Effective maritime cybersecurity regulation - the case for a cyber code

摘要

Ships and ports are increasingly connected to each other through cyberspace. This connectivity streamlines many aspects of maritime business, but also exposes maritime operators and administrations to new types of risk including hacking and outage. The maritime industry has been slow to realize the implications of this new environment within which it operates, and now lags behind other industries (like aviation) when it comes to cyber risk mitigation and regulation. We argue that the International Maritime Organisation (IMO), alongside its members, urgently needs to create robust and resilient cybersecurity regulations. We suggest that the IMO should consider creating a standalone Cyber Code, based on a framework created by previous IMO Codes such as the Polar Code. Since the IMO uses Codes as a legally binding instrument, this would help to ensure the continued safety and efficiency of the maritime industry in the face of threats from cyberspace.