Train Equipment Technical Security

General discussion about railroad operations, related facilities, maps, and other resources.

Moderator: Robert Paniagua

Train Equipment Technical Security

Postby STrRedWolf » Mon Jul 09, 2018 7:08 am

I happen to pull an article from the Register today about transportation security in the context of equipment networks -- specifically the computers that are controlling the engines of the vehicles.

Think about this way: It's quite plausible that someone can hijack both the signaling system and the engines to cause a massive crash that levels a good chunk of New York.

https://www.theregister.co.uk/2018/07/0 ... interview/

"On the flip side, in the US the Association of American Railroads is saying we can't interfere, all we can do is broker discussions. Regulators are saying, well, we have to take a lead from the railroad association. Regulators need to get involved. C'mon, guys: stop the finger pointing. This is a problem that we all have to solve."
"The last and final stop is BALTIMORE PENN STATION." I can has MARC V?
User avatar
STrRedWolf
 
Posts: 1006
Joined: Sat Oct 24, 2015 5:18 pm
Location: Baltimore, MD

Re: Train Equipment Technical Security

Postby DutchRailnut » Mon Jul 09, 2018 6:48 pm

train signal like cab signal /atc or acses and operations systems on trains are not accessible by wifi.
systems at dispatcher end can easily be protected , seems like BS article suggesting otherwise.
If Conductors are in charge, why are they promoted to be Engineer???

Retired Triebfahrzeugführer
User avatar
DutchRailnut
 
Posts: 21698
Joined: Thu Mar 11, 2004 8:02 pm
Location: released from Stalag 13

Re: Train Equipment Technical Security

Postby ExCon90 » Tue Jul 10, 2018 3:56 pm

They may be thinking about the type of PTC being installed in the West, with radio towers -- that might be possible to hack. (?)
ExCon90
 
Posts: 3867
Joined: Thu Sep 18, 2008 1:22 pm

Re: Train Equipment Technical Security

Postby Backshophoss » Tue Jul 10, 2018 5:55 pm

While there have been hacks into onboard automotive computers,All Railroad Mainframe systems have robust firewall,antivirus protection setups,
there will be a network sharing data between the various PTC backroom systems to allow Locos from other RR to operate on that RR's PTC.
As Amtrak will be part of this PTC backroom network,this could the "weak" link unless there's "Ironclad" network security
Backshophoss
 
Posts: 5415
Joined: Mon Mar 05, 2012 7:58 pm

Re: Train Equipment Technical Security

Postby STrRedWolf » Tue Jul 10, 2018 9:09 pm

Um... when was the last audit that proved that out?

Washington Post reported that WMATA is susceptible to hacking: https://www.washingtonpost.com/local/tr ... b7b8105ed6

Fair use quote:

That audit was presented to Metro’s board of directors in a closed meeting late last month, but the report and takeaways are being kept secret because of the risk of tipping off potential criminals to existing weaknesses at the transit agency.

...

Upcoming audits, however, could reveal more vulnerabilities in the system. According to a schedule presented to the board, Cherrington plans six more security-related audits over the next fiscal year.

Those reviews will examine a range of potential hazards — from a massive data breach of SmarTrip card information to potential attacks that could interfere with critical safety operations such as rail traffic control systems, gas and fire sensors, the power grid, station ventilation, and voice and data communications.
"The last and final stop is BALTIMORE PENN STATION." I can has MARC V?
User avatar
STrRedWolf
 
Posts: 1006
Joined: Sat Oct 24, 2015 5:18 pm
Location: Baltimore, MD


Return to Operations, Facilities, Maps and Resources

Who is online

Users browsing this forum: No registered users and 2 guests