Certification Cycles of Train Cyber Gateway

Procházka, Jan; Novobilský, Petr; Procházková, Dana; Kertis, Tomáš

doi:10.3850/978-981-14-8593-0_3728-cd

Cited by 4 publications

(5 citation statements)

References 1 publication

(1 reference statement)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Mobile communication gateways must follow a wide range of standards and rules, determined areas of their de-ployment. In the case of a train, the list of standards within the certification cycle is detailed in the article [14].…”

Section: Mobile Communication Gatewaymentioning

confidence: 99%

See 1 more Smart Citation

Control of Security of Cyber Train Gateway

Procházka¹,

Novobilský²,

Procházková

2022

Design, Construction, Maintenance

Self Cite

View full text Add to dashboard Cite

The presence of many moving elements in case of trains is the specific problem of railway transport infrastructures. The security of moving elements within the cyber-physical system (CPS) needs, therefore, to be ensured against both physical and cyber intrusion. We will deal with the cyber gateway of the train, which is called a mobile communication gateway (MCG). It is associated with problems of the standard cyber gateway and the problems specific to the moving systems. It is impossi-ble to secure communication between train and control centrum through a closed communication system only, it need to take place through open space because of extensive infrastructure with assistance of ground communication gateway (GCG). The MCG design shall ensure the security functions of the gateway as well as sufficient communication capacity. Our control over environmental conditions of MCG is limited because it is in open space, both physical and cyber, often in motion. The MCG, there-fore, needs to be able to respond dynamically to environmental changes caused by deliberate attacks or unintentional changes in the system. The ability of the adaptability must be given to the MCG in design

show abstract

Section: Mobile Communication Gatewaymentioning

confidence: 99%

“…The MCG [14] was developed according to standard IEC 62443-4-1 [19]. A risk analysis was carried out within the given network context of MCG as one of the first tasks.…”

Section: Selected Risks Of Mobilementioning

confidence: 99%

Control of Security of Cyber Train Gateway

Procházka¹,

Novobilský²,

Procházková

2022

Design, Construction, Maintenance

Self Cite

View full text Add to dashboard Cite

show abstract

“…Often artifacts developed for safetycritical development can be re-used for IEC 62443-4-1. For instance, certMILS partner Q-Media is using an internal certification framework to cover simultaneously EN 50126, IEC 61375, prTS 50701 and IEC 62443 [15]. A gap analysis between IEC 62443 and IEC 61508 has been done in [16].…”

Section: B Examplesmentioning

confidence: 99%

“…Moreover, some functional requirements explicitly reused assurance provided by the separation kernel. The functional requirements were mainly in the functional groups for restricted data flow and resource availability [15].…”

Section: Subwaymentioning

confidence: 99%

Security certification experience for industrial cyberphysical systems using Common Criteria and IEC 62443 certifications in certMILS

Hohenegger¹,

Krummeck²,

Banos³

et al. 2021

2021 4th IEEE International Conference on Industrial Cyber-Physical Systems (ICPS)

Self Cite

View full text Add to dashboard Cite

show abstract

“…For the certification, the separation kernel helps to fulfil certain IEC 62443-4-2 functional requirements, reusing assurance provided by the separation kernel, mainly in the IEC 62443 functional groups CR5 restricted data flow and CR7 resource availability, as well as CR3 system integrity [16]. In Table 2, evaluation arguments for some CR5/CR7 group functional requirements are shown across the pilots: The MILS platform's separation kernel is referred to as "MILS separation kernel" or "separation layer".…”

Section: Security Architecturementioning

confidence: 99%

Security Certification of Cyber Physical Systems for Critical Infrastructure based on the Compositional MILS Architecture

Hohenegger¹,

Krummeck²,

Banos³

et al. 2021

IECON 2021 – 47th Annual Conference of the IEEE Industrial Electronics Society

Self Cite

View full text Add to dashboard Cite

We describe compositional architectures and certifications in the research project certMILS. Compositional architectures enable re-use of certified COTS (commercial off-the-shelf) components with a well-defined delegation of responsibilities between component developers and system integrators during cyber physical system design and certification. We show how we used a Common Criteria certified MILS (Multiple Independent Levels of Safety / Security) platform for compositional designs and IEC 62443-4-1/62443-4-2 security evaluations and certifications for composed systems from the domains of smart grid, railway, and subway, that are safety-and security-critical.I.

show abstract

Certification Cycles of Train Cyber Gateway

Cited by 4 publications

References 1 publication

Control of Security of Cyber Train Gateway

Control of Security of Cyber Train Gateway

Security certification experience for industrial cyberphysical systems using Common Criteria and IEC 62443 certifications in certMILS

Security Certification of Cyber Physical Systems for Critical Infrastructure based on the Compositional MILS Architecture

Contact Info

Product

Resources

About