Maritime

Cyber Secure notation level selector app

The DNV GL Cyber secure class notation offers a flexible scheme for verifying the cyber security resilience of different vessel types and operational profiles.

The two dimensions that the class notation varies is according to the systems being part of scope, i.e. systems under consideration, and the level of security controls being applied. For systems being considered, the core notations cover 10 essential and important functions; propulsion, steering, navigation, communication, power generation, watertight integrity, fire detection and mitigation, ballasting, auxiliary thrusters and auxiliary systems needed for the essential functions. When it comes to the level of security controls, it ranges from Cyber secure at security profile 0 (SP0), which is a subset of IEC62443-3-3 SL-1 requirements, up to the Cyber secure Advanced level based on SL-3, with the options of increasing to SL-4 for selected systems using the (+) qualifier. 

Each vessel design and operational profile is unique, and the suitable Cyber secure class notation level should be set based on a risk assessment taking owner, supplier, yard and charter requirements into account. However, to support owners through this process, DNV GL has also suggested suitable starting levels for different vessel segments newbuidlings and existing vessels below.


Cyber Secure notation selector -app image

Newbuilding

Normal merchant vessel (bulker, container, tanker, roro, multi-purpose, general cargo, etc.)

Suggested level
Systems to be evaluated
Cyber risk category
Cyber security ambition
Suggested level
Cyber secure
Systems to be evaluated
Standard essential and important SOLAS ship systems (propulsion, power, fire, navigation, communication, …)
Cyber risk category
Low risk of attack (only unintentional attacks and low level of connectivity/remote connections)
Cyber security ambition
Cyber security at least fulfilling minimum compliance with laws and regulation

Advanced merchant vessel (LNG carrier, Shuttle tanker, …)

Suggested level
Systems to be evaluated
Cyber risk category
Cyber security ambition
Suggested level
Cyber secure ESSENTIAL
Systems to be evaluated
Standard essential and important SOLAS ship systems (propulsion, power, fire, navigation, communication, …)
Cyber risk category
Medium risk of attack (limited intentional attacks and some connectivity/remote connections)
Cyber security ambition
Cyber security is an important driver for ship and business operation

Offshore ship or MOU

Suggested level
Systems to be evaluated
Cyber risk category
Cyber security ambition
Suggested level
Cyber secure(+) or Cyber secure ESSENTIAL(+)*

*Drilling, DP and ESD recommended as (+) systems
Systems to be evaluated
Standard scope and additional IT (information) and/or OT (control and monitoring) systems
Cyber risk category
Medium risk of attack (limited intentional attacks and some connectivity/remote connections)
Cyber security ambition
Cyber security is an important driver for ship and business operation

Passenger vessel (Ferry, Cruise, …)

Suggested level
Systems to be evaluated
Cyber risk category
Cyber security ambition
Suggested level
Cyber secure ESSENTIAL*

*Can consider to add entertainment, passenger or payment systems to (+) scope
Systems to be evaluated
Standard essential and important ship systems (propulsion, power, fire, navigation, communication, …)
Cyber risk category
Medium risk of attack (limited intentional attacks and some connectivity/remote connections)
Cyber security ambition
Cyber security is an important driver for ship and business operation

Autonomous vessel

Suggested level
Systems to be evaluated
Cyber risk category
Cyber security ambition
Suggested level
Cyber secure ADVANCED(+)

*Additional systems required for Autonomous operation recommended as (+) systems
Systems to be evaluated
Standard scope and additional IT (information) and/or OT (control and monitoring) systems
Cyber risk category
High risk of attack (intentional attacks probable and high level of connectivity/remote connections)
Cyber security ambition
Cyber security is crucial for ship safety and operational objective of vessel

Navy

Suggested level
Systems to be evaluated
Cyber risk category
Cyber security ambition
Suggested level
Cyber secure ADVANCED
Systems to be evaluated
Standard essential and important SOLAS ship systems (propulsion, power, fire, navigation, communication, …)
Cyber risk category
High risk of attack (intentional attacks probable and high level of connectivity/remote connections)
Cyber security ambition
Cyber security is crucial for ship safety and operational objective of vessel

Existing vessel

Normal merchant vessel (bulker, container, tanker, roro, multi-purpose, general cargo, etc.)

Suggested level
Systems to be evaluated
Cyber risk category
Cyber security ambition
Suggested level
Cyber secure
Systems to be evaluated
Standard essential and important SOLAS ship systems (propulsion, power, fire, navigation, communication, …)
Cyber risk category
Low risk of attack (only unintentional attacks and low level of connectivity/remote connections)
Cyber security ambition
Cyber security at least fulfilling minimum compliance with laws and regulation

Advanced merchant vessel (LNG carrier, Shuttle tanker, …)

Suggested level
Systems to be evaluated
Cyber risk category
Cyber security ambition
Suggested level
Cyber secure 
Systems to be evaluated
Standard essential and important SOLAS ship systems (propulsion, power, fire, navigation, communication, …)
Cyber risk category
Medium risk of attack (limited intentional attacks and some connectivity/remote connections)
Cyber security ambition
Cyber security is an important driver for ship and business operation

Offshore ship or MOU

Suggested level
Systems to be evaluated
Cyber risk category
Cyber security ambition
Suggested level
Cyber secure(+) or Cyber secure ESSENTIAL(+)*

*Drilling, DP and ESD recommended as (+) systems
Systems to be evaluated
Standard scope and additional IT (information) and/or OT (control and monitoring) systems
Cyber risk category
Medium risk of attack (limited intentional attacks and some connectivity/remote connections)
Cyber security ambition
Cyber security is an important driver for ship and business operation

Passenger vessel (Ferry, Cruise, …)

Suggested level
Systems to be evaluated
Cyber risk category
Cyber security ambition
Suggested level
Cyber secure or Cyber secure ESSENTIAL*

*Can consider to add entertainment, passenger or payment systems to (+) scope
Systems to be evaluated
Standard essential and important ship systems (propulsion, power, fire, navigation, communication, …)
Cyber risk category
Medium risk of attack (limited intentional attacks and some connectivity/remote connections)
Cyber security ambition
Cyber security is an important driver for ship and business operation

Navy

Suggested level
Systems to be evaluated
Cyber risk category
Cyber security ambition
Suggested level
Cyber secure ADVANCED
Systems to be evaluated
Standard essential and important SOLAS ship systems (propulsion, power, fire, navigation, communication, …)
Cyber risk category
High risk of attack (intentional attacks probable and high level of connectivity/remote connections)
Cyber security ambition
Cyber security is crucial for ship safety and operational objective of vessel

Cyber Secure class notation

Access the service page

Cyber security services

Access the landing page