Protect Systems From External and Internal Cyber Attacks

People on a rail train

THE CHALLENGE 

Mitigate the risks of vulnerable on-board systems from being compromised.

The scale of an attack on rolling-stock depends on different factors, from the vulnerability levels of the systems, to the intended outcome of the attack. While there are already a lot of ways for attackers to affect rail operations or the controls of individual systems, new methods continue to emerge.  Due to the complexity of the modern rail network architecture, potential vulnerabilities and exploits can introduce new threats that enable an ‘advanced persistent threat’ hiding within the network undetected for long periods of time.

Additionally, security updates and patches in rail environments can be problematic and disruptive to operations. This is particularly concerning because systems with known vulnerabilities can be operational for decades. 

Operational technology security standards, including NIS and NIST, require the entire network to be protected from all types of threat attack.  A rail cyber security strategy should protect the assets that it deems critical to effective, reliable and safe operation. Unfortunately, there are no shortcuts or single “silver bullet” solutions to solve cyber security vulnerabilities, and many traditional IT cyber security tools cannot be used in OT environments.

 

THE SOLUTION  

Take a proactive approach to protect assets and maintain safety

As connectivity expands, protecting your assets and vulnerable systems is critical for digital success. To protect systems against a wide variety of attacks, RazorSecure employs a comprehensive approach to providing protection for the entire life of rail assets, while taking into consideration the unique network environment and providing effective layers of protection based on a system’s exposure to cyber security risks.

Cyber security protection in rail demands a specialized understanding of the unique systems affected as the controls to mitigate a specific risk may vary among different types of systems. From monitoring, threat detection, authentication, segmentation and automated response and recovery; RazorSecures forms a ‘defense in depth’ cyber security approach that is designed exclusively for vulnerabilities across rail fleets, but also the exact vulnerabilities in each individual system within rolling-stock. 

RazorSecure solutions will impede the progress of a cyber intruder in real-time and reduce the consequences of the attack by automating mitigation responses in a way that does not cause additional harm by stopping operational processes inappropriately.  

SOLUTION OUTCOMES

  • Protect against a variety of attacks

    Mitigate security threats regardless if they come from known or unknown sources.

  • Effective for the life of the asset

    Machine-learning technology that maintains effective protection throughout a long lifespan.

  • Support defence-in-depth security

    Leverage multiple products to ensure the most comprehensive cyber risk strategy.