Cybersecurity analysis of train control systems: weak points and practical, low-cost attacks. π παα||απ¨π»βπ»π₯
A group of railway security experts from Italy and Finland released a paper in 2023 examining cybersecurity risks in modern railway signalling systems, especially Communication-Based Train Control (CBTC).
The authors frame their analysis using CENELEC TS 50701 and focus on two main topics:
1οΈβ£ Analyzing wireless jamming attacks on Eurobalises
2οΈβ£ Evaluating Wi-Fi as a βconduitβ inside trains
In summary: attackers donβt need sophisticated hacking tools to disrupt a trainβs signalling - a simple powered wire loop is enough to jam a Eurobalise.
The paper is very detailed and interesting, especially if itβs your day job to protect such systems. Please share it with colleagues and friends who do so.
More details:
Cybersecurity Considerations for Communication Based Train Control [PDF]: https://oulurepo.oulu.fi/bitstream/handle/10024/45840/nbnfi-fe20230830113271.pdf?sequence=1&isAllowed=y
