Extended Operational and Trade Vocabulary
Maritime Cybersecurity and OT Security glossary (page 2)
The OT-security vocabulary: the IMO Assembly resolutions on AIS and ISM (A.1106(29), A.1163(32)), the distributed control systems (ABB 800xA Marine), the ABS CyberSafety capability tiers (CS1), and the network-segmentation and incident-response terms. Grounds each term in the IMO resolution or the OT control it belongs to.
309 defined terms.
Showing 59 on this page (page 2 of 2).
R
- Risk Register
- Living record of identified risks, controls and treatments.
- Rockwell FactoryTalk
- Suite of industrial software from Rockwell Automation.
S
- Sam Electronics
- Hamburg-based supplier of marine bridge systems and switchboards, now part of Wartsila SAM Electronics.
- SamSam
- Ransomware family used in targeted attacks including Port of San Diego and Atlanta city government.
- Saudi Aramco Shamoon 2012
- Wiper malware incident in August 2012 that affected approximately 30,000 Saudi Aramco workstations.
- Saudi Aramco Shamoon-2 2017
- Second wave of Shamoon family wiper attacks observed against Saudi entities in 2017.
- SCADA
- Supervisory Control and Data Acquisition system for distributed industrial processes.
- Sec-Wise
- Maritime cyber security consultancy providing risk assessments and managed services.
- Secure Email Gateway
- Specialized service that filters inbound and outbound email for threats and policy violations.
- SektorCERT
- Danish sector computer emergency response team for critical infrastructure operators.
- SentinelOne
- Endpoint detection and response vendor.
- SIEM
- Security Information and Event Management, technology aggregating logs and supporting detection and investigation.
- Siemens WinCC
- Human machine interface and SCADA software from Siemens.
- Smishing
- Phishing conducted through SMS or other mobile messaging channels.
- SOAR
- Security Orchestration, Automation, and Response platforms used to automate incident workflows.
- SOC
- Shipper-Owned Container, used in lieu of carrier equipment.
- SOC2 Type II
- Service Organization Control attestation report covering the operating effectiveness of controls over time.
- Social Engineering
- Manipulation of people to disclose information or take actions that compromise security.
- SolarWinds 2020
- Supply chain compromise disclosed in December 2020 in which the Orion software update mechanism was used to distribute the SUNBURST backdoor.
- SOLAS
- International Convention for the Safety of Life at Sea, 1974; the IMO treaty setting minimum construction, equipment, and operation standards for merchant ships.
- Sophos Intercept X
- Endpoint protection product from Sophos.
- Spear-Phishing
- Targeted phishing against specific shore/ship staff.
- Splunk
- Log analytics and SIEM platform.
- SSL/TLS
- Transport Layer Security and its predecessor Secure Sockets Layer, cryptographic protocols for transport encryption.
- Stuxnet 2010
- Worm targeting Siemens S7 programmable logic controllers, publicly identified in 2010.
- Supply Chain Attack
- Compromise via a trusted vendor or component, as in SolarWinds and MOVEit.
- Symantec
- Vendor providing data loss prevention and endpoint security products, now part of Broadcom.
T
- TCP/IP
- Internet protocol suite forming the basis of most shipboard and shoreside networks.
- Tenable
- Vulnerability management vendor known for Nessus and Tenable.OT.
- Tenable.OT
- Tenable's OT security platform, formerly Indegy.
- Tetration
- Workload microsegmentation product from Cisco, now part of Cisco Secure Workload.
- Threat Intelligence
- Curated information on adversaries, their tools, techniques, and procedures used to inform defense.
- Tier 1 Facility
- USCG facility classification associated with the highest level of MTSA security requirements.
- TLS 1.3
- Latest major version of Transport Layer Security, defined in IETF RFC 8446 in August 2018.
- Tofino Argon
- Industrial firewall product line associated with Belden for OT environments.
- Tokio Marine HCC Maritime Cyber
- Cyber insurance product from Tokio Marine HCC addressing marine sector exposures.
- Transas NS5000
- Integrated navigation system originally from Transas, now part of the Wartsila portfolio.
- Transit Encryption
- Cryptographic protection applied to data while it moves across a network.
U
- USB Device Attack
- Compromise vector in which malicious code is delivered through removable media, central to the Stuxnet case.
- USCG
- United States Coast Guard, US flag and PSC authority.
V
- VDR
- Voyage Data Recorder, required under SOLAS V/20.
- Vessel Security Plan
- Document required under ISPS describing security measures aboard a regulated vessel, including cyber elements since 2021.
- VLAN
- Virtual Local Area Network, a logical subdivision of a physical network.
- VMDR
- Vulnerability Management, Detection, and Response platform from Qualys.
- VPN
- Virtual Private Network providing encrypted tunneling between endpoints.
- VSAT
- Very Small Aperture Terminal satellite system used for two-way broadband at sea.
- Vulnerability
- Weakness in a system, process, or control that may be exploited by a threat.
- Vulnerability Scanner
- Tool that systematically probes systems for known weaknesses.
W
- WAN
- Wide Area Network, a network spanning multiple sites or geographies.
- Wartsila NACOS Platinum
- Integrated bridge, automation, and power management product line from Wartsila SAM Electronics.
- Watering Hole
- Compromise of a website frequented by a target community to deliver malware.
- Whaling
- Hunting of whales; commercial whaling moratorium adopted by IWC in 1982 (effective 1986).
- WinCC
- Siemens human machine interface and SCADA software product.
- Wonderware
- Heritage brand of the InTouch human machine interface now within AVEVA.
- World Shipping Council
- Container line trade association that publishes the annual Containers Lost at Sea report, which has tracked container losses since 2008.
Y
- Yokogawa CENTUM
- Distributed control system from Yokogawa used in process and some marine applications.
Z
- Zero Trust
- Architectural approach that assumes no implicit trust based on network location and verifies every access request.
- Zone
- Customs zone, freight rating zone, or environmental compliance zone.
- ZTNA
- Zero Trust Network Access, a category of secure remote access technologies that brokers per session access to applications.