View by Author

Most Recent Articles

Photo of a train and train track

The Interlocking of Rail Safety and Cyber Security

By Published On: 25 July 2024Categories: Critical Infrastructure, Security

Today, technology is present in every part of our lives, […]

Share This Article:

Today, technology is present in every part of our lives, and the railway sector is no different. The efficiency and quality of service provided by rail operations have significantly improved with the integration of digital systems. To ensure the safe operation of new technology, however, presents its own set of challenges given that the railway network may be vulnerable to cyberthreats that could potentially disrupt services and jeopardize safety.

Sophisticated control systems are essential to modern railways for scheduling, train control, and signalling. Due to their frequent connections—either direct or indirect—to the internet and other networks, these systems are open to cyberattacks. If a cyberattack is successful, it could result in data breaches, unauthorized access to control systems, disruptions to train services, and possibly serious harm.

What role do standards and regulation play?

The Rail Safety National Law, which imposes obligations on all parties involved in the Australian railway sector, must be followed. A safety management system outlining the methods for managing and controlling safety risk is a requirement for all Rail Transport Operators (RTOs) as a safety control measure. The law acknowledges the need to record security risks and put safeguards in place against dangers like sabotage.

Many nations and organizations have created standards and guidelines to reduce these risks because they understand how important rail cyber security is. For example, RTOs can manage cyber security risks using the framework provided by the Australian Standard AS 7770:2018 – Rail Cyber Security. These guidelines and the standard describe what is needed to have a strong cyber security posture within the rail industry.

More recently TS 50701 provides guidance on how to implement an IEC 62443 based compliant design to railway systems and ties in with Reliability, Availability, Maintainability and Safety (RAMS) generic processes ensuring that cyber risks are thought of in line with other more traditional rail operational risks, also becoming the dedicated IEC Standard 63462 during 2025.

The International Electrotechnical Commission (IEC) has created IEC 63452 in response to the digital revolution in the rail industry. This standard is at the forefront of efforts to strengthen cybersecurity within railway networks, reflecting the growing significance of safeguarding our rail infrastructure from cyber threats.

IEC 63452 was created as a result of the combined efforts of the IEC Technical Committee 9/PT 63452, which consists of more than a hundred industry professionals, including prominent figures from leading rail companies and their suppliers. The standard is designed to address the unique cybersecurity requirements that emerge from the increasing interconnection of railway operations.

The primary goal of IEC 63452 is to offer a robust, understandable, and useful set of guidelines that will strengthen the security of rail system components, such as infrastructure, control systems, and trains. In order to provide the railway sector with a comprehensive and cohesive cybersecurity strategy, it aims to expand upon the foundation of currently in place cybersecurity protocols, such as TS 50701 and IEC 62443.

Crafted with a worldwide scope, IEC 63452 is intended to resonate with various international regulations and operational standards. This global perspective is crucial for a standard that will be used in many different countries and with different regulatory frameworks.

What’s the Australian view on cyber risk in rail?

Some rail operators both above and below rail may have regulatory obligations part of the Security of Critical Infrastructure Act (2018). This includes the requirement to adopt, maintain and comply with a written critical infrastructure risk management program (CIRMP) that encompasses all hazards of which cyber risks are one facet.

This program should identify, and as far as is reasonably practicable, take steps to minimise or eliminate the ‘material risks’ that could have a ‘relevant impact’ on the rail asset which although a broad definition shows that there is a depth of assessment to cover all aspects of a modern rail operation including rollingstock, signalling, power control, tunnel ventilation, track etc.

Delivering Safe Outcomes

The structured management of cyber security risks sits well with the management of railway safety with recognised standard processes such as EN50126 (Railway Applications: the specification and demonstration of reliability, availability, maintainability and safety) being adopted for the systematic approach to railway safety risk management. This standard provides the lifecycle path for safety management through the delivery phases of a project and onwards to the operations and maintenance phase.

With the complexity of digital systems increasing, it is essential that the processes adopted for assuring safety are appropriately scrutinised for effectiveness. For major railway projects in Australia, ONRSR recommends the use of Independent Safety Assessment (ISA) to review and challenge safety risk management and outcomes. An effective ISA requires a deep understanding of both safety management processes and principles, coupled with technical knowledge of the engineering domains and disciplines to provide pragmatic and valuable support to a complex railway project.

Augmenting ISA, independent verification that a project has delivered its design, installation and testing in accordance with its original requirements can provide an RTO with assurance that a project is delivering against the specified standards. Such standards can often be part of the RTO’s safety management system, providing the engineering controls that manage safety risk.

Independent verification provides assurance to an RTO that a project has delivered against the contracted specification and implemented the specified risk controls. For significant projects verification activity can result in certification of the project works.

Conclusion

The intersection of rail safety and cyber security is a critical area that requires continuous attention and investment. As the railway industry continues to evolve, the collaboration between technology experts, regulators, and rail operators will be essential in developing resilient systems that can withstand the challenges of the digital age.

Anchoram sees four pillars where assessment and gap analysis can prove valuable, both during projects and during operations and maintenance phases, these are: Governance, Standards Compliance, Independent Assurance and Risk Management – all of which have an impact on safety if not performed with due diligence.

When looking for subject matter expertise Anchoram can provide an integrated approach to the assessment of cyber risk that will provide all railway operators a proactive approach to ensure the safety and reliability of their rail operations.

Today, technology is present in every part of our lives, […]

By Published On: 25 July 2024Categories: Critical Infrastructure, Security

Share This Article:

Categories

Subscribe

Subscribe to our newsletter and get the latest news and information from Anchoram.

View by Author

Most Recent Articles

Author Profiles