Bureau Veritas (BV) has developed a new series of classification notations, guidelines and services to support shipowners in addressing maritime cyber risks.
BV now offers two cyber notations:
SW-Registry
The first, SW-Registry, focuses on software change management ensuring that installations of tested new software versions are properly tracked. It requires the creation and maintenance of a certified register of software used in the ship’s onboard systems.
SW-Registry is compulsory for newbuild ships using digital systems and enables owners to comply with IACS UR E22, applicable from 1 July 2017. Existing ships may choose to create their own register and would benefit from the additional class notation to help indicate their cyber safety level.
SYS-COM
A second new notation, SYS-COM, addresses cyber security, and is directed at preventing malicious cyber attacks. SYS-COM is a voluntary notation covering the exchange of data between ship and shore. Bureau Veritas is now the only classification society to offer a notation for this specific risk, identified as a key cyber security threat to digital ship data and systems.
Specialist Testing Services
The new notations are supported by specialist testing services delivered by BV and its partners. Testing services for cyber safety include software code analysis for potential safety risks and simulations using a mathematical model of the ship to test the code in hazardous situations. Cyber security risks are addressed through a security risk assessment possibly completed by software penetration tests.
Guidelines for Autonomous Shipping
Additionally, NI 641 – Guidelines for Autonomous Shipping was released at the end of December. This guidance note contains the basis for the risk assessment of ships including autonomous systems, the goal-based recommendations for a minimum level of functionality of autonomous and the guidelines for improving the reliability of essential systems within autonomous ships.
Further Tools and Notations
Further tools and services are planned for 2018, including a certification scheme covering all onboard systems and equipment and an additional class notation covering continuous monitoring of the state of the onboard systems and logging of security events to ensure traceability.
Picture: Cyber safety, security and autonomous shipping addressed with new Bureau Veritas notations and guidelines (by Bureau Veritas).