Cyber-resilience is an increasing concern for autonomous navigation of marine vessels. This paper scrutinizes cyber-resilience properties of marine navigation through a prism with three edges: multiple sensor information fusion, diagnosis of not-normal behaviours, and change detection. It proposes a two-stage estimator for diagnosis and mitigation of sensor signals used for coastal navigation. Developing a Likelihood Field approach, the first stage extracts shoreline features from radar and matches them to the electronic navigation chart. The second stage associates buoy and beacon features from the radar with chart information. Using real data logged at sea tests combined with simulated spoofing, the paper verifies the ability to timely diagnose and isolate an attempt to compromise position measurements. A new approach is suggested for high level processing of received data to evaluate their consistency, which is agnostic to the underlying technology of the individual sensory input. A combined generalized likelihood ratio test using both parametric Gaussian modelling and Kernel Density Estimation is suggested and compared with a detector using only either of two. The paper shows how the detection of deviations from nominal behaviour is possible when the navigation sensor is under attack or defects occur.
Fault-tolerance is crucial to maintain safety in offshore operations. The objective of this paper is to show how systematic analysis and design of fault-tolerance is conducted for a complex automation system, exemplified by thruster assisted Position-mooring. Using redundancy as required by classification societies' class notations for offshore position controlled vessels, the paper shows how violations of normal behaviour of main components can be detected and isolated. Using a functional service philosophy, diagnosis procedures are auto-generated based on provable correct graph analysis methods. Functional faults that are only detectable, are rendered isolable through an active isolation approach. Once functional faults are isolated, they are handled by fault accommodation techniques to meet overall control objectives specified by class requirements. The paper illustrates the generic methodology by a system to handle faults in mooring lines, sensors or thrusters. Simulations and model basin experiments are carried out to validate the concept for scenarios with single or multiple faults. The results demonstrate that enhanced availability and safety are obtainable with this design approach. While methods are introduced at a tutorial level, the paper is original by providing a total Position-mooring system design that ensures resilience to any single fault and to selected multiple faults.