BSI 18/30387129 DC:2018 Edition
$13.70
BS EN 63154. Maritime navigation and radiocommunication equipment and systems. Cybersecurity. General requirements, methods of testing and required test results
| Published By | Publication Date | Number of Pages |
| BSI | 2018 | 47 |
PDF Catalog
| PDF Pages | PDF Title |
|---|---|
| 1 | 30387129-NC |
| 3 | 80_906e_CD (2) |
| 4 | CONTENTS |
| 7 | FOREWORD |
| 9 | 1 Scope |
| 11 | 2 Normative references 3 Terms and definitions |
| 15 | 4 Module A: Data files 4.1 Requirements |
| 16 | 4.2 Methods of testing and required test results |
| 17 | 5 Module B: Execution of executables 5.1 Requirements for executable program file verification 5.2 Methods of testing and required test results 6 Module C: User authentication 6.1 General 6.2 Requirements |
| 18 | 6.3 Methods of testing and required test results |
| 19 | 7 Module D: System defence 7.1 General 7.2 Requirements – Malware protection |
| 21 | 7.3 Methods of testing and required test results 7.4 Requirements – Denial of service |
| 22 | 7.5 Methods of testing and required test results |
| 23 | 8 Module E: Network access 8.1 General 8.2 Requirements 8.3 Methods of testing and required test results 9 Module F: Access to operating system 9.1 Requirements |
| 24 | 9.2 Methods of testing and required test results 10 Module G: Booting environment 10.1 Requirements 10.2 Methods of testing and required test results |
| 25 | 11 Module H: Management of manufacturer’s configuration 11.1 Requirements 11.2 Methods of testing and required test results |
| 26 | 12 Module I: Protection against unintentional crash caused by user input 12.1 Requirements 12.2 Methods of testing and required test results 13 Module J: USB interfaces for other than storage purposes 13.1 General 13.2 Requirements for procedural method option 13.3 Methods of testing and required test results for training option 13.4 Requirements for technical method option |
| 27 | 13.5 Methods of testing and required test results for technical method option 14 Module K: USB ports and interfaces for REDS 14.1 Requirements 14.1.1 Physical protection 14.1.2 Operational protection 14.2 Methods of testing and required test results 15 Module L: IEC 61162-1 or IEC 61162-2 as interface |
| 28 | 16 Module M: IEC 61162-450 as interface 16.1 General 16.2 Requirements related to IEC 61162-1 sentences 16.3 Requirements related to IEC 61162-450 used for file transfer 17 Module N: Other interfaces 17.1 General 17.2 Requirements |
| 29 | 17.3 Methods of testing and required test results 18 Module O: Software maintenance 18.1 General 18.2 Requirements for software maintenance by the authorized persons using maintenance mode |
| 30 | 18.3 Methods of testing and required test results for software maintenance by the authorized person using maintenance mode 18.4 Requirements for semi-automatic software maintenance by the crew onboard the vessel 18.4.1 General 18.4.2 Requirement for software update requiring manual transfer into the equipment 18.4.3 Requirement for software update readily available for the equipment |
| 31 | 18.5 Methods of testing and required test results for semi-automatic software maintenance by the crew onboard the vessel 19 Module P: Remote maintenance 20 Documentation 20.1 Requirements 20.2 Methods of testing and required test results |
| 32 | Annex A (informative) Guidance on implementing virus and malware protection on type approved equipment for IMO SOLAS regime and practical limitations |
| 34 | Annex B (Normative) File authentication B.1 General B.1.1 Digital Signatures |
| 35 | B.1.2 Digital signatures – Methods of testing and required test results B.1.3 Symmetric means based upon pre-shared secret keys |
| 36 | B.1.4 Symmetric means based upon pre-shared secret keys – Methods of testing and required test results |
| 37 | Annex C (informative) Methods of authentication of data files and executables – some examples C.1 General C.2 Terms and definitions |
| 38 | C.3 Asymmetric Cryptography C.4 Digital Signatures |
| 39 | C.5 Public Key Infrastructure C.5.1 General theory |
| 41 | C.5.2 Notes about shipboard use |
| 42 | C.6 Symmetric key authentication based on ‘pre-shared secret key’ |
| 44 | Annex D (normative) USB class codes D.1 General |
| 45 | Annex E (Informative) Cyber security configuration document for equipment E.1 General for the document E.2 Document parts E.2.1 Hardening of the operating system E.2.2 Upgrade strategy for cyber security reasons E.2.3 Strategies for detecting and reacting to future vulnerabilities |
| 46 | Annex F (Informative) End user executed sw upgrades and remote maintenance F.1 General |
| 47 | Bibliography |
