A Reference Architecture for Integrating Safety and Security Applications on Railway Command and Control Systems (original) (raw)
Related papers
Security Requirements Engineering in Safety-Critical Railway Signalling Networks
Security and Communication Networks, 2019
Securing a safety-critical system is a challenging task, because safety requirements have to be considered alongside security controls. We report on our experience to develop a security architecture for railway signalling systems starting from the bare safety-critical system that requires protection. We use a threat-based approach to determine security risk acceptance criteria and derive security requirements. We discuss the executed process and make suggestions for improvements. Based on the security requirements, we develop a security architecture. The architecture is based on a hardware platform that provides the resources required for safety as well as security applications and is able to run these applications of mixed-criticality (safety-critical applications and other applications run on the same device). To achieve this, we apply the MILS approach, a separation-based high-assurance security architecture to simplify the safety case and security case of our approach. We descri...
Integration of safety and security in railway systems
2018
Security is gradually taking center stage. Since traditional transport systems were based solely on mechanical or electromechanical devices and closed networks, today with an increasing number of information technologies and communications devices, systems are being migrated towards new communication technologies and open protocols. Although this has increased the efficiency and reduced costs to companies, the systems have become more vulnerable to external attacks. And railway is not and exception, its infrastructure is mainly based on computers that are interconnected via wired or wireless networks and it is highly distributed, therefore railway's infrastructure is difficult to protect and it is vulnerable to cyber-attacks. This work shows an analysis about the standards used in security. A comparison with safety norms and the main reasons why security is currently not considered when developing safety critical devices are also described. Finally, an example of safety and secu...
2016 Resilience Week (RWS), 2016
Industrial control systems (ICS) are composed of sensors, actuators, control processing units, and communication devices all interconnected to provide monitoring and control capabilities. Due to the integral role of the networking infrastructure, such systems are vulnerable to cyber attacks. Indepth consideration of security and resilience and their effects to system performance are very important. This paper focuses on railway control systems (RCS), an important and potentially vulnerable class of ICS, and presents a simulation integration platform that enables (1) Modeling and simulation including realistic models of cyber and physical components and their interactions, as well as operational scenarios that can be used for evaluations of cybersecurity risks and mitigation measures and (2) Evaluation of performance impact and security assessment of mitigation mechanisms focusing on authentication mechanisms and firewalls. The approach is demonstrated using simulation results from a realistic RCS case study.
SPD-Safe: Secure Administration of Railway Intelligent Transportation Systems
Electronics, 2021
The railway transport system is critical infrastructure that is exposed to numerous man-made and natural threats, thus protecting this physical asset is imperative. Cyber security, privacy, and dependability (SPD) are also important, as the railway operation relies on cyber-physical systems (CPS) systems. This work presents SPD-Safe—an administration framework for railway CPS, leveraging artificial intelligence for monitoring and managing the system in real-time. The network layer protections integrated provide the core security properties of confidentiality, integrity, and authentication, along with energy-aware secure routing and authorization. The effectiveness in mitigating attacks and the efficiency under normal operation are assessed through simulations with the average delay in real equipment being 0.2–0.6 s. SPD metrics are incorporated together with safety semantics for the application environment. Considering an intelligent transportation scenario, SPD-Safe is deployed on ...
Cyber Resilience of Railway Signaling Systems
Recently published information on the cybersecurity assessment of railway computer and communication-based control systems (CBCS) identified several weaknesses and vulnerabilities, which allow threat agents to not only degrade system reliability and bypass safety mechanisms, but to carry out attacks which directly affect the rail traffic safety. Despite these findings, remarkably these systems meet all relevant IT security and functional safety requirements and have the required international, national and industrial certificates. The paper shows the link between information security and industrial. Railroads is a complex systems and process automation is used in different areas: to control power, switches, signals and locomotives. At this paper author analyze threats and vulnerabilities of fundamental railroad automation systems such as computer based interlocking, automatic train control and automatic train protection. All examples based on hands-on security exercises and most of issues are confirmed and processed by vendors.
Ensuring cyber-security in smart railway surveillance with SHIELD
International Journal of Critical Computer-based Systems, 2017
Modern railways feature increasingly complex embedded computing systems for surveillance that are moving towards fully wireless smart-sensors. Those systems are aimed at monitoring system status from a physical-security viewpoint, in order to detect intrusions and other environmental anomalies. However, the same systems used for physical-security surveillance are vulnerable to cyber-security threats, since they feature distributed hardware and software architectures often interconnected by 'open networks', like wireless channels and the internet. In this paper, we show how the integrated approach to security, privacy and dependability (SPD) in embedded systems provided by the SHIELD framework (developed within the EU funded pSHIELD and nSHIELD research projects) can be applied to railway surveillance systems in order to measure and improve their SPD level. SHIELD implements a layered architecture (node, network, middleware and overlay) and orchestrates SPD mechanisms based on ontology models, appropriate metrics and composability. The results of prototypical application to a real-world demonstrator show the effectiveness of SHIELD and justify its practical applicability in industrial settings.
Cybersecurity of Railway Command and Control Systems
JITA - Journal of Information Technology and Applications (Banja Luka) - APEIRON
With the large-scale migration to computer-based and network technology, the threat of unauthorized remote access to railway command and control systems does not appear to be something extraordinary.But external effects shall be considered alongside with internal factorsof signalling software and hardware such errors and undocumented features. Risk mitigation in terms of cybersecurity of signalling installations can onlybe achieved as a combination of means designed within some holistic approach integrating both safety and IT security aspects.
A SMART APPROACH FOR SECURE CONTROL OF RAILWAY TRANSPORTATION SYSTEMS
A novel method for secure transportation of railway systems has been proposed in this project. In existing methods, most of the methods are manual resulting in a lot of human errors. This project proposes a system which can be controlled automatically without any outside help. This project has a model concerning two train sections and a gate section. The railway sections are used to show the movement of trains and a gate section is used to show the happenings in the railway crossings. The scope of this project is to monitor the train sections to prevent collisions between two trains or between humans and trains and to avoid accidents in the railway crossings. Also an additional approach towards effective power utilization has been discussed. Five topics are discussed in this project : 1) Detection of obstacles in front of the train;2) Detection of cracks and movements in the tracks;3) Detection of human presence inside the train and controlling the electrical devices accordingly 4) Updating the location of train and sharing it with other trains automatically 5) Controlling the gate section during railway crossing. This project can be used to avoid accidents in the railway tracks.