Hacking on a boat: Fun with onboard maritime systems

Presented at Still Hacking Anyway (SHA2017), Aug. 5, 2017, 6:30 p.m. (60 minutes).

Modern vessels are equipped with all kinds of electronics, to easy navigation, assist in manoevring and -by far the most important- assist in the safety of the ship and its passengers. In this talk, we will evaluate the security principles that have been used to design these systems and how we can break into the onboard systems. #NetworkSecurity #PhysicalSecurity #DeviceSecurity Unfortunately, information security has not been a primal design choice for many onboard systems on board of a ship. However, these systems are vital for a safe and efficient passage. In recent history, physical separation of onboard systems limited the amount of attack vectors, but with an increasing number of hyperconnected systems, the physical access controls no longer offer sufficient defence against attacks. As ships are communicating constantly with the outside world. either to send out their positions or call for assistance in case of emergencies, connecting multiple systems introduces new security challenges.

Presenters:

  • Vincent Ossewaarde
    Vincent Ossewaarde is active as a whitehat hacker, security specialist and is a specialist in the field of payment security. He is appointed as PCI-DSS QSA and holds various degrees in information security (CISSP). He is part of the national advisory board on information security and works as a QSA and consultant in the payment industry. I have been active in the hacker community since its inception, starting with the intergalactic hacking party in Paradiso. I have attended and participated in all events since, including HEU, HIP, HAL, WTH, HAR and OHM. Since HIP, we have started our illegal bootleg bar Loussche Luyffel. As a speaker, I have done various talks on information security and payment security. I am also a boating enthousiast ;-)

Links:

Similar Presentations: