Security Architecture for protecting Safety-critical Railway Infrastructure

Digitization, connectivity, and use of commercial-off-the-shelf technologies has reached Safety-critical areas such as the Railway sector. This creates new opportunities for attacks and makes it necessary to integrate IT Security measures into Railway command and control systems (CCS). However, the integration of Security mechanisms into a system certified according to the Railway Safety standard EN 50128 is a big challenge.

This presentation gives an overview of an IT Security architecture, which allows to operate Security measures on Safety systems such as object controllers. It consists of a hardware platform with a Trusted Platform Module (TPM) 2.0, a MILS (Multiple Independent Levels of Safety and Security) Separation Kernel (SK), and various Security applications.

The TPM serves as Security anchor and enables, e.g., secure storage, measured boot, and remote attestation to detect tampering with the system software. The MILS OS ensures freedom of interference when running Safety and Security applications.

YouTube

By loading the video, you agree to YouTube’s privacy policy.
Learn more

Load video

Presentation with Fraunhofer SIT at embedded world digital 2021

Watch the Video on our YouTube Channel: https://www.youtube.com/watch?v=l6PKPXel3To


More information at https://www.sysgo.com/railway

Download the Whitepaper at https://www.sysgo.com/wp-sarail

Fraunhofer SIT https://www.sit.fraunhofer.de/en/

HASELNUSS Project https://haselnuss-projekt.de/index_en…