March 6th, 2014 Towards an IT Security Framework for Railway Automation

  • Speaker: Jens Braband
  • Title: Towards an IT Security Framework for Railway Automation
  • Abstract: Some recent incidents have shown that possibly the vulnerability of IT systems
    in railway automation has been underestimated. Fortunately, so far, almost only
    denial-of-service attacks have been successful, but due to several trends, such as the
    use of commercial IT and communication systems or privatization, the threat potential
    could increase in the near future. However, up to now, no harmonized IT security requirements
    for railway automation exist. This paper defines an IT security framework
    which aims to separate IT security and safety requirements as well as certification
    processes as far as possible. It builds on the well-known safety and certification processes
    from EN 50129 and integrates