CP EXPO Workshop «Risks and Security Management in Logistics and Transports» Cyber Security in Railways Systems: Ansaldo STS experience Part 1 – Cyber Security Issues in Customer Requirements

1. CP EXPO Workshop
«Risks and Security Management in Logistics and Transports»
Cyber Security in Railways Systems: Ansaldo STS experience
Part 1 – Cyber Security Issues in Customer Requirements
Associazione BCManager 31CP Expo Workshop
Gen-2012
Genoa, October, 29th 2013

2. Safety Critical
Layer
Non- Safety
Critical Layer
Sistemi
Esterni
L’impianto di segnalamento ferroviario
Impianti
limitrofi
Orario
Nazionale
Sistemi
gestionali e
amministrativi
Sistema Comando e Controllo della Circolazione (SCC)
Telecomando
Comando e
Regolazione
Automatic
controllo
traffico
Route Setting
Elettrificazione
CBI
RBC - ERTMS Liv2 (GSM-R)
T1
T2
Balise
3°Workshop Polo SOSIA
CP Expo Workshop
3-Lug-2013
Genoa, October, 29th 2013
PAS
PIS
SCADA
Telefonia Security
CBI

3. Abstract
To be part of a bidding team is a good point of view to analyze how much the Customer’s perception of the ICT
security issues has changed during the last years.
The core functionalities required in a train automation system have not changed in the same period. However
the adoption of ICT systems based on “open” paradigm and COTS components in the fields of computers and
communication networks, induced new capabilities but also new security issues.
The first step of this path was the entrance, in the field of automation systems, of COTS hardware and, most of
all, operating systems.
Even if these plants were still closed to external systems, they potentially suffered the effects of virus infections.
The infected supports (FD etc) were the main entrance door. Even operators, more skilled with these operating
systems than with the ones that were in use before, could become unintentional infection agents.
Hardening and antivirus were at that time the main ICT security counter measures, even if the same counter
measures could induce a significant shift in systems complexity. For instance it has no meaning the installation
of an antivirus system without any infrastructure for antivirus upgrade.
The introduction of geographic high speed data communication infrastructures allowed the development of
regional sized supervision systems. These systems required integration between themselves and, moreover,
with the national management systems at higher level. So a new security issue could arise relating to the
communication with an external system potentially uncontrolled or requiring a different security level. The new
two security counter measures are the formal definition for communication interfaces and perimeter protection.
Nowadays frontiers in railroad automation systems are relating to the system consolidation and mission critical
data and application access by nomadic users (such as maintenance teams).
The related security items are: business continuity/disaster recovery, strong authentication, information security
in fully virtualized systems.
From this short lookup arise the well know assumption that railroad world doesn’t develop basic research,
instead it deeply uses existing technologies that it adapts to its specific business needs. Compared with the
past, however, the time spanning from the diffusion of a new ICT technology to its adoption in the railroad world
is reduced asking for greater flexibility and faster integration.
3°Workshop Polo SOSIA
CP Expo Workshop
3-Lug-2013
Genoa, October, 29th 2013

4. Le Criticità di Sicurezza nella percezione del Cliente
Business
Continuity
Criticità di SicurezzaEsempio
Gestione
SLA
Protezione
Perimetrale
Hardening
Personal
Computer
Log
Correlation &
SIEM
Antivirus
Legge
Privacy
Profilazione
Utenti
Gestione
utenti
Diagnostica
apparati
Gestione
ridondanze
Requisiti
Cliente
Disaster
Recovery
Strong
authentication
Controllo
Asset
Backup
Configurazione
Anni ‘80
Inizio ‘90
3°Workshop Polo SOSIA
CP Expo3-Lug-2013
Workshop
Genoa, October, 29th 2013
Metà ‘90
Fine ‘90
Inizio ‘00
Metà ‘00
Fine ‘00
2011