RazorSecure specialises in providing cyber security solutions for the rail industry, and is involved in the creation of standards through our involvement in CENELEC and IEC. We have developed an understanding of what train operators specifically need and also the engineering challenges of delivering solutions through OEMs.
As a result, we have created solutions to help OEMs meet security requirements derived from sources such as:
- CENELEC TS 50701 technical specification (Europe)
- EU NIS Directive
- NIST Cyber Security Framework (USA)
- The series of ISA/IEC 62443 standards (International)
- AS 7770 (Australia)
- TSA Security Directive
What is TS 50701?
TS 50701 is a technical specification for cyber security in rail, from IEC62443. It was developed by the CENELEC Technical Committee 9X (TC9X) Working Group 26 (WG26) who cover everything to do with electrical systems and electronics for railways.
The aim of TS 50701 is to define the processes for the identification, assessment and management of cyber threats and risks in railway applications. TS50701 makes available a cyber security technical specification that covers not just signalling, rolling stock, or fixed installations, but the whole rail ecosystem, and provides a framework for cyber requirements for both new procurements and legacy fleets
TS 50701 key railway application cyber security aspects:
- Defines the processes for the identification, assessment and management of cyber threats and risks in railway applications, including identifying potential vulnerabilities and possible attacks, and assessing their impact on operations and security.
- Proposes measures for the protection of critical functions in railway applications, including technical measures such as data encryption, user authentication, access rights management, and network monitoring.
- Defines the procedures for managing cyber incidents in railway applications, including incident reporting, investigation and analysis, and taking appropriate action to minimise harm.
- Recommends the implementation of safe development processes for railway applications, including risk analysis and testing.
Why is TS 50701 important?
The railway industry is a key part of our critical national infrastructure, and as rail systems become more digitised and interconnected, the sector faces increasing cyber security threats. A train is part of a diverse cross-border eco-system with safety critical and non-safety critical systems in the environment. Attackers can have easy physical access to systems, therefore on-going monitoring is an essential way to ensure these systems have not been compromised.
TS 50701 provides a framework for railway organisations to manage increased vulnerability and exposure to cyber security risks, helping to protect their critical assets. The standard puts the case forward that rail networks are more complex than conventional networks and therefore require a cyber security programme that considers the distinctive challenges seen within rolling stock. With this standard in place, rail operators can ensure their systems are secure by design, have defence in depth, and are capable of the on-going monitoring and intrusion detection of their systems, devices, and networks.
How can RazorSecure help?
RazorSecure can help you reach your target security levels by providing specific solutions for key security countermeasures.
Security Monitoring - Device & Network Monitoring with Anomaly Detection
RazorSecure Delta
RazorSecure's Delta Intrusion Detection System, continuously monitors system and network behaviour, detecting behaviour-based anomalies that could indicate a potential threat. Providing a critical function of a defence-in-depth strategy for securing rail systems, Delta has been developed in line with key rail cyber security frameworks.
Addressing the key security, monitoring, and reporting requirements of TS 50701, Delta is an advanced intrusion detection and monitoring system designed specifically for rail on-board and wayside applications, with host or network-based deployment modes. Quickly detecting, alerting and responding to malicious activity, security violations, and behavioural anomalies, Delta tracks, logs, and audits changes or activity in systems and network traffic. The solution provides 24/7 continuous monitoring in real time, complete visibility of asset inventory, and discovery and mapping of all systems across new and legacy fleets, for the life of the asset.
Accurate Reporting - Intuitive Security Dashboard, Alerts, & Triage
RazorSecure Delta & Security Dashboard
RazorSecure Security Dashboard is a user interface that provides real-time insights into your cyber events, threats, and potential threat actors, and the flexibility to export data to a SOC or SIEM allowing ingestion into an external tool. Tailored to individual requirements, it allows for reporting of individual or group events for further triage of potential incidents, and the capability to report over an extended timeframe to observe trends and data for informed business decisions, and improved cyber posture.
RazorSecure Security Dashboard accurately collects essential data to provide security analytics in a single pane of glass view. With real-time data of ongoing system and network activity, our intelligent security analytics help you visualise your rolling-stock security posture, and gain a clear view of the current cyber risk landscape across your rail environment.
- Receive reports with a clear view of your cyber risk levels, threat details, and potential vulnerabilities
- Live notifications alerting to critical attacks and operational issues that need to be addressed
- Intuitive dashboard platform with live data, actionable insights, and remediation recommendations
Critical Network Security - Network Segregation & Next Generation Firewalls
RazorSecure's Security Gateway
RazorSecure's Security Gateway is a powerful tool that maintains the safety, availability and integrity of rail operations, and aids in the compliance of TS 50701.
Fulfilling key security requirements of TS 50701, the solution establishes a barrier between operational, comfort, and OT critical control systems, ensuring network communication is controlled and permitted between protected systems. The Security Gateway is configured using open-source or next-generation firewalls, and provides a detailed analysis of networks and data flows across installed devices. By segmenting networks in this way, asset owners can prevent unauthorised access and internal threats from moving unilaterally across their networks, reducing the risk of a major security incident.
Security Gateway optionally includes dedicated rail protocol filters that ensure only correctly formed validated packets are passed between zones. Traffic is checked for message type, source, and destination, and conformance of data content to specification.
Secure Access Control & Audit Trail
RazorSecure's Digital Maintenance Gateway
RazorSecure’s Digital Maintenance Gateway (DMG) is a holistic cyber security solution for rolling stock, reducing maintenance time and cost, enhancing cyber security, and helping meet the requirements of TS5070.
The DMG provides engineers with a solution that meets the efficiency challenges of a modern digital train while addressing the key maintenance security requirements of TS 50701. Through direct integration with train systems, engineers are able to gain secure local and remote access using unique credentials and multifactor authentication. The DMG eliminates dedicated service laptops and USB sticks removing the risk of connecting to potentially insecure on-board systems, and of unauthorised applications or malware. sticks, and engineers are guaranteed working software tools and the files that they need to complete their tasks. Maintenance time and cost is reduced, with improved cyber security.
Contact us today to learn more about how RazorSecure can help you comply with TS 50701 and protect your railway organisation from cyber threats. Our holistic approach to deployment is customised to the requirements of each customer, working with you to find a solution for your unique challenges.
