Risk Sensitivity Analysis of Ais Cyber Security Through Maritime Cyber Regulatory Frameworks
| dc.authorid | , Kimberly/0000-0003-2840-5715 | |
| dc.authorid | Soner, Omer/0000-0002-8100-7874 | |
| dc.authorscopusid | 56578498300 | |
| dc.authorscopusid | 57221682499 | |
| dc.authorscopusid | 55568241400 | |
| dc.authorscopusid | 57205543939 | |
| dc.authorwosid | Bolat, Pelin/F-8211-2013 | |
| dc.authorwosid | Kayişoğlu, Gizem/Abf-5625-2020 | |
| dc.authorwosid | Soner, Omer/Mvt-9898-2025 | |
| dc.authorwosid | Tam, Kimberly/I-9014-2019 | |
| dc.contributor.author | Soner, Omer | |
| dc.contributor.author | Kayisoglu, Gizem | |
| dc.contributor.author | Bolat, Pelin | |
| dc.contributor.author | Tam, Kimberly | |
| dc.date.accessioned | 2025-05-10T17:42:05Z | |
| dc.date.available | 2025-05-10T17:42:05Z | |
| dc.date.issued | 2024 | |
| dc.department | T.C. Van Yüzüncü Yıl Üniversitesi | en_US |
| dc.department-temp | [Soner, Omer] Van Yuzuncu Yil Univ, Dept Maritime Transportat Management Engn Maritime, TR-65080 Van, Turkiye; [Kayisoglu, Gizem] Istanbul Tech Univ, Dept Maritime Transportat Management Engn Maritime, TR-34940 Istanbul, Turkiye; [Bolat, Pelin] Istanbul Tech Univ, Dept Basic Sci, Maritime Fac, TR-34940 Istanbul, Turkiye; [Tam, Kimberly] Univ Plymouth, Sch Engn Comp & Math, Plymouth PL4 8AA, England | en_US |
| dc.description | Kimberly/0000-0003-2840-5715; Soner, Omer/0000-0002-8100-7874 | en_US |
| dc.description.abstract | Given the increasing frequency and sophistication of methods and strategies employed in cyberattacks, cyber resilience has become a basic notion of cyber risk management. To be cyber-resilient against cyber risks, shipping companies must be proactive in establishing and implementing actions, constructing effective strategies, and adopting mitigation methods to strengthen their assets. However, shipping companies have only lately tended to fully recognize the necessity for a cybersecurity perspective to enable effective cyber risk management and mitigation of increasing cyberattacks. Aside from deficiencies in system design, integration, or maintenance, human factors are the prime weakness that potentially jeopardizes the ship's cybersecurity by simply making intentional or unintentional errors, revealing critical information, or generating entry points for attackers. Therefore, the current study aims to conduct a quantitative human risk assessment based on the SOHRA method, which is integrated with the NIST cybersecurity framework, to provide ships with the ability to be cyber resilient, and respond to and recover from cyber-attacks. The AIS has been considered for the research application not only because it is one of the most vulnerable systems on board a ship, but also because modifying and breaching the AIS data might have disastrous outcomes. The study results clearly indicate that the most likely error related to AIS cybersecurity risk occurs in the tasks defined under the "protect", "respond", "detect", "identify", and "recover" functions. Accordingly, suitable control and preventative measures have been developed to guarantee high-level cyber security for AIS and to provide cyber resilience and the structure for constructive decision-making by integrating various international standards, which include system security requirements and security levels for industrial communication networks, specifically with the IACS and NIST framework for the AIS cyber security. | en_US |
| dc.description.sponsorship | Scientific and Technological Research Council of Turkey (TUEBITAK) [53325897-115.02-152823]; University of Plymouth, Cyber-SHIP Lab Research Team | en_US |
| dc.description.sponsorship | This study is partially funded by The Scientific and Technological Research Council of Turkey (TUEBITAK) -2214-A-International Research Fellowship Program for PhD Students [REF: 53325897-115.02-152823] . This study is also supported by University of Plymouth, Cyber-SHIP Lab Research Team. | en_US |
| dc.description.woscitationindex | Science Citation Index Expanded | |
| dc.identifier.doi | 10.1016/j.apor.2023.103855 | |
| dc.identifier.issn | 0141-1187 | |
| dc.identifier.issn | 1879-1549 | |
| dc.identifier.scopus | 2-s2.0-85180609207 | |
| dc.identifier.scopusquality | Q1 | |
| dc.identifier.uri | https://doi.org/10.1016/j.apor.2023.103855 | |
| dc.identifier.uri | https://hdl.handle.net/20.500.14720/15459 | |
| dc.identifier.volume | 142 | en_US |
| dc.identifier.wos | WOS:001145848400001 | |
| dc.identifier.wosquality | Q1 | |
| dc.language.iso | en | en_US |
| dc.publisher | Elsevier Sci Ltd | en_US |
| dc.relation.publicationcategory | Makale - Uluslararası Hakemli Dergi - Kurum Öğretim Elemanı | en_US |
| dc.rights | info:eu-repo/semantics/closedAccess | en_US |
| dc.subject | Ship Cyber Security | en_US |
| dc.subject | Cyber Resilience | en_US |
| dc.subject | Cyber Risk Management | en_US |
| dc.subject | Ais | en_US |
| dc.subject | Hra | en_US |
| dc.title | Risk Sensitivity Analysis of Ais Cyber Security Through Maritime Cyber Regulatory Frameworks | en_US |
| dc.type | Article | en_US |