Integrating Cyber Threat Intelligence into Threat Modeling for Autonomous Ships Using PASTA and MISP

Integrating Cyber Threat Intelligence into Threat Modeling for Autonomous Ships Using PASTA and MISP

연구 분야: Safety

학회: 2025 IEEE International Conference on Cyber Security and Resilience (CSR)

Autonomous maritime systems rely on the complex interplay of operational technology (OT) and information technology (IT), making them increasingly vulnerable to cyber threats. This paper presents an integrated approach to autonomous ship cybersecurity by combining the Process for Attack Simulation and Threat Analysis (PASTA) threat modeling framework with Malware Information Sharing Platform (MISP) for cyber threat intelligence (CTI). The autonomous ship architecture is divided into three security layers, which include OT and IT assets, decision-making entities, and decision inputs. CTI is systematically integrated into dynamic threat models by mapping maritime-specific attack models to MITRE ATT&CK and MITRE ATLAS, enabling a structured and adaptive threat representation. The results demonstrate that integrating MISP with PASTA can improve situational awareness, facilitate realtime updates of threat models, and improve cybersecurity in autonomous maritime operations.