Technological advances in the telecommunications industry have brought significant advantages in the management and performance of communication networks. The railway industry, where signaling systems are now fully computerized, is among the ones that have benefited the most. These interconnected systems, however, have a wide area exposed to cyberattacks. This survey examines the cybersecurity aspects of railway signaling systems by considering the standards, guidelines, and frameworks most widely used in the industry. We dedicate specific attention to communication networks since data communication systems are essential to signaling architectures. To this end, we explore using dedicated cyber ranges as an enabling technology to model attacks to computer networks, emulate attack-defense scenarios, study vulnerabilities impact in general, and finally devise countermeasures to them.
翻译:电信业的技术进步在通信网络的管理和运行方面带来了巨大的优势,铁路工业(其信号系统现已完全计算机化)是受益最多的行业之一,然而,这些相互联系的系统具有广泛的网络攻击风险。这项调查通过考虑该行业最广泛使用的标准、准则和框架,审查了铁路信号系统的网络安全方面。我们特别关注通信网络,因为数据通信系统对信号结构至关重要。为此,我们探索使用专门的网络范围,作为计算机网络攻击的示范技术,模仿攻击-防御情景,研究一般的脆弱性影响,并最终制定对策。