Click here to download the Guidelines on Transitional Measures for Shipowners Selling Ships for Recycling, 2nd Edition 2016.
BIMCO, ICS, INTERCARGO and INTERTANKO, supported by NATO Shipping Centre, jointly developed the “Guidelines for Owners, Operators and Masters for Protection against Piracy in the Gulf of Guinea Region”. Click here to download it from the IMO webpage.
In complying with MARPOL Annex V, the management of the residues of solid bulk cargoes depends primarily on the classification of a solid bulk cargo as to whether it is harmful to the marine environment (HME) or non-HME. The INTERCARGO General guidance on shippers declaration on cargoes HME properties, version 1.1, Dec 2015 provides necessary information for members reference. Click here to download this document.
Lloyd's Register, the UK P&I Club, and INTERCARGO have produced a pocket guide for ships' officers and agents who arrange cargoes for loading.
This pocket guide outlines the precautions to be taken before accepting solid bulk cargoes for shipment; sets out procedures for safe loading and carriage; details the primary hazards associated with different types of cargo; and underlines the importance of proper cargo declarations. A quick reference checklist and flowchart summarise the steps to be followed.
PDF version of both the pocket guide and flowchart can be downloaded here.
3 Feb 2017:-
Although many individual organisations are developing guidance and material on cyber security, there are three global platforms studying and analysing cyber security issues:
• Two Committees at IMO, Marine Safety Committee (MSC) and Facilitation Committee (FAL);
• A joint working group (JWG/CS) led by IACS with members of INTERCARGO and other shipping industry associations and insurance (IUMI); and
• A shipping industry working group (IWG) with members including INTERCARGO, and IUMI.
2. Development with the platforms
2.1 IMO’s MSC 96 approved, in May 2016, a circular on MSC.1-Circ.1526 - Interim Guidelines on Maritime Cyber Risk Management. It is more relevant to the Administrations.
2.2 JWG/CS had its 1st meeting on 11 Nov 2016 and is planning its 2nd meeting in the next few weeks. The outcome of the 1st meeting included general agreement to a list of the 12 Recommendations as basis of initial deliverables that the JWG/CS will work on. The 12 Recommendations are:
1): Procedure for Software Updates
2): Manual Backup
3): Contingency Post Failure
4): Network Architecture
5): Data Assurance
6): Physical Security
7): Network Security
8): Vessels’ System Design
9): Programmable System Equipment Inventory
11): Remote Update / Access
12): Communications and Interfaces
Topics related risk assessment process will be discussed likely in a JWG/CS meeting in Mar 2017.
2.3 IWG developed a set of industry Guidelines on cybersecurity on board ships and submitted it by MSC 96/4/1 to IMO’s MSC 96 for reference on 4 Feb 2016 (click here to download).
3. Draft revision to the industry “Guidelines on cybersecurity on board ships”
20 Jun 2016: -
In the past, many people took cyber risks more related to tankers and container ships with obvious reasons – cargo related financial losses and potential security issues have caught sufficient attention of shipping people. Now cyber risks become a common concern. An increased regulatory burden may not be far away and shipowners should start reviewing their cyber security now.
Development at IMO
A set of Interim Guidelines on Maritime Cyber Risk Management was approved during MSC 96 in May 2016 and published as a circular MSC.1/Circ.1526 on 1 Jun 2016 (click here to download). It provides;
• high-level recommendations on maritime cyber risk management to safeguard shipping from current and emerging cyberthreats and vulnerabilities.
• functional elements that support effective cyber risk management.
It is expected that the guidance in the circular be supplemented by further guidance from Flag Administrations, national and international standards organizations and industry associations. The industry Associations of BIMCO, CLIA, ICS, INTERCARGO and INTERTANKO has published “The Guidelines on Cyber Safety and Security Onboard Ships” in Jan 2016 and can be downloaded from http://www.intercargo.org/en/component/attachments/download/195.html.
Marine Insurance Clause
Many colleagues may have noted that there is an “Institute Cyber Attack Exclusion Clause Cl. 380”. When I read the presentation “Cyber Risks and Considerations for the Marine Insurance, American Marine Insurance Forum, Feb 26, 2015” by Wiggin and Dana (click here to download), I found it quite complicated for understanding. But it is clear to me that it cyber rise has become an important issue of insurance industry.
The insurance market for cyber insurance is maturing at a rapid pace with an increasing number of insurers entering the standalone market. More sophisticated threats have widened the focus from purely data breach to include property and business interruption. For current market trends, the webpage at http://www.miller-insurance.com/Independent/Reinsurance-cyber/Reinsurance-cyber.aspx shows
• One of the most common cyber exclusions is the Institute Cyber Attack Exclusion Clause CL380. The CL380 is well-established and widely adopted, although its application is inconsistent despite the increase in demand for cyber cover.
• The exclusion has attracted the most attention in the energy market, where awareness of the potential for large first party property damage resulting from a cyber attack has been growing.
• The wide use of CL380 across a broad range of marine, energy and industrial property insurance policies means insureds are without cover for physical loss or damage stemming from cyber-related incidents.
• There has been evidence to suggest that the exclusion trend is abating however. In 2013, Lloyd’s Kiln syndicate began offering SCADA insurance while in early 2014 AIG launched a new policy that covers property damage and bodily injury exposures. Other insurers are now developing similar covers.
Development of P&I industry
On 9 Jun 2016, it is pleased to note that the North P&I Club published 7-page briefing on Cyber risks in shipping (http://www.nepia.com/media/435561/LP-Briefing-Ships-Cyber-Risks-in-Shipping-June-2016.PDF). While the briefing focuses on raising awareness of the cyber threats of unauthorised access and malicious attack, it is helpful to read the discussion in the section Cyber Risk and P&I Cover.
P&I policies cover liabilities arising from cyber risks in the same way as those arising from traditional risks, subject to P&I club rules. The rules generally require shipowners to show they have taken all reasonable measures to prevent losses and liabilities arising. Given the increasing use of technology on board and the potential impact of cyber risks on vessel operations, a proper cyber security policy should now be a key feature of an owner’s risk management programme.
IACS and its members
I joined a DNV GL Webinar presentation with appreciation and learnt that: some IACS members such as ABS and LR published cyber security guidelines and DNV GL is developing its own. It was interested to know the following result of a poll during presentation: - Training/awareness and lack of standards turned to be priority issues.
ABS Guidance at http://ww2.eagle.org/en/rules-and-resources/rules-and-guides.html#/content/dam/eagle/rules-and-guides/current/other/221_Guidance_Notes_Cyber_Safety_Principles_Maritime_Operations
LR Guidance at http://www.lr.org/en/news/news/cyber-shipping-LR-issues-technical-guidance-for-ship-design-in-a-digital-age.aspx
Comments and views
Comments and views from members are welcome and appreciated.
6 Jan 2016:-
The cyber guidelines launched on 4th January 2016 are a first for the shipping industry, developed by international shipping associations, comprising BIMCO, CLIA, ICS, INTERCARGO and INTERTANKO -
and with support from a wide range of stakeholders. The aim is to provide the shipping industry with clear and comprehensive information on cyber security risks to ships enabling shipowners to take measures to protect against attacks and to deal with the eventuality of cyber incidents onboard a ship.
Cyber threats are changing all the time – the industry associations including INTERCARGO will regularly update the cyber guidelines to ensure shipping companies have the latest information available.
The copy of the Guidelines on Cyber Security Onboard Ships is free to download here.
Your privacy is important to us. To better protect your privacy we provide this notice explaining our online information practices and the choices you can make about the way your information is collected and used. To make this notice easy to find, we make it available on our homepage and at every point where personally identifiable information may be requested.
This notice applies to all information collected or submitted on the INTERCARGO website at www.intercargo.org. On some pages, you can make requests, and register to receive information. The types of personal information collected at these pages are:
We maintain databases on State control inspections and experiences when loading and unloading dry bulk cargoes at Terminals. The information collected is limited to that identified on the relevant forms.
You may elect to join INTERCARGO by submitting an online form. The information collected is limited to that identified on the relevant forms, and will be stored in membership databases.
Our webserver is not set up to generally track, collect or distribute personal information about its visitors. It does recognise the home server of visitors, but not email addresses. For example, we can tell which Internet Service Provider our visitors use, but not the names, addresses or other information about our visitors that would allow us to identify the particular visitors to our sites. This information is used only for internal purposes. For example, we compile statistics that show the daily number of visitors to our sites, the daily requests we receive for particular files on our web sites, and what countries those requests come from. These aggregated statistics are used internally to better provide services to the members and may also be provided to others, but again, the statistics contain no personal information and cannot be used to gather such information.
We do, however, collect additional information, such as, but not limited to Internet IP addresses when accessing the Member's only areas of the site.
WE DO NOT SELL, TRADE, EXCHANGE OR OTHERWISE MAKE AVAILABLE ANY PERSONALLY IDENTIFIABLE INFORMATION TO ANY OTHER COMPANY OR ORGANISATION, except where it is explicitly stated that information may be shared (for example in the Inspection Reporting form).
We use return email addresses to answer the email we receive. Such addresses are not used for any other purpose and are not shared with outside parties.
Finally, we never use or share the personally identifiable information provided to us online in ways unrelated to the ones described above without also providing you an opportunity to opt-out or otherwise prohibit such unrelated uses.
You may set your web browser to notify you of cookie placement requests or decline cookies completely. You can delete the files that contain cookies; those files are stored as part of your Internet browser under the website address www.intercargo.org
To prevent unauthorised access, maintain data accuracy, and ensure the correct use of information, we have put in place appropriate physical, electronic, and managerial procedures to safeguard and secure the information we collect online.
To protect your privacy and security, we will also take reasonable steps to verify your identity before granting access or making corrections.