Developing Cyber Security Asset Management framework for UK rail

Abstract

The sophistication and pervasiveness of cyber-attacks are constantly growing, driven partly by technological progress, profitable applications in organized crime and state-sponsored innovation. The modernization of rail control systems has resulted in an increasing reliance on digital technology and increased the potential for security breaches and cyber-attacks. This research paper showcases the need for developing the secure reusable scalable framework for enhancing cyber security of rail assets. A Cybersecurity framework has been proposed that is being developed to detect the tell-tale signs of cyber-attacks against industrial assets. This framework will be based on the concepts of developing protection profiles for railway assets such as point machine and evaluation assurance level in order to certify that chosen railway asset meet required security and safety properties. Endeavor is to make cyber health assessment of railway assets to prevent cyber-attacks.