Oleksiy Melnyk*
Oleksandr Drozdov**
Serhii Kuznichenko***
Cybersecurity in Maritime Transport: An International Perspective on Regulatory Frameworks and Countermeasures
Suggested citation:
Melnyk, O., Drozdov, O., & Kuznichenko, S. (2025). Cybersecurity in Maritime Transport: An International Perspective on Regulatory Frameworks and Countermeasures. Lex Portus, 11(1), 7–19. https://doi.org/10.62821/lp11101
Published online: 11.03.2025
*Professor, Master Mariner, Navigation and Maritime Safety Department, Odesa National Maritime University (34, Mechnikova St., Odesa, Ukraine)
**Professor, Yaroslav Mudryi National Law University (77, Hryhoriia Skovorody St., Kharkiv, Ukraine), University of Barcelona (08034, 684 Av. Diagonal, Barcelona, Spain)
***Professor, National Academy of Legal Sciences of Ukraine (80, Chernyshevskaya St., Kharkiv, Ukraine)
ABSTRACT
This article combines legal, technical, and organizational aspects to propose a comprehensive approach to addressing cybersecurity of maritime transport. The article highlights key gaps in the international legal framework and suggests a unified legal framework to regulate these cyber threats from a maritime transportation perspective. The article focuses on technical solutions but is supported by professional training in a virtual environment. The main innovation of this article is the interdisciplinary approach, combining technological advances with social research and legal analysis. Among other proposals, developing an international maritime cybersecurity convention, a standard global incident registry and a transnational data sharing system are proposed. Such a systematic framework would have serious potential to address critical safety issues and improve the safety of the global shipping industry.
Keywords: maritime cybersecurity, maritime law, incident response, global maritime security standards, international legal frameworks.
REFERENCES
Ahmad, N., Zainordin, N., Izni, N., Kahmin, A., & Shuen, Y. (2024). Factors affecting the cybersecurity adoption among players of the maritime industry, Malaysia. International Journal of Advanced Research, 12, 633–640. https://doi.org/10.21474/IJAR01/19294
Aşan, C. (2024). Developing a measurement scale to assess the perception of cybersecurity among employees in the maritime industry. Journal of Naval Sciences and Engineering, 20(2), 135–162. https://doi.org/10.56850/jnse.1485985
Bolbot, V., Kulkarni, K., Brunou, P., Valdez Banda, O., & Musharraf, M. (2022). Developments and research directions in maritime cybersecurity: A systematic literature review and bibliometric analysis. International Journal of Critical Infrastructure Protection, 39, 100571. https://doi.org/10.1016/j.ijcip.2022.100571
Cheng, C., Li, Z., Yan, Y., Cui, Q., Zhang, Y., & Liu, Z. (2024). Maritime freight carbon emission in the U.S. using AIS data from 2018 to 2022. Scientific Data, 11, 542. https://doi.org/10.1038/s41597-024-03391-0
Chupkemi, D., & Mersinas, K. (2024). Challenges in maritime cybersecurity training and compliance. Journal of Marine Science and Engineering, 12(10), 1844. https://doi.org/10.3390/jmse12101844
Clavijo, V., Patino, C., & Guevara Carazas, F. (2024). Cybersecurity at sea: A literature review of cyber-attack impacts and defenses in maritime supply chains. Information, 15(11), 710. https://doi.org/10.3390/info15110710
Computer Fraud and Abuse Act, 1986. U.S. Department of Justice. https://www.justice.gov/jm/jm-9-48000-computer-fraud
Convention on Cybercrime, 2001. Council of Europe. https://rm.coe.int/1680081561
Crawford, D., & Sylvanus, E. (2023). Enhancing cybersecurity in autonomous maritime systems: An analytical approach to system authentication. Conference: Faculty of Computing and Applied Sciences International Conference on Sustainable Development Goals, Baze University, Abuja.
Dimakopoulou, A., & Rantos, K. (2024). Comprehensive analysis of maritime cybersecurity landscape based on the NIST CSF v2.0. Journal of Marine Science and Engineering, 12(6), 919. https://doi.org/10.3390/jmse12060919
Emre, D., Kayişoğlu, G., Acarer, T., Yilmaz Bolat, P., & Nak, A. (2024). Conducting an analysis of maritime cybersecurity incidents. Turkish Journal of Maritime and Marine Sciences, 10(1), 51–61. https://doi.org/10.52998/trjmms.1531187
Harish, A. V., Tam, K., & Jones, K. (2025). Literature review of maritime cyber security: The first decade. Maritime Technology and Research, 7(2), 273805. https://doi.org/10.33175/mtr.2025.273805
Huang, X., Wen, Y., Zhang, F., Li, H., Sui, Z., & Cheng, X. (2025). Accident analysis of waterway dangerous goods transport: Building an evolution network with text knowledge extraction. Ocean Engineering, 318, 120176. https://doi.org/10.1016/j.oceaneng.2024.120176
Ibokette, A., Ogundare, T., Anyebe, A., Folami, O., Odeh, I., & Okafor, F. (2024). Mitigating maritime cybersecurity risks using AI-based intrusion detection systems and network automation during extreme environmental conditions. International Journal of Scientific Research and Modern Technology, 3(10), 65–91. https://doi.org/10.38124/ijsrmt.v3i10.73
International Convention for the Safety of Life at Sea (SOLAS), 1974. International Maritime Organization. https://www.imo.org/en/About/Conventions/Pages/International-Convention-for-the-Safety-of-Life-at-Sea-(SOLAS),-1974.aspx
International Maritime Organization. (2017, June 16). Resolution on Maritime cyber risk management in safety management systems. MSC.428(98). https://wwwcdn.imo.org/localresources/en/OurWork/Security/Documents/Resolution%20MSC.428(98).pdf
Jepsen, L., Meland, P. H., & Kaloudi, N. (2024). Increasing maritime cybersecurity awareness through game-based learning. Journal of Physics: Conference Series, 2867, 012050. https://doi.org/10.1088/1742-6596/2867/1/012050
Jiang, X., Xu, H., Zhu, Y., Gu, Y., & Zheng, S. (2025). Lifecycle risk assessment for steel cargo vessel sinkings: An interpretive structural modeling and fuzzy Bayesian network approach. Journal of Marine Science and Engineering, 13(1), 165. https://doi.org/10.3390/jmse13010165
Kanwal, K., Shi, W., Kontovas, C., Yang, Z., & Chang, C. (2022). Maritime cybersecurity: Are onboard systems ready? Maritime Policy & Management, 51(3), 484–502. https://doi.org/10.1080/03088839.2022.2124464
Karaca, I., & Soner, O. (2023). An evaluation of students’ cybersecurity awareness in the maritime industry. International Journal of 3D Printing Technologies and Digital Industry, 7(1), 78–89. https://doi.org/10.46519/ij3dptdi.1236264
Kormych, B., Malyarenko, T., & Wittke, C. (2023). Rescaling the legal dimensions of grey zones: Evidence from Ukraine. Global Policy, 14(3), 516–530. https://doi.org/10.1111/1758-5899.13233
Kormych, B., Averochkina, T., & Kormych, L. (2024). Black Sea, grain, and two humanitarian corridors: Unblocking Ukrainian shipping amid the Russian invasion. Small Wars and Insurgencies, 35(8), 1360–1396. https://doi.org/10.1080/09592318.2024.2384679
Maritime transportation security act, 2002. Congress.gov. https://www.congress.gov/107/plaws/publ295/PLAW-107publ295.pdf
Martínez, F., Sánchez Crespo, L. E., Parra, A., Rosado, D., & Fernández-Medina, E. (2024). Maritime cybersecurity: Protecting digital seas. International Journal of Information Security, 23, 1429–1457. https://doi.org/10.1007/s10207-023-00800-0
Mawer, T., von Solms, S., & Meyer, J. (2024). Identifying the scope of cybersecurity research conducted in the maritime industry: 2003–2023. International Conference on Cyber Warfare and Security, 19(1), 545–554. https://doi.org/10.34190/iccws.19.1.2037
Melnyk, O., Onyshchenko, S., Lohinov, O., Ocheretna, V., & Dovidenko, Y. (2022). Basic aspects ensuring shipping safety. Scientific Journal of Silesian University of Technology. Series Transport, 117, 139–149. https://doi.org/10.20858/sjsutst.2022.117.10
Melnyk, O., Onyshchenko, S., Onishchenko, O., Shcherbina, O., & Vasalatii, N. (2023). Simulation-based method for predicting changes in the ship’s seaworthy condition under impact of various factors. In A. Zaporozhets (ed.) Systems, Decision and Control in Energy V. Studies in Systems, Decision and Control: Vol. 481 (pp. 653–664). Springer. https://doi.org/10.1007/978-3-031-35088-7_37
Miller, T., Durlik, I., Kostecka, E., Łobodzińska, A., Łazuga, K., & Kozlovska, P. (2025). Leveraging large language models for enhancing safety in maritime operations. Applied Sciences (Switzerland), 15(3), 1666. https://doi.org/10.3390/app15031666
Neumann, T. (2024). Cybersecurity in maritime industry. TransNav, 18(4), 765–774. https://doi.org/10.12716/1001.18.04.02
Nikolov, B. (2024). Approach to developing a maritime cybersecurity virtual training environment. Proceedings of the 15th International Scientific and Practical Conference “Environment. Technology. Resources”: Vol. 2 (pp. 220–225). https://doi.org/10.17770/etr2024vol2.8039
Park, C., Kontovas, C., Yang, Z., & Chang, C. (2023). A BN-driven FMEA approach to assess maritime cybersecurity risks. Ocean & Coastal Management, 235, 106480. https://doi.org/10.1016/j.ocecoaman.2023.106480
Patrick, M., Mugisha, E., Mbaga, K., & Likamba, M. (2024). Cybersecurity in Tanzanian maritime operations: Exploring global best practices and their local adaptation using the cybersecurity capability maturity model (C2M2). Social Science and Humanities Journal, 8(10), 5688–5697. https://doi.org/10.18535/sshj.v8i10.1421
Peng, P., Xie, X., Claramunt, C., Lu, F., Gong, F., & Yan, R. (2025). Bibliometric analysis of maritime cybersecurity: Research status, focus, and perspectives. Transportation Research Part E: Logistics and Transportation Review, 195, 103971. https://doi.org/10.1016/j.tre.2025.103971
Petrović, I., & Vujičić, S. (2025). Use of eye-tracking technology to determine differences between perceptual and actual navigational performance. Journal of Marine Science and Engineering, 13(2), 247. https://doi.org/10.3390/jmse13020247
Popova, Y., Cernisevs, O., & Popovs, S. (2024). Impact of geographic location on risks of fintech as a representative of financial institutions. Geographies, 4(4), 753–768. https://doi.org/10.3390/geographies4040041
Potamos, G., Stavrou, E., & Stavrou, S. (2024). Enhancing maritime cybersecurity through operational technology sensor data fusion: A comprehensive survey and analysis. Sensors, 24(11), 3458. https://doi.org/10.3390/s24113458
Prasetyo, S. D., Prabowo, A. R., & Arifin, Z. (2022). The effect of collector design in increasing PVT performance: Current state and milestone. Materials Today: Proceedings, 63, 1–9. https://doi.org/10.1016/j.matpr.2021.12.356
Progoulakis, I., Nikitakos, N., Rohmeyer, P., Bunin, B., Dalaklis, D., & Karamperidis, S. (2021). Perspectives on Cyber Security for Offshore Oil and Gas Assets. Journal of Marine Science and Engineering, 9(2), 112. https://doi.org/10.3390/jmse9020112
Progoulakis, I., Nikitakos, N., Dalaklis, D., & Yaacob, R. (2022). Cyber-Physical Security for Ports Infrastructure. International Maritime Transport and Logistics Conference, 11(1), 105–114. https://doi.org/10.21622/MARLOG.2022.11.105
Putra, I. N., Octavian, A., Susilo, A. K., & Santosa, Y. N. (2024). An assessment of cyber resilience in the maritime domain using system dynamics and analytical hierarchy process (AHP). Transactions on Maritime Science, 13(2). https://doi.org/10.7225/toms.v13.n02.w06
Putri, S., & Burhanuddin, A. (2023). Maritime cybersecurity: Tantangan dan strategi keamanan maritim Indonesia. Mandub: Jurnal Politik, Sosial, Hukum dan Humaniora, 2(1), 378–386. https://doi.org/10.59059/mandub.v2i1.940
Qiao, X., Yang, Y., Jin, Y., & Wang, S. (2024). Joint ship scheduling and speed optimization for naval escort operations to ensure maritime security. Journal of Marine Science and Engineering, 12(8), 1454. https://doi.org/10.3390/jmse12081454
Sime, T. (2023). A critical reflection on African maritime cybersecurity frameworks. Scientia Militaria, 51(3), 1–88. https://doi.org/10.5787/51-3-1426
Syta, J. (2024). Challenges in providing cybersecurity to port and maritime infrastructure facilities. GIS Odyssey Journal, 4(1), 131–144. https://doi.org/10.57599/gisoj.2024.4.1.131
Tatar, U., Karabacak, B., Keskin, O. F., & Foti, D. P. (2024). Charting new waters with CRAMMTS: A survey-driven cybersecurity risk analysis method for maritime stakeholders. Computers & Security, 145, 104015. https://doi.org/10.1016/j.cose.2024.104015
United Nations. (1982). Convention on the Law of the Sea. https://www.un.org/depts/los/convention_agreements/texts/unclos/unclos_e.pdf
Xia, A., Guo, C., Li, S., Shen, Y., & Wang, Z. (2024). Research on network security situation prediction and visualization based on security situation awareness. ACM International Conference Proceeding Series, 287–293. https://doi.org/10.1145/3689236.3696754
Yousaf, A., & Zhou, J. (2024). From sinking to saving: MITRE ATT&CK and D3FEND frameworks for maritime cybersecurity. International Journal of Information Security, 23, 1603–1618. https://doi.org/10.1007/s10207-024-00812-4
