IACS to publish a dozen “cyber-resilience” recommendations

The International Association of Classification Societies (IACS) has published nine new recommendations on cyber security. It said that eventually there would be 12 recommendations designed to help vessels maintain cyber resilience throughout their operational lives. The remaining three recommendations are scheduled to be released before the end of 2018.

IACS said that it recognized the huge increase in the use of onboard cyber systems. It said that the new recommendations covered the need for:

  • A more complete understanding of the interplay between ship’s systems
  • Protection from events beyond software errors
  • In the event that protection fails, the need for an appropriate response and ultimately recovery
  • In order that the appropriate response could be put in place, a means of detection is required.

The 12 recommendations are:

Rec NoTitleStatus
Rec 153Recommended procedures for software maintenance of shipboard equipment and systemsPublished
Rec 154Recommendation concerning manual / local control capabilities for software dependent machinery systemsPublished
Rec 155Contingency plan for onboard computer based systemsPublished
Rec 156Network ArchitecturePublished
Rec 157Data AssurancePublished
Rec 158Physical Security of onboard computer based systemsTarget date Q4 2018
Rec 159Network Security of onboard computer based systemsPublished
Rec 160Vessel System DesignTarget date Q4 2018
Rec 161Inventory List of computer based systemsPublished
Rec 162IntegrationPublished
Rec 163Remote Update / AccessPublished
Rec 164Communication and InterfacesTarget date Q4 2018

Links to the already published recommendations can be found at: