Presentation is loading. Please wait.

Presentation is loading. Please wait.

Experiences from testing security solutions in the railway use-case

Published byClara Pope Modified over 5 years ago

Similar presentations

Presentation on theme: "Experiences from testing security solutions in the railway use-case"— Presentation transcript:

1 Experiences from testing security solutions in the railway use-case
CIPSEC workshop Frankfurt am Main, Dominik Renkel, DB Netz AG Christian Schlehuber, DB Netz AG heard a lot about the different solutions No lets talk about experiences made by testing the solutions in the railway testing facility The research leading to these results has received funding from the European Union’s Horizon 2020 Research and Innovation Programme, under Grant Agreement no

2 CIPSEC Security Framework Application (D3.1)
Architecture below = digital interlocking system Layer are described in the CIPSEC framework architecture CIPSEC Workshop Frankfurt 16/10/2018 2

3 CIPSEC Deployment (@ Testing Facilities)
Eisenbahnbetriebsfeld Darmstadt Tools are deployed Communications are working Events are generated and are received by the XL-SIEM solution Alerts are raised and visualized in the CIPSEC Dashboard CIPSEC Workshop Frankfurt 16/10/2018 3

4 Work ongoing Tests to be performed Successful
Services to face the new challenges CIPSEC will provide solutions Staff Training and Awareness Is our staff capable to understand cyber security? Forensic Analysis Analysis vs. Fast Recovery Detection/Locating of Denial of Service Attacks Future railway operation will rely heavily on GSM-R Work ongoing Tests to be performed Successful Forensic Analysis: Add specific dashboard for RaSTA communication WOS DoS Sensing: Test performed and CIPSEC framework noticed and presented Alert CIPSEC Workshop Frankfurt 16/10/2018 4

5 CI Requirements vs. Current Status
Some findings: Some solutions had few possibilities for own configuration CI operators require the possibility to adapt solutions to their needs (e.g. disable certain functionalities) SSH configuration by supplier is required In general no uncontrolled access is granted to a supplier to a productive environment; also not possible due to missing Internet link Implementation should be performable by a normal user and not only an expert  automated installation would be beneficial see above point, besides the maintenance personnel of CI may not be able to perform complex setup procedures CIPSEC will offer consulting services & in-house assistance  Minor issue Usage of update and patching service SSH in operative environment not needed anymore  Major issue CIPSEC easy to deply -> commercial of the shelf CIPSEC core easy to install and deploy CIPSEC services Update and patching In-house assistance  Minor issue CIPSEC Workshop Frankfurt 16/10/2018 5

6 Thanks for your attention! Questions?
Contact: Christian Schlehuber / Dominik Renkel DB Netz AG @CIPSECproject CIPSEC Workshop Frankfurt 16/10/2018

Download ppt "Experiences from testing security solutions in the railway use-case"

Similar presentations

ELOC Bank Table Top Exercise Executive Leadership of Cybersecurity Austin, TX December 3, 2014 1.

ELOC Bank Table Top Exercise Executive Leadership of Cybersecurity Austin, TX December 3,
David A. Brown Chief Information Security Officer State of Ohio

David A. Brown Chief Information Security Officer State of Ohio
Greg Pierce| Concerto Cloud Services Which Cloud is Right for Microsoft CRM?

Greg Pierce| Concerto Cloud Services Which Cloud is Right for Microsoft CRM?
Www.regoconsulting.comPhone: 1-888-813-0444 Optimizing Your Clarity Support Team.

Optimizing Your Clarity Support Team.
Report on the Benchmarking Study Evaluation 2006 Margarita Moreno, Manager Document Supply Service National Library of Australia.

Report on the Benchmarking Study Evaluation 2006 Margarita Moreno, Manager Document Supply Service National Library of Australia.
Networks ∙ Services ∙ People www.geant.org Mandeep Saini TF-MSP, Espoo, Finland Service Delivery and Adoption 10 th Sep 2015 Task Leader, GN4-1 SA7 T3.

Networks ∙ Services ∙ People Mandeep Saini TF-MSP, Espoo, Finland Service Delivery and Adoption 10 th Sep 2015 Task Leader, GN4-1 SA7 T3.
© Siemens AG 2011. All rights reserved. openlab III Board of Sponsors 3-4 May 2011 at CERN Joint Report Siemens - CERN.

© Siemens AG All rights reserved. openlab III Board of Sponsors 3-4 May 2011 at CERN Joint Report Siemens - CERN.
Don’t Customize, Just Personalize! Jan 17, 2008 Prabhakar Pooskur Dharmang Purohit.

Don’t Customize, Just Personalize! Jan 17, 2008 Prabhakar Pooskur Dharmang Purohit.
Welcome to Hosted VoIP Eric Thomas Founder & CEO, FreedomVOICE Systems. Creators of FreedomIQ Hosted VoIP PBX. Over twelve years experience as a leading.

Welcome to Hosted VoIP Eric Thomas Founder & CEO, FreedomVOICE Systems. Creators of FreedomIQ Hosted VoIP PBX. Over twelve years experience as a leading.
Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting The AARC Project I2 Technology Exchange.

Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting The AARC Project I2 Technology Exchange.
1 Executive Leadership of Cybersecurity Austin, TX December 3, 2014 ELOC Bank Table Top Exercise.

1 Executive Leadership of Cybersecurity Austin, TX December 3, 2014 ELOC Bank Table Top Exercise.
Information Security: Model, Process and Outputs Presentation to PRIA WG November 10, 2006.

Information Security: Model, Process and Outputs Presentation to PRIA WG November 10, 2006.
Managed Support CSM Event – 1 st June Steven Grier Premier Support Manager Premier Support.

Managed Support CSM Event – 1 st June Steven Grier Premier Support Manager Premier Support.
Cognitive & Organizational Challenges of Big Data in Cyber Defence. YALAVARTHI ANUSHA 1.

Cognitive & Organizational Challenges of Big Data in Cyber Defence. YALAVARTHI ANUSHA 1.
© ITT Educational Services, Inc. All rights reserved. IS3220 Information Technology Infrastructure Security Unit 10 Network Security Management.

© ITT Educational Services, Inc. All rights reserved. IS3220 Information Technology Infrastructure Security Unit 10 Network Security Management.
Networks ∙ Services ∙ People www.geant.org Sonja Filiposka, Yuri Demchenko, Tasos Karaliotas, Migiel de Vos, Damir Regvart TNC 2016 DISTRIBUTED CLOUD SERVICES.

Networks ∙ Services ∙ People Sonja Filiposka, Yuri Demchenko, Tasos Karaliotas, Migiel de Vos, Damir Regvart TNC 2016 DISTRIBUTED CLOUD SERVICES.
Critical Situation Management, Inc. Automating Response Processes with 4 command ™

Critical Situation Management, Inc. Automating Response Processes with 4 command ™
This project has received funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement n° 654237 iGrid Aron Kondoro.

This project has received funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement n° iGrid Aron Kondoro.
Delivering a Modern IT Infrastructure Experience for our Customers

Delivering a Modern IT Infrastructure Experience for our Customers
Chapter 1 Computer Technology: Your Need to Know

Chapter 1 Computer Technology: Your Need to Know

Similar presentations

Ads by Google