Database
Suppliers Case Studies Use Cases Terms
IIoT Top 100
 IoT Spotlight Podcast
Contact
EN
中文
XM Cyber > Case Studies > Securing IT Infrastructure of Europe’s Largest Seaports: A Case Study of Hamburg Port Authority

Securing IT Infrastructure of Europe’s Largest Seaports: A Case Study of Hamburg Port Authority

XM Cyber Logo
Technology Category
  • Cybersecurity & Privacy - Network Security
  • Platform as a Service (PaaS) - Application Development Platforms
Applicable Industries
  • Construction & Infrastructure
  • National Security & Defense
Use Cases
  • Cybersecurity
  • Tamper Detection
Services
  • Cybersecurity Services
About The Customer

The Hamburg Port Authority (HPA) is a local governmental agency that manages all harbor-related infrastructure for the city of Hamburg, Germany. This includes streets and bridges, railways, and water infrastructure. The HPA oversees one of Europe's largest and busiest seaports, which is a key trade lane connecting Eastern Europe to the rest of the world. The port provides over 150,000 jobs and processes more than 135 million tons of cargo with an annual 9 million TEU capacity, expected to double by 2025.

The Challenge

The Hamburg Port Authority (HPA), responsible for managing all harbor-related infrastructure for the city of Hamburg, faced significant challenges in securing its vast IT infrastructure. This infrastructure included 350 kilometers of fiber cable, 850 routers and switches, 500 servers in two data centers, and thousands of computers and smartphones running over 600 applications across 63 separate locations. The HPA IT managers identified several security challenges, including over 100 local administrators managing applications without support or follow-up, applications without a designated owner responsible for security or lifecycle management, and a flat network structure focused more on performance and flexibility than security. Additionally, HPA workers were not optimally aware of best security practices, leading to concerns about unidentified network exposures.

The Solution

To address these challenges, HPA partnered with XM Cyber, a global leader in Attack Path Management. They implemented XM Cyber’s Attack Path Management Platform to identify and address security issues on a day-to-day basis. The platform provided HPA with a more comprehensive view of their overall security posture, identifying issues such as unsecured databases, missing patches, and unsecured test machines. The platform's attack-centric risk analysis identified domain credential issues as a significant security challenge. To address this, HPA IT leaders reduced the number of domain admins and streamlined the use of different accounts for separate needs. XM Cyber’s professional services team provided support in analyzing and finding the best possible solutions for issues HPA was unsure about.

Operational Impact

  • The implementation of XM Cyber’s Attack Path Management Platform resulted in a more secure IT infrastructure for HPA. The platform provided HPA leaders with deeper visibility into vulnerabilities and changes across their entire IT infrastructure. The real data contextualization of exploits and continuous, automated protection allowed for the surfacing of security issues that would normally require numerous manual steps to discover. The risk-free attack simulations conducted in production enabled HPA leaders to run tests without the risk of disruption, a critical attribute in port operations where a small error can have significant real-world repercussions. The platform's focus on the one percent of IT and security operations that represent the greatest threat effectively eliminated 99% of HPA's cyber risk.

Quantitative Benefit

  • The platform identified several security issues, leading to immediate remediation efforts.

  • The number of domain admins was significantly reduced to address domain credential issues.

  • The platform's continuous, automated protection surfaced security issues that would normally take dozens of manual steps to discover.

Related Case Studies
IoT System for Tunnel Construction
Bridge monitoring in Hamburg Port
Transforming design and construction.
Bellas Landscaping
Condition Based Monitoring for Industrial Systems

Case Study missing?

Start adding your own!

Register with your work email and create a new case study profile for your business.

Add New Record

Related Case Studies.

Case Study
IoT System for Tunnel Construction
The Zenitaka Corporation ('Zenitaka') has two major business areas: its architectural business focuses on structures such as government buildings, office buildings, and commercial facilities, while its civil engineering business is targeted at structures such as tunnels, bridges and dams. Within these areas, there presented two issues that have always persisted in regard to the construction of mountain tunnels. These issues are 'improving safety" and "reducing energy consumption". Mountain tunnels construction requires a massive amount of electricity. This is because there are many kinds of electrical equipment being used day and night, including construction machinery, construction lighting, and ventilating fan. Despite this, the amount of power consumption is generally not tightly managed. In many cases, the exact amount of power consumption is only ascertained when the bill from the power company becomes available. Sometimes, corporations install demand-monitoring equipment to help curb the maximum power demanded. However, even in these cases, the devices only allow the total volume of power consumption to be ascertained, or they may issue warnings to prevent the contracted volume of power from being exceeded. In order to tackle the issue of reducing power consumption, it was first necessary to obtain an accurate breakdown of how much power was being used in each particular area. In other words, we needed to be able to visualize the amount of power being consumed. Safety, was also not being managed very rigorously. Even now, tunnel construction sites often use a 'name label' system for managing entry into the work site. Specifically, red labels with white reverse sides that bear the workers' names on both sides are displayed at the tunnel work site entrance. The workers themselves then flip the name label to the appropriate side when entering or exiting from the work site to indicate whether or not they are working inside the tunnel at any given time. If a worker forgets to flip his or her name label when entering or exiting from the tunnel, management cannot be performed effectively. In order to tackle the challenges mentioned above, Zenitaka decided to build a system that could improve the safety of tunnel construction as well as reduce the amount of power consumed. In other words, this new system would facilitate a clear picture of which workers were working in each location at the mountain tunnel construction site, as well as which processes were being carried out at those respective locations at any given time. The system would maintain the safety of all workers while also carefully controlling the electrical equipment to reduce unnecessary power consumption. Having decided on the concept, our next concern was whether there existed any kind of robust hardware that would not break down at the construction work site, that could move freely in response to changes in the working environment, and that could accurately detect workers and vehicles using radio frequency identification (RFID). Given that this system would involve many components that were new to Zenitaka, we decided to enlist the cooperation of E.I.Sol Co., Ltd. ('E.I.Sol') as our joint development partner, as they had provided us with a highly practical proposal.
Learn more
Case Study
Condition Based Monitoring for Industrial Systems
A large construction aggregate plant operates 10 high horsepower Secondary Crusher Drive Motors and associated conveyor belts, producing 600 tons of product per hour. All heavy equipment requires maintenance, but the aggregate producer’s costs were greatly magnified any time that the necessary maintenance was unplanned and unscheduled. The product must be supplied to the customers on a tight time schedule to fulfill contracts, avoid penalties, and prevent the loss of future business. Furthermore, a sudden failure in one of the drive motors would cause rock to pile up in unwanted locations, extending the downtime and increasing the costs.Clearly, preventative maintenance was preferable to unexpected failures. So, twice each year, the company brought in an outside vendor to attach sensors to the motors, do vibration studies, measure bearing temperatures and attempt to assess the health of the motors. But that wasn’t enough. Unexpected breakdowns continued to occur. The aggregate producer decided to upgrade to a Condition Based Monitoring (CBM) sensor system that could continually monitor the motors in real time, apply data analytics to detect changes in motor behavior before they developed into major problems, and alert maintenance staff via email or text, anywhere they happened to be.A wired sensor network would have been cost prohibitive. An aggregate plant has numerous heavy vehicles moving around, so any cabling would have to be protected. But the plant covers 400 acres, and the cable would have to be trenched to numerous locations. Cable wasn’t going to work. The aggregate producer needed a wireless solution.
Learn more
© 2015-2024 IoT ONE Limited | Privacy Policy

Contact us

Let's talk!
* Required
* Required
* Required
* Invalid email address
By submitting this form, you agree that IoT ONE may contact you with insights and marketing messaging.
No thanks, I don't want to receive any marketing emails from IoT ONE.
Submit

Thank you for your message!
We will contact you soon.