A Security Architecture for Railway Signalling

Christian Schlehuber; Markus Heinrich; Tsvetoslava Vateva-Gurova,; Stefan Katzenbeisser; Neeraj Suri

arXiv:2009.04207·cs.CR·September 10, 2020

A Security Architecture for Railway Signalling

Christian Schlehuber, Markus Heinrich, Tsvetoslava Vateva-Gurova,, Stefan Katzenbeisser, Neeraj Suri

PDF

TL;DR

This paper proposes a security architecture for railway signalling systems, focusing on protecting safety-critical components against cyber-attacks through a compartmentalized defense approach.

Contribution

It introduces a novel security architecture with a taxonomy of attack vectors and a compartmentalized defense strategy for railway signalling systems.

Findings

01

The architecture enhances security against cyber threats.

02

A taxonomy of attack vectors relevant to railway systems is developed.

03

The compartmentalized defense concept improves system resilience.

Abstract

We present the proposed security architecture Deutsche Bahn plans to deploy to protect its trackside safety-critical signalling system against cyber-attacks. We first present the existing reference interlocking system that is built using standard components. Next, we present a taxonomy to help model the attack vectors relevant for the railway environment. Building upon this, we present the proposed "compartmentalized" defence concept for securing the upcoming signalling systems.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.