{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,22]],"date-time":"2026-04-22T19:12:36Z","timestamp":1776885156620,"version":"3.51.2"},"publisher-location":"Cham","reference-count":38,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783031823480","type":"print"},{"value":"9783031823497","type":"electronic"}],"license":[{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025]]},"DOI":"10.1007\/978-3-031-82349-7_24","type":"book-chapter","created":{"date-parts":[[2025,4,3]],"date-time":"2025-04-03T16:43:04Z","timestamp":1743698584000},"page":"361-381","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":4,"title":["Exploring Anomaly Detection for\u00a0Marine Radar Systems"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-8376-2726","authenticated-orcid":false,"given":"Antoine","family":"Saillard","sequence":"first","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0002-7571-0555","authenticated-orcid":false,"given":"Konrad","family":"Wolsing","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7252-4186","authenticated-orcid":false,"given":"Klaus","family":"Wehrle","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7631-6456","authenticated-orcid":false,"given":"Jan","family":"Bauer","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2025,4,2]]},"reference":[{"key":"24_CR1","doi-asserted-by":"publisher","unstructured":"Amro, A., et\u00a0al.: From click to sink: Utilizing ais for command and control in maritime cyber attacks. In: ESORICS (2022). https:\/\/doi.org\/10.1007\/978-3-031-17143-7_26","DOI":"10.1007\/978-3-031-17143-7_26"},{"key":"24_CR2","doi-asserted-by":"publisher","unstructured":"Amro, A., et\u00a0al.: Navigation data anomaly analysis and detection. Information 13(3) (2022). https:\/\/doi.org\/10.3390\/info13030104","DOI":"10.3390\/info13030104"},{"key":"24_CR3","doi-asserted-by":"publisher","unstructured":"Awan, M.S.K., et\u00a0al.: Understanding the Vulnerabilities in Digital Components of an Integrated Bridge System\u00a0(IBS). JMSE 7(10) (2019). https:\/\/doi.org\/10.3390\/jmse7100350","DOI":"10.3390\/jmse7100350"},{"key":"24_CR4","doi-asserted-by":"publisher","unstructured":"Balduzzi, M., et\u00a0al.: A security evaluation of AIS automated identification system. In: ACSAC (2014). https:\/\/doi.org\/10.1145\/2664243.2664257","DOI":"10.1145\/2664243.2664257"},{"key":"24_CR5","doi-asserted-by":"publisher","unstructured":"Basels, F., et\u00a0al.: Demo: Maritime radar systems under attack. Help is on the way! In: IEEE LCN (2024). https:\/\/doi.org\/10.1109\/LCN60385.2024.10639793","DOI":"10.1109\/LCN60385.2024.10639793"},{"key":"24_CR6","doi-asserted-by":"publisher","unstructured":"Bauer, J., et\u00a0al.: Phish & Ships and Other Delicacies from the Cuisine of Maritime Cyber Attacks. In: MARESEC (2023). https:\/\/doi.org\/10.5281\/zenodo.8406034","DOI":"10.5281\/zenodo.8406034"},{"key":"24_CR7","doi-asserted-by":"publisher","unstructured":"Bhatti, J., et\u00a0al.: Hostile control of ships via false GPS signals: demonstration and detection. J. Institute of Nav. 64(1) (2017). https:\/\/doi.org\/10.1002\/navi.183","DOI":"10.1002\/navi.183"},{"key":"24_CR8","unstructured":"Bole, A., et\u00a0al.: Radar and ARPA Manual \u2013 Radar and Target Tracking for Professional Mariners, Yachtsmen and Users of Marine Radar. Butterworth-Heinemann Ltd, 2nd edn. (2009)"},{"key":"24_CR9","doi-asserted-by":"publisher","unstructured":"Caprolu, M., et\u00a0al.: Vessels cybersecurity: issues, challenges, and the road ahead. IEEE Commun. Mag. 58(6) (2020). https:\/\/doi.org\/10.1109\/MCOM.001.1900632","DOI":"10.1109\/MCOM.001.1900632"},{"key":"24_CR10","doi-asserted-by":"publisher","unstructured":"Cohen, S., et\u00a0al.: RadArnomaly: protecting radar systems from data manipulation attacks. Sensors 22(11) (2022). https:\/\/doi.org\/10.3390\/s22114259","DOI":"10.3390\/s22114259"},{"key":"24_CR11","doi-asserted-by":"publisher","unstructured":"Dabrowski, A., et\u00a0al.: A digital interface for imagery and control of a Navico\/Lowrance broadband radar. In: Robotic Sailing (2011). https:\/\/doi.org\/10.1007\/978-3-642-22836-0_12","DOI":"10.1007\/978-3-642-22836-0_12"},{"key":"24_CR12","doi-asserted-by":"publisher","unstructured":"Dagdilelis, D., et\u00a0al.: Cyber-resilience for marine navigation by information fusion and change detection. Ocean Eng. 266 (2022). https:\/\/doi.org\/10.1016\/j.oceaneng.2022.112605","DOI":"10.1016\/j.oceaneng.2022.112605"},{"key":"24_CR13","doi-asserted-by":"publisher","unstructured":"Hemminghaus, C., et\u00a0al.: BRAT: a bridge attack tool for cyber security assessments of maritime systems. TransNav 15(1) (2021). https:\/\/doi.org\/10.12716\/1001.15.01.02","DOI":"10.12716\/1001.15.01.02"},{"key":"24_CR14","unstructured":"IEC\u00a061162-450:2018: Maritime navigation and radiocommunication equipment and systems \u2013 Digital interfaces \u2013 Part 450: Multiple talkers and multiple listeners \u2013 Ethernet interconnection (2018)"},{"key":"24_CR15","unstructured":"IEC\u00a061162-460:2018: Maritime navigation and radiocommunication equipment and systems \u2013 Digital interfaces \u2013 Part 460: Multiple talkers and multiple listeners \u2013 Ethernet interconnection \u2013 Safety and security (2018)"},{"key":"24_CR16","unstructured":"IMO Resolution A.477(12): Performance Standards for Radar Equipment. Resolution, International Maritime Organization (1982)"},{"key":"24_CR17","doi-asserted-by":"crossref","unstructured":"Katsikas, S., et\u00a0al.: Chapter: Cybersecurity of the Unmanned Ship. Cybersecurity Issues in Emerging Technologies, Taylor & Francis Group, 1st edn. (2021)","DOI":"10.1201\/9781003109952-2"},{"key":"24_CR18","unstructured":"Katsilieris, F., et\u00a0al.: Detection of malicious AIS position spoofing by exploiting radar information. In: FUSION (2013)"},{"key":"24_CR19","doi-asserted-by":"crossref","unstructured":"Kavallieratos, G., et\u00a0al.: Modelling shipping 4.0: a reference architecture for the cyber-enabled ship. In: ACIIDS (2020)","DOI":"10.1007\/978-3-030-42058-1_17"},{"key":"24_CR20","doi-asserted-by":"publisher","unstructured":"Krim\u00a0Rahaoui, A., et\u00a0al.: Adaptive threshold for anomaly detection in ATM radar data streams. In: ICPRAI (2022). https:\/\/doi.org\/10.1007\/978-3-031-09282-4_36","DOI":"10.1007\/978-3-031-09282-4_36"},{"key":"24_CR21","doi-asserted-by":"publisher","unstructured":"Lin, C.Y., et\u00a0al.: Timing-based anomaly detection in SCADA networks. In: CRITIS (2018). https:\/\/doi.org\/10.1007\/978-3-319-99843-5_5","DOI":"10.1007\/978-3-319-99843-5_5"},{"key":"24_CR22","doi-asserted-by":"publisher","unstructured":"Longo, G., et\u00a0al.: Electronic attacks as a cyber false flag against maritime radars systems. In: IEEE LCN (2023). https:\/\/doi.org\/10.1109\/LCN58197.2023.10223370","DOI":"10.1109\/LCN58197.2023.10223370"},{"key":"24_CR23","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2023.3282132","author":"G Longo","year":"2023","unstructured":"Longo, G., et al.: Attacking (and defending) the maritime radar system. IEEE Trans. Inf. Forensics Secur. (2023). https:\/\/doi.org\/10.1109\/TIFS.2023.3282132","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"24_CR24","doi-asserted-by":"publisher","unstructured":"Mirsky, Y., et\u00a0al.: Kitsune: an ensemble of autoencoders for online network intrusion detection. In: NDSS (2018). https:\/\/doi.org\/10.14722\/ndss.2018.23204","DOI":"10.14722\/ndss.2018.23204"},{"key":"24_CR25","unstructured":"OpenCPN: OpenCPN Chart Plotter (2023). https:\/\/github.com\/OpenCPN\/OpenCPN"},{"key":"24_CR26","unstructured":"Packer, J.: Bridge Command (2023). https:\/\/github.com\/bridgecommand\/bc"},{"key":"24_CR27","doi-asserted-by":"publisher","unstructured":"Pavur, J., et\u00a0al.: A tale of sea and sky on the security of maritime VSAT communications. In: IEEE Symposium on Security and Privacy (2020). https:\/\/doi.org\/10.1109\/SP40000.2020.00056","DOI":"10.1109\/SP40000.2020.00056"},{"key":"24_CR28","doi-asserted-by":"publisher","unstructured":"von Rechenberg, M., et\u00a0al.: Guiding ship navigators through the heavy seas of cyberattacks. In: MARESEC (2022). https:\/\/doi.org\/10.5281\/zenodo.7148794","DOI":"10.5281\/zenodo.7148794"},{"key":"24_CR29","doi-asserted-by":"publisher","unstructured":"de\u00a0Riberolles, T., et\u00a0al.: Characterizing radar network traffic: a first step towards spoofing attack detection. In: IEEE Aerospace Conference (2020). https:\/\/doi.org\/10.1109\/AERO47225.2020.9172292","DOI":"10.1109\/AERO47225.2020.9172292"},{"key":"24_CR30","doi-asserted-by":"publisher","unstructured":"de Riberolles, T., et al.: Anomaly detection for ICS based on deep learning: a use case for aeronautical radar data. Ann. Telecommun., 1\u201313 (2022). https:\/\/doi.org\/10.1007\/s12243-021-00902-7","DOI":"10.1007\/s12243-021-00902-7"},{"key":"24_CR31","unstructured":"Roesch, M., et\u00a0al.: Snort: lightweight intrusion detection for networks. In: LISA (1999)"},{"key":"24_CR32","unstructured":"SOLAS Chapter V: Safety of Navigation (2009), IMO"},{"key":"24_CR33","doi-asserted-by":"publisher","unstructured":"Spravil, J., et\u00a0al.: Detecting maritime GPS spoofing attacks based on NMEA sentence integrity monitoring. JMSE 11(5) (2023). https:\/\/doi.org\/10.3390\/jmse11050928","DOI":"10.3390\/jmse11050928"},{"key":"24_CR34","doi-asserted-by":"publisher","unstructured":"Svilicic, B., et\u00a0al.: Towards a cyber secure shipboard radar. J. Navigation 73(3) (2020). https:\/\/doi.org\/10.1017\/S0373463319000808","DOI":"10.1017\/S0373463319000808"},{"issue":"1","key":"24_CR35","doi-asserted-by":"publisher","first-page":"129","DOI":"10.1007\/s13437-019-00162-2","volume":"18","author":"K Tam","year":"2019","unstructured":"Tam, K., Jones, K.: MaCRA: a model-based framework for maritime cyber-risk assessment. WMU J. Marit. Aff. 18(1), 129\u2013163 (2019). https:\/\/doi.org\/10.1007\/s13437-019-00162-2","journal-title":"WMU J. Marit. Aff."},{"key":"24_CR36","doi-asserted-by":"publisher","unstructured":"Wolsing, K., et\u00a0al.: Network attacks against marine radar systems: a taxonomy, simulation environment, and dataset. In: IEEE LCN (2022). https:\/\/doi.org\/10.1109\/LCN53696.2022.9843801","DOI":"10.1109\/LCN53696.2022.9843801"},{"key":"24_CR37","doi-asserted-by":"publisher","unstructured":"Wolsing, K., et\u00a0al.: Can industrial intrusion detection be simple? In: ESORICS (2022). https:\/\/doi.org\/10.1007\/978-3-031-17143-7_28","DOI":"10.1007\/978-3-031-17143-7_28"},{"key":"24_CR38","doi-asserted-by":"publisher","unstructured":"Wolsing, K., et\u00a0al.: IPAL: breaking up silos of protocol-dependent and domain-specific industrial intrusion detection systems. In: RAID (2022). https:\/\/doi.org\/10.1145\/3545948.3545968","DOI":"10.1145\/3545948.3545968"}],"container-title":["Lecture Notes in Computer Science","Computer Security. ESORICS 2024 International Workshops"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-82349-7_24","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,4,3]],"date-time":"2025-04-03T16:43:07Z","timestamp":1743698587000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-82349-7_24"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025]]},"ISBN":["9783031823480","9783031823497"],"references-count":38,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-82349-7_24","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025]]},"assertion":[{"value":"2 April 2025","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"The authors have no competing interests to declare that are relevant to the content of this article.","order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Disclosure of Interests"}},{"value":"ESORICS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"European Symposium on Research in Computer Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Bydgoszcz","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Poland","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2024","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"16 September 2024","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"20 September 2024","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"29","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"esorics2024","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/esorics2024.org","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}