Simulation testbed for railway infrastructure security and resilience evaluation

The last decade has seen an influx of digital connectivity, operation automation, and remote sensing and control mechanisms in the railway domain. The management of the railway operations through the use of distributed sensors and controllers and with programmable and remotely controllable railway signals and switches has led to gains in system efficiency as well as operational flexibility. However, the network connectivity has opened up the railway cyber communication networks to cyber-attacks. These are a class of cyber-physical systems (CPS) with interconnected physical, computational, and communication components. The cyber-attacks on these systems could potentially cascade through these inter-connection and result into significant damage. These systems are safety-critical owing to their large-scale monetary and, more importantly, human life safety concerns. Therefore, it is better to incorporate security and resilience requirements right from the design time. In this paper, we describe a domain-specific framework for simulations in the railway domain. The framework allows analyzing the resilience of railway operations in the presence of cyber-attacks. In particular, our simulation framework allows modeling the railway network as well as the railway transportation. It provides an online graphical modeling environment that allows multiple users to collaborate, through a web-based interface, over the same model for the railway infrastructure as well as network attacks. The framework also allows the user to configure and run experiments through the web-interface and also to visualize the key operational metrics from the railway domain as the experiment is running. The framework also supports executing large simulations in the cloud. In addition, it supports hardware-in-the-loop (HIL) simulation for incorporating physical effects and network attacks that can only be realized realistically in the hardware. A detailed case study is provided to demonstrate the framework's capabilities.

[1]  Mansoor Ahmed,et al.  Smart Cities: A Survey on Security Concerns , 2016 .

[2]  Daniel Krajzewicz,et al.  Recent Development and Applications of SUMO - Simulation of Urban MObility , 2012 .

[3]  Gabor Karsai,et al.  Design Guidelines for Domain Specific Languages , 2014, ArXiv.

[4]  Xenofon Koutsoukos,et al.  Metrics-Driven Evaluation of Cybersecurity for Critical Railway Infrastructure , 2018, 2018 Resilience Week (RWS).

[5]  Marion Berbineau,et al.  Cyber-Physical Security Risk Assessment for Train Control and Monitoring Systems , 2018, 2018 IEEE Conference on Communications and Network Security (CNS).

[6]  Andras Varga,et al.  A Practical Introduction to the OMNeT++ Simulation Framework , 2019, Recent Advances in Network Simulation.

[7]  Ekaterina V. Karpenko,et al.  Improving security incidents detection for networked multilevel intelligent control systems in railway transport , 2016 .

[8]  Marshall A. Kuypers,et al.  Cyber Risk Management for Critical Infrastructure: A Risk Analysis Model and Three Case Studies , 2018, Risk analysis : an official publication of the Society for Risk Analysis.

[9]  Christoph Sommer,et al.  Veins: The Open Source Vehicular Network Simulation Framework , 2019, Recent Advances in Network Simulation.

[10]  Xiang Liu,et al.  Positive Train Control (PTC) for railway safety in the United States: Policy developments and critical issues , 2018 .

[11]  Gabor Karsai,et al.  SURE: A Modeling and Simulation Integration Platform for Evaluation of Secure and Resilient Cyber–Physical Systems , 2018, Proceedings of the IEEE.

[12]  IEEE Standard for Modeling and Simulation (M&S) High Level Architecture (HLA) — Framework and Rules , 2001 .

[13]  Xenofon D. Koutsoukos,et al.  Software and attack centric integrated threat modeling for quantitative risk assessment , 2016, HotSoS.

[14]  Gabor Karsai,et al.  Rapid Synthesis of Multi-Model Simulations for Computational Experiments in C2 , 2009 .

[15]  José Soler,et al.  Radio Communication for Communications-Based Train Control (CBTC): A Tutorial and Survey , 2017, IEEE Communications Surveys & Tutorials.

[16]  Oliver Kopp,et al.  Survey and Comparison of Open Source Time Series Databases , 2017, BTW.

[17]  Karen A. Scarfone,et al.  Guide to Industrial Control Systems (ICS) Security , 2015 .

[18]  Gabor Karsai,et al.  Integrated simulation testbed for security and resilience of CPS , 2018, SAC.

[19]  Xenofon D. Koutsoukos,et al.  Integrated instruction set randomization and control reconfiguration for securing cyber-physical systems , 2018, HotSoS.

[20]  Kyung-Joon Park,et al.  Cyber-Physical Vulnerability Analysis of Communication-Based Train Control , 2019, IEEE Internet of Things Journal.

[21]  Marina Aguado,et al.  Cyber security analysis of the European train control system , 2015, IEEE Communications Magazine.

[22]  Sandeep Neema,et al.  Visualization techniques in collaborative domain-specific modeling environment , 2015, SoutheastCon 2015.

[23]  Himanshu Neema Large-Scale Integration of Heterogeneous Simulations , 2018 .