Skip to main content
SpringerLink
Log in

A Security Architecture for Railway Signalling

  • Conference paper
  • First Online:
Computer Safety, Reliability, and Security (SAFECOMP 2017)

Part of the book series: Lecture Notes in Computer Science ((LNPSE,volume 10488))

Included in the following conference series:

Abstract

We present the proposed security architecture Deutsche Bahn plans to deploy to protect its trackside safety-critical signalling system against cyber-attacks. We first present the existing reference interlocking system that is built using standard components. Next, we present a taxonomy to help model the attack vectors relevant for the railway environment. Building upon this, we present the proposed “compartmentalized” defence concept for securing the upcoming signalling systems.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Similar content being viewed by others

References

  1. CENELEC: EN 50126: Railway applications - The specification and demonstration of Reliability, Availability, Maintainability and Safety (RAMS) (1999)

    Google Scholar 

  2. DKE: Elektrische Bahn-Signalanlagen - Teil 104: Leitfaden für die IT-Sicherheit auf Grundlage der IEC 62443 (DIN VDE V 0831-104) (2014)

    Google Scholar 

  3. DKE: Electric signalling systems for railways - Part 200: Safe transmission protocol according to DIN EN 50159 (DIN VDE V 0831-200) (2015)

    Google Scholar 

  4. Hansman, S., Hunt, R.: A taxonomy of network and computer attacks. Comput. Secur. 24(1), 31–43 (2005). doi:10.1016/j.cose.2004.06.011

    Article  Google Scholar 

  5. Howard, J.D., Longstaff, T.A.: A common language for computer security incidents. Technical report SAND98-8667, Sandia Natl Lab, (1998). doi:10.2172/751004

  6. Intl. Electrotechnical Commission: IEC 62443 Industrial communication networks - Network and system security. IEC 62443, November 2010

    Google Scholar 

  7. Meyers, C., Powers, S., Faissol, D.: Taxonomies of cyber adversaries and attacks: a survey of incidents and approaches. Lawrence Livermore Natl. Lab. 7, 1–22 (2009). doi:10.2172/967712

    Google Scholar 

  8. Simmons, C., Shiva, S., Bedi, H., Dasgupta, D.: Avoidit: A cyber attack taxonomy. In: Annual Symposium on Information Assurance, pp. 2–12 (2014)

    Google Scholar 

  9. Weber, D.J.: A taxonomy of computer intrusions. Ph.D. thesis, MIT (1998)

    Google Scholar 

Download references

Acknowledgements

Research supported in part by EC CIPSEC GA 700378.

Author information

Authors and Affiliations

  1. DB Netz AG, Frankfurt, Germany

    Christian Schlehuber

  2. Department of Computer Science, TU Darmstadt, Darmstadt, Germany

    Markus Heinrich, Tsvetoslava Vateva-Gurova, Stefan Katzenbeisser & Neeraj Suri

Authors
  1. Christian Schlehuber
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Markus Heinrich
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Tsvetoslava Vateva-Gurova
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Stefan Katzenbeisser
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Neeraj Suri
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Christian Schlehuber .

Editor information

Editors and Affiliations

  1. Fondazione Bruno Kessler, Trento, Italy

    Stefano Tonetta

  2. AIT Austrian Institute of Technology, Vienna, Austria

    Erwin Schoitsch

  3. Thales Deutschland GmbH, Ditzingen, Germany

    Friedemann Bitsch

Rights and permissions

Reprints and permissions

Copyright information

© 2017 Springer International Publishing AG

About this paper

Cite this paper

Schlehuber, C., Heinrich, M., Vateva-Gurova, T., Katzenbeisser, S., Suri, N. (2017). A Security Architecture for Railway Signalling. In: Tonetta, S., Schoitsch, E., Bitsch, F. (eds) Computer Safety, Reliability, and Security. SAFECOMP 2017. Lecture Notes in Computer Science(), vol 10488. Springer, Cham. https://doi.org/10.1007/978-3-319-66266-4_21

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-66266-4_21

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-66265-7

  • Online ISBN: 978-3-319-66266-4

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation