Railway systems, as with most Industrial Automation Control Systems (IACS), have been considered immune to
cyber security threats and attacks for years. Nevertheless, the increase of interconnected and digitalized assets in
the railway sector and the parallel increase of cyber-crime targeting IACS have driven the need for a coordinated
approach to security assessment to deliver cyber-secure infrastructures and solutions in the railway industry. In
this paper, the holistic cybersecurity approach proposed by the Shift2Rail project is depicted. A security
assessment process is suggested for the railway industry that will deliver secure solutions and processes that are
consistent and encompass asset owners, system integrators and product suppliers. The assessment procedure
suggested blends together concepts from different international standards. In parallel, protection profiles and
security-by-design concepts are defined and the current threat landscape is identified with the aim of setting a
shared understanding and strategy for future security-related projects in the railway industry.
The different versions of the original document can be found in:
DOIS: 10.5281/zenodo.1456467 10.5281/zenodo.1456468
Published on 01/01/2018
Volume 2018, 2018
DOI: 10.5281/zenodo.1456467
Licence: Other
Are you one of the authors of this document?