Security Architecture for protecting Safety-critical Railway Infrastructure
Digitization, connectivity, and use of commercial-off-the-shelf technologies has reached Safety-critical areas such as the Railway sector. This creates new opportunities for attacks and makes it necessary to integrate IT Security measures into Railway command and control systems (CCS). However, the integration of Security mechanisms into a system certified according to the Railway Safety standard EN 50128 is a big challenge.
This presentation gives an overview of an IT Security architecture, which allows to operate Security measures on Safety systems such as object controllers. It consists of a hardware platform with a Trusted Platform Module (TPM) 2.0, a MILS (Multiple Independent Levels of Safety and Security) Separation Kernel (SK), and various Security applications.
The TPM serves as Security anchor and enables, e.g., secure storage, measured boot, and remote attestation to detect tampering with the system software. The MILS OS ensures freedom of interference when running Safety and Security applications.
This presentation with Fraunhofer SIT took place at the embedded world digital 2021.
More information at www.sysgo.com/railway
Download the Whitepaper at www.sysgo.com/wp-sarail
Watch the video on our YouTube channel: www.youtube.com/watch?v=l6PKPXel3To
# # #
Fraunhofer SIT: www.sit.fraunhofer.de/en/
HASELNUSS Project: www.haselnuss-projekt.de