Ship Communication Systems

 Ship Systems  Communications Series 4 Solutions & Systems Technical Guide

Ship Communication Systems: A Complete Technical Overview

Introduction · Regulatory Requirements · Performance Standards · Constraints · Market Trends — Everything maritime professionals need to know

Captain Paul
Captain Paul
Maritime Cybersecurity Consultant · Ship Systems & OT Security · July 2026
吝 What This Article Covers
Part 1

Introduction: GMDSS architecture, satellite and radio communication equipment, and internal shipboard communication systems.

Part 2

Regulatory Requirements: SOLAS Ch.IV, GMDSS mandatory equipment by sea area, ITU Radio Regulations, and Inmarsat service requirements.

Part 3

Performance Standards: GMDSS alerting, EPIRB, SART, VHF/MF/HF performance requirements, and VSAT throughput standards.

Part 4

Constraints: Bandwidth limitations, satellite outages, cyber vulnerabilities of VSAT/Inmarsat, and jamming/spoofing risks.

Part 5

Market Trends: LEO satellite constellations (Starlink, OneWeb), GMDSS modernisation, and maritime broadband convergence.

Part 1 — Introduction to Ship Communication Systems

Ship communication systems serve two fundamentally different purposes that must never be conflated: safety and distress communications (mandated by SOLAS and primarily addressed by the GMDSS framework) and operational and commercial communications (VSAT, crew internet, fleet management data). The design, maintenance, and cybersecurity approach for these two categories must be kept entirely separate.

From a cybersecurity perspective, ship communication systems represent the primary interface between the vessel's internal IT/OT network and the external internet. VSAT terminals, LTE/5G gateways, and Inmarsat Fleet Broadband modems are the most common entry points for cyber attacks on commercial shipping — making communication system security one of the highest-priority concerns in maritime OT cybersecurity.

 Core Communication Equipment at a Glance
System Technology Primary Use
VHF Radio (DSC)156–174 MHz, Ch.16 distress, Ch.70 DSCShort-range distress, port, ship-to-ship
MF/HF Radio (DSC)1.6–30 MHz, DSC on 2187.5 / 8414.5 kHzMedium/long-range distress & safety
Inmarsat (FleetBB / C / Fleet One)L-band GEO satellite, global coverageGMDSS SafetyNET, SSAS, data
VSAT (Ku / Ka / C-band)GEO satellite broadband, 0.5–100 MbpsCrew internet, fleet management, OT remote monitoring
LEO Satellite (Starlink, OneWeb)Low Earth Orbit, <50ms latency, up to 350 MbpsHigh-bandwidth broadband, real-time data
Iridium (GMDSS / SSAS)LEO L-band, true global (pole-to-pole)SSAS, GMDSS backup, polar routes
EPIRB / SART / AIS-SART406 MHz COSPAS-SARSAT, 9 GHz X-band, AIS VHFDistress alerting & SAR location
SSAS (Ship Security Alert)Inmarsat-C or Iridium covert alertPiracy / security incident covert alert to CSO




Part 2 — Regulatory Requirements

GMDSS (Global Maritime Distress and Safety System) is the cornerstone of maritime communication regulation, established under SOLAS Chapter IV. Equipment requirements are determined by the vessel's operating sea area (A1–A4).

⚖️ GMDSS Sea Areas & Mandatory Equipment
Equipment Sea Area A1 Sea Area A2 Sea Area A3 Sea Area A4
VHF Radio (DSC / Ch.16)
MF Radio (DSC / 2187.5 kHz)
HF Radio (DSC)✔ or Inmarsat
Inmarsat / Iridium SES
EPIRB (406 MHz)
SART / AIS-SART
Navtex Receiver

A1: VHF DSC range (20–50 NM)  |  A2: MF range (>150 NM)  |  A3: Inmarsat GEO coverage (70°N–70°S)  |  A4: Polar regions beyond Inmarsat coverage

⚠️ Cybersecurity Regulatory Note

VSAT and Inmarsat broadband terminals are the most common entry vectors for cyberattacks on shipping. IMO MSC-FAL.1/Circ.3 requires cyber risk management to cover all network interfaces, including satellite communication links. IACS UR E26 requires firewall controls at the boundary between the satellite communication system and all other shipboard networks (IT and OT). The SSAS must be maintained on a segregated, non-routable network to prevent its compromise or false activation.

Part 3 — Performance Standards

GMDSS equipment performance is regulated by IMO resolution and IEC/ITU standards. Broadband communication performance is driven by commercial SLAs and evolving crew welfare expectations.

 GMDSS Equipment Performance

Equipment Key Performance Requirement
EPIRB (406 MHz)Alert transmitted within 5 min; position accuracy <5km; battery life ≥48h; COSPAS-SARSAT detection <90 min
VHF DSCContinuous watch Ch.70 (DSC); Ch.16 voice; range typically 15–40 NM; battery backup 6 hours (IEC 61097-3)
MF/HF RadioDSC watch on 2187.5 kHz (MF), 8414.5 kHz (HF); transmit power ≥60W (MF) / ≥60W PEP (HF)
SART (9 GHz)Detection range by SAR aircraft ≥5 NM; by ship RADAR ≥8 NM; battery life ≥96h standby / ≥8h transmit
Navtex518 kHz (international) / 490 kHz (national); print/display safety MSI within service area (100–300 NM)

️ Broadband Satellite Performance Comparison

VSAT (GEO Ku-band)
  • Speed: 1–20 Mbps (shared)
  • Latency: 600–700ms (GEO)
  • Coverage: 70°N–70°S
  • Cost: medium-tier
Starlink Maritime (LEO)
  • Speed: 100–350 Mbps
  • Latency: 20–50ms
  • Coverage: global (incl. polar)
  • Cost: high hardware, competitive opex
Inmarsat Fleet One / FBB
  • Speed: 0.5–10 Mbps
  • Latency: 400–600ms
  • GMDSS certified
  • Essential for small vessels
Iridium Certus
  • Speed: up to 704 Kbps
  • True pole-to-pole coverage
  • GMDSS recognised
  • Low data, high reliability

Part 4 — Constraints & Limitations

VSAT as Primary Cyber Entry Point

VSAT terminals provide direct internet connectivity to the vessel — and without proper firewall controls, to the ship's OT network. Documented incidents include ransomware delivered via VSAT to fleet management systems, and lateral movement from crew Wi-Fi (routed via VSAT) to navigation and engine control networks. The satellite modem's management interface is often exposed via default credentials.

⚠ Most maritime cyberattacks enter via the satellite communications link

️
GEO Satellite Latency & Outage

GEO VSAT latency of 600–700ms makes real-time video conferencing and remote OT system control impractical. Rain fade, beam handovers, and solar outages can cause service interruption lasting hours. Vessels in high seas with heavy pitch and roll may experience antenna tracking failures. Dual-beam or hybrid LEO/GEO solutions address this but add complexity.

⚠ GEO blackout periods: up to 2 × per year around equinoxes

GMDSS Equipment Maintenance Failures

EPIRB hydrostatic releases, battery expiry, and antenna connections are common PSC deficiency items. GMDSS radio operator licenses require renewal. Many vessels operate with expired EPIRB batteries or unchecked SART condition. The GMDSS modernisation program (IMO MSC.1/Circ.1641) is introducing a revised equipment framework — requiring operational awareness from all officers.

⚠ Expired EPIRB battery is a detainable PSC deficiency

Bandwidth Management & Crew Welfare

Crew internet usage (streaming, video calls) competes with operational data (weather routing, cargo documentation, condition monitoring uploads). Without proper traffic shaping and QoS policies, operational data can be starved of bandwidth. MLC 2006 amendments recognise crew communication as a welfare right, creating commercial pressure to provide adequate bandwidth. LEO constellations are resolving this tension.

✅ MLC 2006 Guidelines B4.4 — reasonable access to ship-to-shore communications

️ Network Segmentation Principle for Comms Systems

The satellite communications interface must be treated as an untrusted external network. All traffic from VSAT/Inmarsat/Starlink terminals should pass through a maritime firewall before reaching any shipboard network. Three separate network segments are best practice: (1) GMDSS/safety — standalone, no internet routing; (2) OT/operational — controlled, monitored access only; (3) Crew/IT — internet-facing with content filtering and bandwidth limits. Mixing these segments is the single most common cause of OT exposure on commercial vessels.

Part 5 — Market Trends

The maritime communications market is undergoing a structural disruption driven by LEO satellite constellations, GMDSS modernisation, and the convergence of IT and OT data flows over a single satellite link.

️
Trend 1 — LEO Constellation Dominance (Starlink, OneWeb)
High-bandwidth, low-latency revolution in maritime broadband

SpaceX Starlink Maritime crossed 4,000 ship installations by early 2025. OneWeb (now Eutelsat) targets commercial shipping with dedicated maritime beams. LEO's <50ms latency enables remote OT monitoring, video surveillance, and real-time fleet management previously impossible over GEO. However, LEO terminals also create new cybersecurity challenges — higher bandwidth means more data can be exfiltrated, and more attack surface is exposed.

Trend 2 — GMDSS Modernisation
IMO updating the 30-year-old GMDSS framework for digital era

IMO MSC 99 (2018) approved GMDSS modernisation recognising satellite systems (including Iridium and future LEO services) as GMDSS-approved service providers, removing the monopoly of Inmarsat. The updated framework will also introduce new maritime safety information (MSI) delivery systems and integrate digital selective calling (DSC) with AIS/VHF networks. These changes will affect mandatory equipment requirements from approximately 2024–2026 implementation.

️
Trend 3 — Maritime Cyber-Secure Communication Platforms
Integrated firewall, SD-WAN, and OT-aware security appliances

Dedicated maritime cybersecurity appliances (Sepio, Fortinet Maritime, Cysec, and others) that integrate firewall, IDS/IPS, VPN, and OT network monitoring at the satellite modem demarcation point are growing rapidly. These devices enforce the IT/OT/GMDSS network segmentation required by IACS UR E26 without requiring specialist OT security expertise on board. Market adoption is being driven by classification society compliance requirements and P&I insurance cyber conditions.

 Market Size Snapshot (2024–2030)
$2.8B
Maritime SATCOM market (2024)
~10%
CAGR through 2030 (LEO driven)
4,000+
Starlink Maritime vessels (2025)
#1
VSAT — primary cyber attack entry point in maritime
 Key Takeaways
01

GMDSS safety communications and commercial broadband must be maintained on completely separate, non-routable network segments. Mixing them is the single most common maritime cybersecurity architecture error.

02

VSAT terminals are the primary cyber attack entry point for commercial shipping — IACS UR E26 mandates firewall controls at the satellite modem boundary separating it from OT and IT networks.

03

LEO constellations (Starlink, OneWeb) are rapidly displacing GEO VSAT for high-bandwidth applications — but also expand the cyber attack surface with higher-throughput, lower-latency internet connectivity.

04

EPIRB battery expiry is one of the most common PSC detainable deficiencies — a simple maintenance oversight with potentially life-threatening consequences during SAR operations.

05

GMDSS modernisation recognises Iridium and LEO services as approved providers — ship operators must review and update their radio equipment plans and GMDSS documentation accordingly.

About the Author
Captain Paul
Captain Paul (Lee In-sung)
Maritime Cybersecurity Consultant · Ship Systems OT Security Specialist

Focused on the intersection of ship systems, OT/ICS security, and maritime regulatory compliance. Helping the industry navigate the digital transformation safely.

⚓ Join the ShipPaulJobs Community

Join →
Share

Comments