<p>High-speed trains, as critical components of public transportation, have seen remarkable advancements globally in recent years. The evolution of communication technology has played a pivotal role in enhancing train performance and management efficiency, yet it has also rendered high-speed train systems increasingly susceptible to severe cybersecurity threats due to the widespread adoption of wireless communications, and Ethernet connectivity, among others. Consequently, railway departments and research institutions worldwide have devoted substantial efforts to tackle these issues. This paper delves into existing standards, guidelines, frameworks, and technologies, and, in conjunction with an analysis of high-speed train network architectures and potential vulnerabilities, devises a comprehensive security protection framework tailored to the characteristics of high-speed train networks. This framework aims to establish a robust defense system and implement resilient protective measures that effectively mitigate the impact of cyberattacks on overall operational functionality. To begin with, from the standpoint of preventing intrusion, it describes end-to-end secure communication mechanisms and interface designs encompassing both ground-train and intra-train communications. Subsequently, to minimize the effect of attacks on system functionality, it introduces a risk-mitigation-based attack tolerance architecture, and resilience recovery strategies tailored to the dynamic operation of high-speed trains. Lastly, by considering the future trends in high-speed train development, the paper explores emerging challenges, thereby guiding future research endeavors.</p>

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

A comprehensive study on cyberattack resilience for high-speed train security protection

  • Yang Jun,
  • Xiong Yan,
  • Li Changhong,
  • Zhou Chunjie,
  • Zhou Shangru

摘要

High-speed trains, as critical components of public transportation, have seen remarkable advancements globally in recent years. The evolution of communication technology has played a pivotal role in enhancing train performance and management efficiency, yet it has also rendered high-speed train systems increasingly susceptible to severe cybersecurity threats due to the widespread adoption of wireless communications, and Ethernet connectivity, among others. Consequently, railway departments and research institutions worldwide have devoted substantial efforts to tackle these issues. This paper delves into existing standards, guidelines, frameworks, and technologies, and, in conjunction with an analysis of high-speed train network architectures and potential vulnerabilities, devises a comprehensive security protection framework tailored to the characteristics of high-speed train networks. This framework aims to establish a robust defense system and implement resilient protective measures that effectively mitigate the impact of cyberattacks on overall operational functionality. To begin with, from the standpoint of preventing intrusion, it describes end-to-end secure communication mechanisms and interface designs encompassing both ground-train and intra-train communications. Subsequently, to minimize the effect of attacks on system functionality, it introduces a risk-mitigation-based attack tolerance architecture, and resilience recovery strategies tailored to the dynamic operation of high-speed trains. Lastly, by considering the future trends in high-speed train development, the paper explores emerging challenges, thereby guiding future research endeavors.