RAILWAY SECURITY SYSTEM

Overview

Cybersecurity Risks in Rail Transit

Railway systems worldwide are increasingly targeted by cyberattacks.
Attacks on metro and railway networks caused service disruptions and safety issues.
Legacy methods, such as IPsec-based VPNs, provide only packet-level protection, with one-way authentication and no multicast support.
Busan–Gimhae LRT halted 3.5 hrs (expired certificate, 2019).
NYC Subway breached in cyberattack (2021).
Iran & Denmark subway services disrupted by cyberattacks (2021, 2022).

Core Competencies

Purpose
Enhances CBTC security with Layer 7 protection and efficient management.

Application-Layer Security

Message-level protection at Layer 7 with auth, encryption, firewall, intrusion detection.

Device-to-device verification, overcoming one-way IPsec limitation.

Secure multicast with real-time group key distribution/management.

Ensures integrity and trust via live updates with CRL management.

Complies with IEEE 1609.2, KCMVP; scalable and nationally assured.

Tested on autonomous train lines, certified by national agencies.

Expected Benefits

Enhanced Cybersecurity
– Protects critical train control messages against cyber threats, ensuring safe and reliable operations.
System Integrity & Confidentiality
– Strengthens protection against tampering and unauthorized access.
Real-Time Threat Response
– Detects and prevents cyberattacks promptly.
Standards Compliance
– Meets national requirements; IEEE 1609.2, KCMVP.
Interoperability & Scalability
– Adaptable to diverse railway networks.
Cost Savings
– Reduces reliance on foreign tools with localized, field-validated technology.

Certifications

Managed by the National Intelligence Service, KCMVP certifies the security and integrity of cryptographic modules

TRL 9

Contact