论文信息 - Threat Modeling in the Railway Domain

Threat Modeling in the Railway Domain

Connected and intelligent railway technologies like the Euro-pean Rail Traffic Management System (ERTMS) introduce new risks in cybersecurity. Threat modeling is a building block in security engineering that identifies potential threats in order to define corresponding mitigation. In this paper, we show how to conduct threat modeling for railway security analysis during a development life cycle based on IEC 62443. We propose a practical and efficient approach to threat modeling, extending existing tool support and demonstrating its applicability and feasibility.

[1] Steve Lipner,et al. Security development lifecycle , 2010, Datenschutz und Datensicherheit - DuD.

[2] Marina Aguado,et al. Cyber security analysis of the European train control system , 2015, IEEE Communications Magazine.

[3] Christoph Schmittner,et al. Threat Modeling for Automotive Security Analysis , 2016 .

[4] Robert J. Stroud,et al. The Risk Assessment of ERTMS-Based Railway Systems from a Cyber Security Perspective: Methodology and Lessons Learned , 2016, RSSRail.

[5] Jens Braband. Towards an IT Security Risk Assessment Framework for Railway Automation , 2017, ArXiv.

[6] Andreas F. Molisch,et al. High-Speed Railway Communications: From GSM-R to LTE-R , 2016, IEEE Vehicular Technology Magazine.

[7] Per Håkon Meland,et al. SeaMonster: Providing tool support for security modeling , 2008 .

[8] Rune Winther,et al. Security Assessments of Safety Critical Systems Using HAZOPs , 2001, SAFECOMP.

[9] Hongwei Wang,et al. A Safety-Security Assessment Approach for Communication-Based Train Control (CBTC) Systems Based on the Extended Fault Tree , 2018, 2018 27th International Conference on Computer Communication and Networks (ICCCN).

[10] Magnus Almgren,et al. Adapting Threat Modeling Methods for the Automotive Industry , 2017 .

[11] Silia Maksuti,et al. Connected cars — Threats, vulnerabilities and their impact , 2018, 2018 IEEE Industrial Cyber-Physical Systems (ICPS).