Cyber Secure notation level selector app
The DNV Cyber secure class notation offers a flexible scheme for verifying the cyber security resilience of different vessel types and operational profiles.
The two dimensions that the class notation varies is according to the systems being part of scope, i.e. systems under consideration, and the level of security controls being applied. For systems being considered, the core notations cover 10 essential and important functions; propulsion, steering, navigation, communication, power generation, watertight integrity, fire detection and mitigation, ballasting, auxiliary thrusters and auxiliary systems needed for the essential functions. When it comes to the level of security controls, it ranges from Cyber secure at security profile 0 (SP0), which is a subset of IEC62443-3-3 SL-1 requirements, up to the Cyber secure Advanced level based on SL-3, with the options of increasing to SL-4 for selected systems using the (+) qualifier.
Each vessel design and operational profile is unique, and the suitable Cyber secure class notation level should be set based on a risk assessment taking owner, supplier, yard and charter requirements into account. However, to support owners through this process, DNV has also suggested suitable starting levels for different vessel segments newbuidlings and existing vessels below.
Newbuilding
| Suggested level | Systems to be evaluated | Cyber risk category | Cyber security ambition |
|---|---|---|---|
Suggested levelCyber secure
|
Systems to be evaluatedStandard essential and important SOLAS ship systems (propulsion, power, fire, navigation, communication, …)
|
Cyber risk categoryLow risk of attack (only unintentional attacks and low level of connectivity/remote connections)
|
Cyber security ambitionCyber security at least fulfilling minimum compliance with laws and regulation
|
| Suggested level | Systems to be evaluated | Cyber risk category | Cyber security ambition |
|---|---|---|---|
Suggested levelCyber secure ESSENTIAL
|
Systems to be evaluatedStandard essential and important SOLAS ship systems (propulsion, power, fire, navigation, communication, …)
|
Cyber risk categoryMedium risk of attack (limited intentional attacks and some connectivity/remote connections)
|
Cyber security ambitionCyber security is an important driver for ship and business operation
|
| Suggested level | Systems to be evaluated | Cyber risk category | Cyber security ambition |
|---|---|---|---|
Suggested levelCyber secure(+) or Cyber secure ESSENTIAL(+)*
*Drilling, DP and ESD recommended as (+) systems |
Systems to be evaluatedStandard scope and additional IT (information) and/or OT (control and monitoring) systems
|
Cyber risk categoryMedium risk of attack (limited intentional attacks and some connectivity/remote connections)
|
Cyber security ambitionCyber security is an important driver for ship and business operation
|
| Suggested level | Systems to be evaluated | Cyber risk category | Cyber security ambition |
|---|---|---|---|
Suggested levelCyber secure ESSENTIAL*
*Can consider to add entertainment, passenger or payment systems to (+) scope |
Systems to be evaluatedStandard essential and important ship systems (propulsion, power, fire, navigation, communication, …)
|
Cyber risk categoryMedium risk of attack (limited intentional attacks and some connectivity/remote connections)
|
Cyber security ambitionCyber security is an important driver for ship and business operation
|
| Suggested level | Systems to be evaluated | Cyber risk category | Cyber security ambition |
|---|---|---|---|
Suggested levelCyber secure ADVANCED(+)
*Additional systems required for Autonomous operation recommended as (+) systems |
Systems to be evaluatedStandard scope and additional IT (information) and/or OT (control and monitoring) systems
|
Cyber risk categoryHigh risk of attack (intentional attacks probable and high level of connectivity/remote connections)
|
Cyber security ambitionCyber security is crucial for ship safety and operational objective of vessel
|
| Suggested level | Systems to be evaluated | Cyber risk category | Cyber security ambition |
|---|---|---|---|
Suggested levelCyber secure ADVANCED
|
Systems to be evaluatedStandard essential and important SOLAS ship systems (propulsion, power, fire, navigation, communication, …)
|
Cyber risk categoryHigh risk of attack (intentional attacks probable and high level of connectivity/remote connections)
|
Cyber security ambitionCyber security is crucial for ship safety and operational objective of vessel
|
Existing vessel
| Suggested level | Systems to be evaluated | Cyber risk category | Cyber security ambition |
|---|---|---|---|
Suggested levelCyber secure
|
Systems to be evaluatedStandard essential and important SOLAS ship systems (propulsion, power, fire, navigation, communication, …)
|
Cyber risk categoryLow risk of attack (only unintentional attacks and low level of connectivity/remote connections)
|
Cyber security ambitionCyber security at least fulfilling minimum compliance with laws and regulation
|
| Suggested level | Systems to be evaluated | Cyber risk category | Cyber security ambition |
|---|---|---|---|
Suggested levelCyber secure
|
Systems to be evaluatedStandard essential and important SOLAS ship systems (propulsion, power, fire, navigation, communication, …)
|
Cyber risk categoryMedium risk of attack (limited intentional attacks and some connectivity/remote connections)
|
Cyber security ambitionCyber security is an important driver for ship and business operation
|
| Suggested level | Systems to be evaluated | Cyber risk category | Cyber security ambition |
|---|---|---|---|
Suggested levelCyber secure(+) or Cyber secure ESSENTIAL(+)*
*Drilling, DP and ESD recommended as (+) systems |
Systems to be evaluatedStandard scope and additional IT (information) and/or OT (control and monitoring) systems
|
Cyber risk categoryMedium risk of attack (limited intentional attacks and some connectivity/remote connections)
|
Cyber security ambitionCyber security is an important driver for ship and business operation
|
| Suggested level | Systems to be evaluated | Cyber risk category | Cyber security ambition |
|---|---|---|---|
Suggested levelCyber secure or Cyber secure ESSENTIAL*
*Can consider to add entertainment, passenger or payment systems to (+) scope |
Systems to be evaluatedStandard essential and important ship systems (propulsion, power, fire, navigation, communication, …)
|
Cyber risk categoryMedium risk of attack (limited intentional attacks and some connectivity/remote connections)
|
Cyber security ambitionCyber security is an important driver for ship and business operation
|
| Suggested level | Systems to be evaluated | Cyber risk category | Cyber security ambition |
|---|---|---|---|
Suggested levelCyber secure ADVANCED
|
Systems to be evaluatedStandard essential and important SOLAS ship systems (propulsion, power, fire, navigation, communication, …)
|
Cyber risk categoryHigh risk of attack (intentional attacks probable and high level of connectivity/remote connections)
|
Cyber security ambitionCyber security is crucial for ship safety and operational objective of vessel
|
Cyber Secure class notation
Access the service page
Cyber security services
Access the landing page