Recently published information on the cybersecurity assessment of railway computer and communication-based control systems (CBCS) identified several weaknesses and vulnerabilities, which allow threat agents to not only degrade system reliability and bypass safety mechanisms, but to carry out attacks which directly affect the rail traffic safety. Despite these findings, remarkably these systems meet all relevant IT security and functional safety requirements and have the required international, national and industrial certificates.
Railroads is a complex systems and process automation is used in different areas: to control power, switches, signals and locomotives. At this paper author analyze threats and vulnerabilities of fundamental rail-road automation systems such as computer based interlocking, automatic train control and automatic train protection. All examples based on hands-on security exercises and most of issues are confirmed and processed by vendors.
TL;DR
Download
Enjoy
No comments:
Post a Comment