CLASSNK has released guidelines outlining new regulatory requirements for cybersecurity on ships.

The classification society’s Guidelines for Cyber resilience of on-board systems and equipment expounds new IACS unified requirements to support considerations around cybersecurity measures.

The International Association of Classification Societies has established unified requirements E26 for ships and E27 for onboard systems and equipment, and they are due to come into force next year.

E26 aims to ensure the secure integration of operational technology and information technology equipment into the vessel’s network during the design, construction, commissioning and operational life of the ship.

And E27 aims to ensure system integrity is secured and hardened by third-party equipment suppliers.

“The unified requirements will be applied to new ships contracted for construction on and after 1 July 2024,” ClassNK said.

“This represents the first instance in which cybersecurity is incorporated into class rules as mandatory requirements.

“To facilitate industry’s smooth compliance with them, ClassNK has published the guidelines primarily for manufacturers and suppliers of marine systems and equipment, which describe the interpretation of each requirement of UR E27 as well as the approval procedure, including document reviews and surveys.”

IACS unified requirements are the minimum class requirements shared by members of the International Association of Classification Societies.