The purpose of this study is evaluate and quantify the risks of intentional modification, or other corruption, of satellite-based vessel monitoring system (VMS) data. It. will focus upon the identification of the security weaknesses of existing VMS equipment and evaluate both the technical difficulty and cost of exploiting those weaknesses. It will provide a series of recommendations as to how the identified risks might be eliminated as well as recommendations for future equipment that could be used as the basis for the formulation of a series of norms and standards for the security of VMS equipment.
DATARISK breaks down neatly into three macro activities: data gathering, data analysis and physical testing, and the formulation of conclusions and recommendations. In terms of resource time, the first two activities are easily the most time consuming, each representing some 40% of the total activity, the remaining 20% devoted to organizing the gathered and analyzed data into easily understandable and usable form.