Cargando…
Cyberattack Models for Ship Equipment Based on the MITRE ATT&CK Framework
Cybersecurity is important on ships that use information and communication technology. On such ships, the work, control, and sensor systems are connected for steering, navigation, and cargo management inside the hull, and a cyberattack can have physical consequences such as sinking and crashing. Res...
| Autores principales: | , , , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
MDPI
2022
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8914615/ https://www.ncbi.nlm.nih.gov/pubmed/35271006 http://dx.doi.org/10.3390/s22051860 |
| _version_ | 1784667752589426688 |
|---|---|
| author | Jo, Yonghyun Choi, Oongjae You, Jiwoon Cha, Youngkyun Lee, Dong Hoon |
| author_facet | Jo, Yonghyun Choi, Oongjae You, Jiwoon Cha, Youngkyun Lee, Dong Hoon |
| author_sort | Jo, Yonghyun |
| collection | PubMed |
| description | Cybersecurity is important on ships that use information and communication technology. On such ships, the work, control, and sensor systems are connected for steering, navigation, and cargo management inside the hull, and a cyberattack can have physical consequences such as sinking and crashing. Research on ship cybersecurity is a new challenge, and related studies are lacking. Cyberattack models can provide better insight. With this study, we aim to introduce a cyberattack analysis method based on the MITRE ATT&CK framework so that a cyberattack model for ships can be established. In addition, we identify the characteristics of the attack phase by analyzing cases of hacking and vulnerability research for ship systems using tactics, techniques, and procedures, and suggest the minimum measures essential for defense. Using the ship cyberattack model, we aim to identify the characteristics of the systems used for ship navigation, communication, and control; provide an understanding of the threats and vulnerabilities; and suggest mitigation measures through the proposed model. We believe the results of this study could guide future research. |
| format | Online Article Text |
| id | pubmed-8914615 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2022 |
| publisher | MDPI |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-89146152022-03-12 Cyberattack Models for Ship Equipment Based on the MITRE ATT&CK Framework Jo, Yonghyun Choi, Oongjae You, Jiwoon Cha, Youngkyun Lee, Dong Hoon Sensors (Basel) Article Cybersecurity is important on ships that use information and communication technology. On such ships, the work, control, and sensor systems are connected for steering, navigation, and cargo management inside the hull, and a cyberattack can have physical consequences such as sinking and crashing. Research on ship cybersecurity is a new challenge, and related studies are lacking. Cyberattack models can provide better insight. With this study, we aim to introduce a cyberattack analysis method based on the MITRE ATT&CK framework so that a cyberattack model for ships can be established. In addition, we identify the characteristics of the attack phase by analyzing cases of hacking and vulnerability research for ship systems using tactics, techniques, and procedures, and suggest the minimum measures essential for defense. Using the ship cyberattack model, we aim to identify the characteristics of the systems used for ship navigation, communication, and control; provide an understanding of the threats and vulnerabilities; and suggest mitigation measures through the proposed model. We believe the results of this study could guide future research. MDPI 2022-02-26 /pmc/articles/PMC8914615/ /pubmed/35271006 http://dx.doi.org/10.3390/s22051860 Text en © 2022 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/). |
| spellingShingle | Article Jo, Yonghyun Choi, Oongjae You, Jiwoon Cha, Youngkyun Lee, Dong Hoon Cyberattack Models for Ship Equipment Based on the MITRE ATT&CK Framework |
| title | Cyberattack Models for Ship Equipment Based on the MITRE ATT&CK Framework |
| title_full | Cyberattack Models for Ship Equipment Based on the MITRE ATT&CK Framework |
| title_fullStr | Cyberattack Models for Ship Equipment Based on the MITRE ATT&CK Framework |
| title_full_unstemmed | Cyberattack Models for Ship Equipment Based on the MITRE ATT&CK Framework |
| title_short | Cyberattack Models for Ship Equipment Based on the MITRE ATT&CK Framework |
| title_sort | cyberattack models for ship equipment based on the mitre att&ck framework |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8914615/ https://www.ncbi.nlm.nih.gov/pubmed/35271006 http://dx.doi.org/10.3390/s22051860 |
| work_keys_str_mv | AT joyonghyun cyberattackmodelsforshipequipmentbasedonthemitreattckframework AT choioongjae cyberattackmodelsforshipequipmentbasedonthemitreattckframework AT youjiwoon cyberattackmodelsforshipequipmentbasedonthemitreattckframework AT chayoungkyun cyberattackmodelsforshipequipmentbasedonthemitreattckframework AT leedonghoon cyberattackmodelsforshipequipmentbasedonthemitreattckframework |