs, 14(1). Available at: https://doi.org/10.1080/18366503.2021.1909206.

Afenyo, M. and Caesar, L.D. (2023) ‘Maritime cybersecurity threats: Gaps and directions for future research’, Ocean and Coastal Management. Available at: https://doi.org/10.1016/j.ocecoaman.2023.106493.

Amro, A. and Gkioulos, V. (2023) ‘Cyber risk management for autonomous passenger ships using threat-informed defense-in-depth’, International Journal of Information Security, 22(1). Available at: https://doi.org/10.1007/s10207-022-00638-y.

Bichou, K. (2009) ‘Security and Risk-based Models in Shipping and Ports: Review and Critical Analysis’, in. Available at: https://doi.org/10.1787/9789282102329-6-en.

Bueger, C. (2015) ‘What is maritime security?’, Marine Policy, 53. Available at: https://doi.org/10.1016/j.marpol.2014.12.005.

Bueger, C., Edmunds, T. and McCabe, R. (2020) ‘Into the sea: capacity-building innovations and the maritime security challenge’, Third World Quarterly, 41(2). Available at: https://doi.org/10.1080/01436597.2019.1660632.

Carreras Guzman, N.H. et al. (2021) ‘A Comparative Study of STPA-Extension and the UFoI-E Method for Safety and Security Co-analysis’, Reliability Engineering and System Safety, 211. Available at: https://doi.org/10.1016/j.ress.2021.107633.

Chaal, M. et al. (2020) ‘A framework to model the STPA hierarchical control structure of an autonomous ship’, Safety Science, 132. Available at: https://doi.org/10.1016/j.ssci.2020.104939.

Dekker, S. and Stevens, H. (2007) ‘Maritime security in the European Union - Empirical findings on financial implications for port facilities’, Maritime Policy and Management, 34(5). Available at: https://doi.org/10.1080/03088830701585274.

‘Engineering a safer world: systems thinking applied to safety’ (2012) Choice Reviews Online, 49(11). Available at: https://doi.org/10.5860/choice.49-6305.

Glomsrud, J.A. and Xie, J. (2020) ‘A structured STPA safety and security co-analysis Framework for autonomous ships’, in Proceedings of the 29th European Safety and Reliability Conference, ESREL 2019. Available at: https://doi.org/10.3850/978-981-11-2724-3_0105-cd.

González-Gutiérrez, A. et al. (2022) ‘The identification and analysis of risks for civilian ports adapted to military uses’, Ocean and Coastal Management, 227. Available at: https://doi.org/10.1016/j.ocecoaman.2022.106276.

Harkleroad, E., V.A.& K.J. (2013) Review of Systems-Theoretic Process Analysis (STPA) method and results to support NextGen concept assessment and validation. Washington.

Herbert-Burns, R., Bateman, S. and Lehr, P. (2008) Lloyd’s MIU Handbook of Maritime Security, Lloyd’s MIU Handbook of Maritime Security. Available at: https://doi.org/10.1201/9781420054811.

‘IAPH Cybersecurity Guidelines for Ports and Port Facilities’ (no date). Available at: https://sustainableworldports.org/wp-content/uploads/IAPH-Cybersecurity-Guidelines-version-1_0.pdf.

ILO/IMO (2004) Security in ports. Code of practice. Available at: https://www.ilo.org/global/publications/ilo-bookstore/order-online/books/WCMS_PUBL_9221152863_EN/lang–en/index.htm.

IMO. (2008). Non-Mandatory Guidelines on Security Aspects of The Operation of Vessels Which do Not Fall Within The Scope of Solas Chapter XI-2 and The ISPS Code [Online]. Available: https://wwwcdn.imo.org/localresources/en/OurWork/Security/Documents/MSC.1%20Circ.1283.pdf [Accessed 10 May 2023].

IMO. (2011). MEASURES TO ENHANCE MARITIME SECURITY - Maritime Security Manual - Guidance for port facilities, ports and ships MSC 89/INF.13 [Online]. Available: https://portalcip.org/wp-content/uploads/2019/07/Guide-to-Maritime-Security-and-the-ISPS-Code-2012.pdf [Accessed 2 MAY 2023].

IMO (2017a). Guidelines on Maritime Cyber Risk Management. International Maritime Organization London, UK.

IMO (2017b). Report of the Maritime Safety Committee on Its Ninety-Eighth Session. MSC 98/23.

IMO (2018a). " Regulatory Scoping Exercise for the use of Maritime Autonomous Surface Ships (MASS). MSC 99th session, MSC, 99.

IMO. (2021a). Guide to Maritime Security and the ISPS Code 2021 Edition [Online]. Available: https://www.imo.org/en/OurWork/Security/Pages/SOLAS-XI-2%20ISPS%20Code.aspx [Accessed 1 April 2023].

IMO. (2022). Maritime Safety Committee (MSC 106) for MASS code , 2-11 November 2022. MSC 106 adopted a new amendments to mandatory instruments for MASS Code [Online]. Available: https://www.imo.org/en/MediaCentre/MeetingSummaries/Pages/MSC-106.aspx [Accessed 1 February 2023].

IMO, M. (2018b). " Regulatory Scoping Exercise for the use of Maritime Autonomous Surface Ships (MASS). MSC 99th session, MSC, 99.

IMO, M. C. (2021b). Outcome of the Regulatory Scoping Exercise for the Use of Maritime Autonomous Surface Ships (MASS) (No. MSC.1/Circ.1638). IMO London, UK.

Khafendi, K. (2020) ‘Evaluasi Penerapan ISPS Code di Pelabuhan Bitung’, Jurnal Penelitian Transportasi Laut, 18(1). Available at: https://doi.org/10.25104/transla.v18i1.1397.

Leveson, N. (2019) ‘Improving the Standard Risk Matrix using STPA’, Journal of System Safety, 55(2). Available at: https://doi.org/10.56094/jss.v55i2.44.

Lim, G.J. et al. (2018) ‘Models and computational algorithms for maritime risk analysis: a review’, Annals of Operations Research, 271(2). Available at: https://doi.org/10.1007/s10479-018-2768-4.

‘Maritime Safety Committee (MSC 106), 2-11 November 2022’ (2022). Available at: https://www.imo.org/en/MediaCentre/MeetingSummaries/Pages/MSC-106.aspx.

McCartan, S. et al. (2018) ‘A modular search and surveillance ses platform to support port and harbour security in the future megacities of 2050’, in RINA, Royal Institution of Naval Architects - SURV 9 - Surveillance, Search and Rescue Craft, Papers.

Mukherjee, P.K. (2007) ‘The ISM Code and the ISPS Code: A critical legal analysis of two SOLAS regimes’, WMU Journal of Maritime Affairs, 6(2). Available at: https://doi.org/10.1007/BF03195110.

N. Leveson, J.T. (2018) ‘STPA_Handbook’, MIT, Cambridge [Preprint].

Rødseth, Ø.J. et al. (2023) ‘The Societal Impacts of Autonomous Ships: The Norwegian Perspective’, in. Available at: https://doi.org/10.1007/978-3-031-24740-8_18.

Romero Faz, D. and Camarero Orive, A. (2016) ‘Security assessment in harbours: parameters to be considered’, in. Available at: https://doi.org/10.4995/cit2016.2016.3181.

Romero-Faz, D. and Camarero-Orive, A. (2017) ‘Risk assessment of critical infrastructures – New parameters for commercial ports’, International Journal of Critical Infrastructure Protection, 18. Available at: https://doi.org/10.1016/j.ijcip.2017.07.001.

Romero-Faz, D.& C.-O.A. (2015) ‘New Indices of Risk Assessment for Security in Port Infrastructures’, International Journal of Engineering and Advanced Research Technology (IJEART) ISSN: 2454-9290, 1(5).

Ruddle, A., W.D., W.B., I.S., R.Y., F.M., L.T., F.A., G.S.& H.O. (no date) ‘Security requirements for automotive on-board networks based on dark-side scenarios’, EVITA project.

Sahay, R. et al. (2023) ‘A comparative risk analysis on CyberShip system with STPA-Sec, STRIDE and CORAS’, Computers and Security, 128. Available at: https://doi.org/10.1016/j.cose.2023.103179.

Smelikova, V. and Penza, I. (2023) ‘Implementation of the ISPS Code provisions in maritime English course for future navigators’, Australian Journal of Maritime and Ocean Affairs, 15(3). Available at: https://doi.org/10.1080/18366503.2022.2069073.

Stavrou, D.I., Ventikos, N.P. and Yang, Z.L. (2018) ‘Benchmarking container port security risks by applying a FIS methodology’, in International Journal of Shipping and Transport Logistics. Available at: https://doi.org/10.1504/ijstl.2018.10014638.

Sun, L., Li, Y.F. and Zio, E. (2022) ‘Comparison of the HAZOP, FMEA, FRAM, and STPA Methods for the Hazard Analysis of Automatic Emergency Brake Systems’, ASCE-ASME Journal of Risk and Uncertainty in Engineering Systems, Part B: Mechanical Engineering, 8(3). Available at: https://doi.org/10.1115/1.4051940.

Thieme, C.A., Utne, I.B. and Haugen, S. (2018) ‘Assessing ship risk model applicability to Marine Autonomous Surface Ships’, Ocean Engineering. Available at: https://doi.org/10.1016/j.oceaneng.2018.07.040.

Torkildson, E.N. et al. (2018) ‘Empirical studies of methods for safety and security co-analysis of autonomous boat’, in Safety and Reliability - Safe Societies in a Changing World - Proceedings of the 28th International European Safety and Reliability Conference, ESREL 2018. Available at: https://doi.org/10.1201/9781351174664-369.

Utne, I.B. et al. (2020) ‘Towards supervisory risk control of autonomous ships’, Reliability Engineering and System Safety, 196. Available at: https://doi.org/10.1016/j.ress.2019.106757.

Valdez Banda, O.A. and Goerlandt, F. (2018) ‘A STAMP-based approach for designing maritime safety management systems’, Safety Science, 109. Available at: https://doi.org/10.1016/j.ssci.2018.05.003.

Veitch, E. and Andreas Alsos, O. (2022) ‘A systematic review of human-AI interaction in autonomous ship systems’, Safety Science, 152. Available at: https://doi.org/10.1016/j.ssci.2022.105778.

Venus Lun, Y.H. et al. (2023) Shipping and Logistics Management, Shipping and Logistics Management. Available at: https://doi.org/10.1007/978-3-031-26090-2.

Wróbel, K., Montewka, J. and Kujala, P. (2018) ‘System-theoretic approach to safety of remotely-controlled merchant vessel’, Ocean Engineering, 152. Available at: https://doi.org/10.1016/j.oceaneng.2018.01.020.

Zhang, W., Zhang, Y. and Zhang, C. (2024) ‘Research on risk assessment of maritime autonomous surface ships based on catastrophe theory’, Reliability Engineering and System Safety, 244. Available at: https://doi.org/10.1016/j.ress.2024.109946.

Zhou, X.Y. et al. (2021) ‘A system-theoretic approach to safety and security co-analysis of autonomous ships’, Ocean Engineering, 222. Available at: https://doi.org/10.1016/j.oceaneng.2021.108569.




DOI: http://dx.doi.org/10.21622/MRT.2024.03.1.809

Refbacks

  • There are currently no refbacks.


Copyright (c) 2024 Ahmed Mohy Ibrahim, Mohamed Abdelfattah, Mohamed Mohasseb, Said Abdelkader

Maritime Research and Technology
E-ISSN: 2812-5622
P-ISSN: 2812-5614 

Published by:

Academy Publishing Center (APC)
Arab Academy for Science, Technology and Maritime Transport (AASTMT)
Alexandria, Egypt
mrt@aast.edu