Cyber Security for Railway Signalling

Similar documents

Enhancing Cyber Security in Europe Dr. Cédric LÉVY-BENCHETON NIS Expert Cyber Security Summit 2015 Milan 16 April 2015

Towards defining priorities for cybersecurity research in Horizon 2020's work programme Contributions from the Working Group on Secure ICT

How To Write An Article On The European Cyberspace Policy And Security Strategy

Achieving Global Cyber Security Through Collaboration

EU Priorities in Cybersecurity. Steve Purser Head of Core Operations Department June 2013

How To Understand And Understand The European Priorities In Information Security

The EU s approach to Cyber Security and Defence

Supporting CSIRTs in the EU Marco Thorbruegge Head of Unit Operational Security European Union Agency for Network and Information Security

Achieving Global Cyber Security Through Collaboration

OUTCOME OF PROCEEDINGS

Cyber Security in Europe

Prof. Udo Helmbrecht

EU Cybersecurity Strategy and Proposal for Directive on network and information security (NIS) {JOIN(2013) 1 final} {COM(2013) 48 final}

Cloud and Critical Information Infrastructures

Cyber Security in EU: ENISA approach

CYBER SECURITY AND CYBER DEFENCE IN THE EUROPEAN UNION OPPORTUNITIES, SYNERGIES AND CHALLENGES

NIS Direktive und Europäische sicherheitsrelevante Projekte Udo Helmbrecht Executive Director, ENISA

Cyber Security in EU: ENISA approach

ENISA What s On? ENISA as facilitator for enhanced Network and Information Security in Europe. CENTR General Assembly, Brussels October 4, 2012

The internet and digital technologies play an integral part

Building Blocks of a Cyber Resilience Program. Monika Josi monika.josi@safis.ch

Cybersecurity Strategy of the Republic of Cyprus

EU Cybersecurity: Ensuring Trust in the European Digital Economy

National Cyber Security Strategies

ENISA s Study on the Evolving Threat Landscape. European Network and Information Security Agency

Flexible Plug & Play Smart grid cyber security design and framework. Tim Manandhar

Having regard to the Treaty on the Functioning of the European Union, and in particular Article 16 thereof,

CYBER SECURITY. Marcin Olender Head of Unit Information Society Department

Safety by trust: British model of cyber security. David Wallace, First Secretary, Head of of the Policy Delivery Group British Embassy in Warsaw

Cybersecurity and the Romanian business environment in the regional and European context

Government Decision No. 1139/2013 (21 March) on the National Cyber Security Strategy of Hungary

COMMISSION OF THE EUROPEAN COMMUNITIES

Cyberspace Situational Awarness in National Security System

Zak Khan Director, Advanced Cyber Defence

Cyber Europe Key Findings and Recommendations

JOINT COMMUNICATION TO THE EUROPEAN PARLIAMENT, THE COUNCIL, THE EUROPEAN ECONOMIC AND SOCIAL COMMITTEE AND THE COMMITTEE OF THE REGIONS

Cooperation in Securing National Critical Infrastructure

How To Discuss Cybersecurity In European Parliament

Dr. Vangelis OUZOUNIS Senior Expert Security Policies ENISA.

Internet Governance and Cybersecurity Patrick Curry MACCSA

Declaration of Principles of the World Summit. Tunis in 2005 adopted by Heads of States and Governments stated that:

Anthony J. Keane, MSc, PhD and Jason Flood, MSc Information Security & Digital Forensics Research Group Institute of Technology Blanchardstown

Cyber security initiatives in European Union and Greece The role of the Regulators

Maritime Insurance Cyber Security Framing the Exposure. Tony Cowie May 2015

The European Response to the rising Cyber Threat

The Growth of the European Cybersecurity Market and of a EU Cybersecurity Industry

National Cyber Security Strategy

EU policy on Network and Information Security and Critical Information Infrastructure Protection

Cyber Security and Cyber Warfare: The EU approach and experience Prof. Claudio CILLI CIA, CISA, CISSP, CISM, CSSLP, CRISC, CGEIT, M.Inst.

Germany: Report on Developments in the Field of Information and Telecommunications in the Context of International Security (RES 69/28),

Session 9 Cyber threats in the EU s and NATO s new strategic context General Kees Homan: Introduction Political cyber attacks

Cyber Resilience Implementing the Right Strategy. Grant Brown Security specialist,

How To Prevent Cyber Crime

UNCLASSIFIED. Briefing to Critical Infrastructure Sector Organizations on the Canadian Cyber Incident Response Centre (CCIRC)

Cybersecurity Global status update. Dr. Hamadoun I. Touré Secretary-General, ITU

UK Networks & Security An Overview. Dr Andrew Powell, ENISA Workshops on CERTs in Europe, 29 May 2008

National Cyber Security Policy -2013

National Cyber Security Strategies: United States

AISA NATIONAL CONFERENCE 2015 TRUST IN INFORMATION SECURITY. 14 October 2015 OPENING ADDRESS LYNWEN CONNICK

Cyber security Indian perspective & Collaboration With EU

STRATEGIC POLICY. Information Security Policy Documentation. Network Management Policy. 1. Introduction

Commonwealth Approach to Cybergovernance and Cybersecurity. By the Commonwealth Telecommunications Organisation

Developing an Architectural Framework towards achieving Cyber Resiliency. Presented by Deepak Singh

Cyber Security Strategy

Government Decision No. 1139/2013 (21 March) on the National Cyber Security Strategy of Hungary

C ETS C/ETS: CYBER INTELLIGENCE + ENTERPRISE SOLUTIONS CSCSS / ENTERPRISE TECHNOLOGY + SECURITY

FAQ to ENISA s report on technologies to improve the resilience of communication networks

ENISA: Cybersecurity policy in Energy Dr. Andreas Mitrakas, LL.M., M.Sc., Head of Unit Quality & data mgt

Towards closer EU-ASEAN collaboration in cybersecurity

Cybersecurity Awareness. Part 1

Cybersecurity for ALL

Cyber- Attacks: The New Frontier for Fraudsters. Daniel Wanjohi, Technology Security Specialist

CYBER-ATLAS A COMPLETE CYBER RISK MANAGEMENT SOLUTION

EU Threat Landscape Threat Analysis in Research ENISA Workshop Brussels 24th February 2015

Proposal for a DIRECTIVE OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL

Technical Guideline on Security Measures

Final. Dr. Paul Twomey President and Chief Executive Officer Internet Corporation for Assigned Names and Numbers (ICANN)

Building up a European Cybersecurity

CYBER SECURITY FOUNDATION - OUTLINE

Update on U.S. Critical Infrastructure and Cybersecurity Initiatives

ENISA Work programme

Smart grid security certification in Europe Challenges and recommendations

Transcription:

Cyber Security for Railway Signalling Dr. Cédric LÉVY-BENCHETON Network and Information Security Expert European Union Agency for Network and Information Security How to protect signalling system against cybercrime UIC, Paris, 28 January 2015 European Union Agency for Network and Information Security www.enisa.europa.eu

Summary Presentation of ENISA Cyber Security for Railway Signalling Conclusion European Union Agency for Network and Information Security www.enisa.europa.eu 2

EU Cyber Security Strategy The Five strategic objectives of the strategy: Achieving cyber resilience Drastically reducing cybercrime Developing cyberdefence policy and capabilities related to the Common Security and Defence Policy (CSDP) Developing the industrial and technological resources for cybersecurity Establishing a coherent international cyberspace policy for the European Union and promote core EU values ENISA explicitly called upon European Union Agency for Network and Information Security www.enisa.europa.eu 3

Presentation of ENISA The European Union Agency for Network and Information Security was formed in 2004. The original mandate was renewed and extended in 2013 The Agency is a Centre of Expertise that supports the Commission and the EU Member States in the area of information security We facilitate the exchange of information between communities, with particular emphasis on the EU institutions, the public sector and the private sector European Union Agency for Network and Information Security www.enisa.europa.eu 4

ENISA Activities Recommendations Mobilising Communities Policy Implementation Hands on European Union Agency for Network and Information Security www.enisa.europa.eu 5

ENISA and Transport: preparatory study Challenges found Cyber security is a difficult area for transport operators Security of a system of systems Cohabitation between old and new technologies Issues raised by public transport operators No clear definition of cyber security for transport in the EU Lack of information sharing and coordination Lack of framework for securing exchanges in the Smart City Two ENISA studies in 2015 Architecture model to map interactions with other operators Good practices and recommendations adapted to the sector European Union Agency for Network and Information Security www.enisa.europa.eu 6

Summary Presentation of ENISA Cyber Security for Railway Signalling Conclusion European Union Agency for Network and Information Security www.enisa.europa.eu 7

Railway is a critical infrastructure Cyber security Ensure confidentiality, integrity, availability Protect critical assets from cyber threats What happens if something goes wrong? Trains stop (Emergency Brake) Economical impact Loss of trust Human casualties European Union Agency for Network and Information Security www.enisa.europa.eu 8

Evolution toward IP-connected railway signalling Source: ERTMS.net European Union Agency for Network and Information Security www.enisa.europa.eu 9

Threat Landscape for Internet Infrastructure Threat groups Threat types Trends Routing Threats Nefarious Activity/Abuse Increasing Eavesdropping/Interception/Hijacking Increasing DNS Threats Nefarious Activity/Abuse Decreasing Denial of Service Nefarious Activity/Abuse Increasing Generic Threats Physical attack N/A Damage/Loss Increasing Failures/Malfunctions Increasing Nefarious activity/abuse Increasing Eavesdropping/Interception/Hijacking Increasing Current threats and assets exposed Good practices to overcome these threats Recommendations to enhance the security level European Union Agency for Network and Information Security www.enisa.europa.eu 10

Particularities of ERTMS A system of systems Central systems Network connections Trackside equipment Radio links On-board equipment Every sub-system has specific cyber security concerns Railway uses ICT equipment Railway ICT European Union Agency for Network and Information Security www.enisa.europa.eu 11

Cyber security concerns Central systems Integrity Availability Physical security, for example against unauthorized access Processes, such as monitoring and reporting Source: RFF European Union Agency for Network and Information Security www.enisa.europa.eu 12

Cyber security concerns Network connections Availability is critical Resilience, for example against cable theft COTS network components Source: Cisco Multi-services network: sharing of equipment and cables Internet threats (DDoS, Routing ) European Union Agency for Network and Information Security www.enisa.europa.eu 13

Cyber security concerns Trackside equipment Availability Integrity Source: Wikipedia Physical security (vandalism, weather conditions ) External dependencies (power supply ) European Union Agency for Network and Information Security www.enisa.europa.eu 14

Cyber security concerns Radio links Jamming Source: RFI Failed handover Integrity of messages Capacity of the radio link Source: DB Netz European Union Agency for Network and Information Security www.enisa.europa.eu 15

Cyber security concerns On-board equipment Supply chain integrity System upgrade Component failure Source: EIRENE Specifications Interactions with other on-board components European Union Agency for Network and Information Security www.enisa.europa.eu 16

A need for collaboration Entities and Working Groups involved in the development of ERTMS European Union Agency for Network and Information Security www.enisa.europa.eu 17

A need for cross-border collaboration ERTMS is already cross-border Inter-connections of systems Harmonization of procedures Harmonization in cyber security Define baseline security requirements Exchange good practices Share incident reports Prepare for the future NIS Directive Cyber security is not only technical but also operational and organisational European Union Agency for Network and Information Security www.enisa.europa.eu 18

Summary Presentation of ENISA Cyber Security for Railway Signalling Conclusion European Union Agency for Network and Information Security www.enisa.europa.eu 19

Conclusion Railway signalling relies more and more on ICT systems Cyber security is a new domain in railway For every sub-system Can rely on concepts from other critical domains Collaboration needed for a better harmonization Multi-stakeholders Cross-border ENISA aims at facilitating the deployment of cyber security measures through good practices and recommendation European Union Agency for Network and Information Security www.enisa.europa.eu 20

Thank you Questions? Dr. Cédric LÉVY-BENCHETON cedric.levy-bencheton@enisa.europa.eu Phone: +30 2814 409 630 Mobile: +30 6948 460 133 Follow ENISA: European Union Agency for Network and Information Security www.enisa.europa.eu