Developments and research directions in maritime cybersecurity: A systematic literature review and bibliometric analysis

IF 4.1 3区工程技术 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS

International Journal of Critical Infrastructure Protection Pub Date : 2022-12-01 DOI:10.1016/j.ijcip.2022.100571

Victor Bolbot , Ketki Kulkarni , Päivi Brunou , Osiris Valdez Banda , Mashrura Musharraf

{"title":"Developments and research directions in maritime cybersecurity: A systematic literature review and bibliometric analysis","authors":"Victor Bolbot , Ketki Kulkarni , Päivi Brunou , Osiris Valdez Banda , Mashrura Musharraf","doi":"10.1016/j.ijcip.2022.100571","DOIUrl":null,"url":null,"abstract":"<div><p>Ships and maritime infrastructure are becoming increasingly interconnected as the maritime industry is undergoing the industry 4.0 revolution. This development is associated with novel risk types such as the increased potential for successful cyberattacks. Several review studies have investigated the regulatory framework in connection to maritime cybersecurity, the vulnerabilities in maritime systems, potential cyberattack scenarios, and risk assessment techniques. None of them though, has implemented a systematic literature review and bibliometric analysis of the available academic research studies in the discipline of maritime cybersecurity. The aim of this review, therefore, is to offer a succinct description of the progress in academic research on the arising topic of maritime cybersecurity. To that end, we conducted a bibliometric analysis of maritime cybersecurity-related studies based on several metrics and analysis tools, identified the topics of academic research in this field, the employed methodologies and identified the main research challenges and directions in connection to maritime cybersecurity. To achieve the objectives, we employed principles from Preferred Reporting Items for Systematic reviews and Metanalysis (PRISMA) for systematic literature review and tailored keywords during a search in Scopus. The results demonstrated that Norway, the United Kingdom, France and the USA are the leading countries in maritime cybersecurity based on the weighted number of authors. The results also demonstrated that the main research focus in the area was on the development or application of cybersecurity risk assessment techniques and the design of monitoring and intrusion detection tools for cyberattacks in maritime systems. Based on the analysed literature, 53 challenges in various studies were identified and 73 topics for future research were suggested.</p></div>","PeriodicalId":49057,"journal":{"name":"International Journal of Critical Infrastructure Protection","volume":"39 ","pages":"Article 100571"},"PeriodicalIF":4.1000,"publicationDate":"2022-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://www.sciencedirect.com/science/article/pii/S1874548222000555/pdfft?md5=89bfebece2301ddd663ee603c23fb503&pid=1-s2.0-S1874548222000555-main.pdf","citationCount":"9","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Critical Infrastructure Protection","FirstCategoryId":"5","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S1874548222000555","RegionNum":3,"RegionCategory":"工程技术","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 9

Abstract

Ships and maritime infrastructure are becoming increasingly interconnected as the maritime industry is undergoing the industry 4.0 revolution. This development is associated with novel risk types such as the increased potential for successful cyberattacks. Several review studies have investigated the regulatory framework in connection to maritime cybersecurity, the vulnerabilities in maritime systems, potential cyberattack scenarios, and risk assessment techniques. None of them though, has implemented a systematic literature review and bibliometric analysis of the available academic research studies in the discipline of maritime cybersecurity. The aim of this review, therefore, is to offer a succinct description of the progress in academic research on the arising topic of maritime cybersecurity. To that end, we conducted a bibliometric analysis of maritime cybersecurity-related studies based on several metrics and analysis tools, identified the topics of academic research in this field, the employed methodologies and identified the main research challenges and directions in connection to maritime cybersecurity. To achieve the objectives, we employed principles from Preferred Reporting Items for Systematic reviews and Metanalysis (PRISMA) for systematic literature review and tailored keywords during a search in Scopus. The results demonstrated that Norway, the United Kingdom, France and the USA are the leading countries in maritime cybersecurity based on the weighted number of authors. The results also demonstrated that the main research focus in the area was on the development or application of cybersecurity risk assessment techniques and the design of monitoring and intrusion detection tools for cyberattacks in maritime systems. Based on the analysed literature, 53 challenges in various studies were identified and 73 topics for future research were suggested.

查看原文本刊更多论文

海上网络安全的发展与研究方向:系统文献综述与文献计量分析

随着航运业正在经历工业4.0革命，船舶和海事基础设施之间的联系日益紧密。这种发展与新的风险类型有关，例如成功网络攻击的可能性增加。几项综述研究调查了与海事网络安全相关的监管框架、海事系统的脆弱性、潜在的网络攻击场景和风险评估技术。然而，他们都没有对海上网络安全学科的现有学术研究进行系统的文献综述和文献计量分析。因此，本综述的目的是对海上网络安全这一新兴主题的学术研究进展进行简要描述。为此，我们基于几种指标和分析工具对海事网络安全相关研究进行了文献计量分析，确定了该领域的学术研究主题、采用的方法，并确定了与海事网络安全相关的主要研究挑战和方向。为了实现这一目标，我们采用了系统文献综述的首选报告项目和元分析(PRISMA)的原则，并在Scopus中搜索时定制了关键词。结果表明，挪威、英国、法国和美国是海上网络安全方面的主要国家。研究结果还表明，该领域的主要研究重点是网络安全风险评估技术的开发或应用，以及海事系统网络攻击监测和入侵检测工具的设计。在分析文献的基础上，确定了各种研究中的53个挑战，并提出了73个未来研究的主题。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

International Journal of Critical Infrastructure Protection COMPUTER SCIENCE, INFORMATION SYSTEMS-ENGINEERING, MULTIDISCIPLINARY

CiteScore

8.90

自引率

5.60%

发文量

审稿时长

>12 weeks

期刊介绍： The International Journal of Critical Infrastructure Protection (IJCIP) was launched in 2008, with the primary aim of publishing scholarly papers of the highest quality in all areas of critical infrastructure protection. Of particular interest are articles that weave science, technology, law and policy to craft sophisticated yet practical solutions for securing assets in the various critical infrastructure sectors. These critical infrastructure sectors include: information technology, telecommunications, energy, banking and finance, transportation systems, chemicals, critical manufacturing, agriculture and food, defense industrial base, public health and health care, national monuments and icons, drinking water and water treatment systems, commercial facilities, dams, emergency services, nuclear reactors, materials and waste, postal and shipping, and government facilities. Protecting and ensuring the continuity of operation of critical infrastructure assets are vital to national security, public health and safety, economic vitality, and societal wellbeing. The scope of the journal includes, but is not limited to: 1. Analysis of security challenges that are unique or common to the various infrastructure sectors. 2. Identification of core security principles and techniques that can be applied to critical infrastructure protection. 3. Elucidation of the dependencies and interdependencies existing between infrastructure sectors and techniques for mitigating the devastating effects of cascading failures. 4. Creation of sophisticated, yet practical, solutions, for critical infrastructure protection that involve mathematical, scientific and engineering techniques, economic and social science methods, and/or legal and public policy constructs.