Integrating Cyber Threat Intelligence into Threat Modeling for Autonomous Ships Using PASTA and MISP

Erbas, Muhammed; Vanharanta, Jani; Paavola, Jarkko; Tsiopoulos, Leonidas; Vaarandi, Risto

Integrating Cyber Threat Intelligence into Threat Modeling for Autonomous Ships Using PASTA and MISP

Erbas, Muhammed; Vanharanta, Jani; Paavola, Jarkko; Tsiopoulos, Leonidas; Vaarandi, Risto (2025)

Avaa tiedosto

Erbas_et_al_Integrating_2025.pdf (990.0Kt)

Huom! Embargollinen tiedosto,
avautuu julkiseksi: 26.08.2027

Erbas, Muhammed

Vanharanta, Jani

Paavola, Jarkko

Tsiopoulos, Leonidas

Vaarandi, Risto

Institute of Electrical and Electronics Engineers

2025

doi:10.1109/csr64739.2025.11130108

Näytä kaikki kuvailutiedot

Julkaisun pysyvä osoite on
https://urn.fi/URN:NBN:fi-fe20251219122771

Tiivistelmä

Autonomous maritime systems rely on the complex interplay of operational technology (OT) and information technology (IT), making them increasingly vulnerable to cyber threats. This paper presents an integrated approach to autonomous ship cybersecurity by combining the Process for Attack Simulation and Threat Analysis (PASTA) threat modeling framework with Malware Information Sharing Platform (MISP) for cyber threat intelligence (CTI). The autonomous ship architecture is divided into three security layers, which include OT and IT assets, decision-making entities, and decision inputs. CTI is systematically integrated into dynamic threat models by mapping maritime-specific attack models to MITRE ATT&CK and MITRE ATLAS, enabling a structured and adaptive threat representation. The results demonstrate that integrating MISP with PASTA can improve situational awareness, facilitate realtime updates of threat models, and improve cybersecurity in autonomous maritime operations

Kokoelmat

Julkaisut