On train automatic stop control using balises: Attacks and a software-only countermeasure

William G. Temple, Bao Anh N. Tran, Binbin Chen, Zbigniew T Kalbarczyk, William H Sanders

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

The components and systems involved in railway operation are subject to stringent reliability and safety requirements, but up until now the cyber security of those same systems has been largely under-explored. In this work, we examine a widely-used railway technology, track beacons or balises, which provide a train with its position on the track and often assist with accurate stopping at stations. Balises have been identified as one potential weak link in train signalling systems. We evaluate an automatic train stop controller that is used in real deployment and show that attackers who can compromise the availability or integrity of the balises' data can cause the trains to stop dozens of meters away from the right position, disrupting train service. To address this risk, we have developed a novel countermeasure that ensures the correct stopping of the trains in the presence of attacks, with only a small extra stopping delay.

Original languageEnglish (US)
Title of host publicationProceedings - 2017 IEEE 22nd Pacific Rim International Symposium on Dependable Computing, PRDC 2017
EditorsMasato Kitakami, Dong Seong Kim, Vijay Varadharajan
PublisherIEEE Computer Society
Pages274-283
Number of pages10
ISBN (Electronic)9781509056514
DOIs
StatePublished - May 5 2017
Event22nd IEEE Pacific Rim International Symposium on Dependable Computing, PRDC 2017 - Christchurch, New Zealand
Duration: Jan 22 2017Jan 25 2017

Publication series

NameProceedings of IEEE Pacific Rim International Symposium on Dependable Computing, PRDC
ISSN (Print)1541-0110

Other

Other22nd IEEE Pacific Rim International Symposium on Dependable Computing, PRDC 2017
CountryNew Zealand
CityChristchurch
Period1/22/171/25/17

Fingerprint

Availability
Controllers

Keywords

  • Balise
  • Cyber physical system security
  • Railway system
  • Simulation
  • Train automatic stop control

ASJC Scopus subject areas

  • Computational Theory and Mathematics
  • Computer Science Applications
  • Hardware and Architecture
  • Software

Cite this

Temple, W. G., Tran, B. A. N., Chen, B., Kalbarczyk, Z. T., & Sanders, W. H. (2017). On train automatic stop control using balises: Attacks and a software-only countermeasure. In M. Kitakami, D. S. Kim, & V. Varadharajan (Eds.), Proceedings - 2017 IEEE 22nd Pacific Rim International Symposium on Dependable Computing, PRDC 2017 (pp. 274-283). [7920632] (Proceedings of IEEE Pacific Rim International Symposium on Dependable Computing, PRDC). IEEE Computer Society. https://doi.org/10.1109/PRDC.2017.52

On train automatic stop control using balises : Attacks and a software-only countermeasure. / Temple, William G.; Tran, Bao Anh N.; Chen, Binbin; Kalbarczyk, Zbigniew T; Sanders, William H.

Proceedings - 2017 IEEE 22nd Pacific Rim International Symposium on Dependable Computing, PRDC 2017. ed. / Masato Kitakami; Dong Seong Kim; Vijay Varadharajan. IEEE Computer Society, 2017. p. 274-283 7920632 (Proceedings of IEEE Pacific Rim International Symposium on Dependable Computing, PRDC).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Temple, WG, Tran, BAN, Chen, B, Kalbarczyk, ZT & Sanders, WH 2017, On train automatic stop control using balises: Attacks and a software-only countermeasure. in M Kitakami, DS Kim & V Varadharajan (eds), Proceedings - 2017 IEEE 22nd Pacific Rim International Symposium on Dependable Computing, PRDC 2017., 7920632, Proceedings of IEEE Pacific Rim International Symposium on Dependable Computing, PRDC, IEEE Computer Society, pp. 274-283, 22nd IEEE Pacific Rim International Symposium on Dependable Computing, PRDC 2017, Christchurch, New Zealand, 1/22/17. https://doi.org/10.1109/PRDC.2017.52
Temple WG, Tran BAN, Chen B, Kalbarczyk ZT, Sanders WH. On train automatic stop control using balises: Attacks and a software-only countermeasure. In Kitakami M, Kim DS, Varadharajan V, editors, Proceedings - 2017 IEEE 22nd Pacific Rim International Symposium on Dependable Computing, PRDC 2017. IEEE Computer Society. 2017. p. 274-283. 7920632. (Proceedings of IEEE Pacific Rim International Symposium on Dependable Computing, PRDC). https://doi.org/10.1109/PRDC.2017.52
Temple, William G. ; Tran, Bao Anh N. ; Chen, Binbin ; Kalbarczyk, Zbigniew T ; Sanders, William H. / On train automatic stop control using balises : Attacks and a software-only countermeasure. Proceedings - 2017 IEEE 22nd Pacific Rim International Symposium on Dependable Computing, PRDC 2017. editor / Masato Kitakami ; Dong Seong Kim ; Vijay Varadharajan. IEEE Computer Society, 2017. pp. 274-283 (Proceedings of IEEE Pacific Rim International Symposium on Dependable Computing, PRDC).
@inproceedings{a2c272601f0d42dd9d0e1db62128c90f,
title = "On train automatic stop control using balises: Attacks and a software-only countermeasure",
abstract = "The components and systems involved in railway operation are subject to stringent reliability and safety requirements, but up until now the cyber security of those same systems has been largely under-explored. In this work, we examine a widely-used railway technology, track beacons or balises, which provide a train with its position on the track and often assist with accurate stopping at stations. Balises have been identified as one potential weak link in train signalling systems. We evaluate an automatic train stop controller that is used in real deployment and show that attackers who can compromise the availability or integrity of the balises' data can cause the trains to stop dozens of meters away from the right position, disrupting train service. To address this risk, we have developed a novel countermeasure that ensures the correct stopping of the trains in the presence of attacks, with only a small extra stopping delay.",
keywords = "Balise, Cyber physical system security, Railway system, Simulation, Train automatic stop control",
author = "Temple, {William G.} and Tran, {Bao Anh N.} and Binbin Chen and Kalbarczyk, {Zbigniew T} and Sanders, {William H}",
year = "2017",
month = "5",
day = "5",
doi = "10.1109/PRDC.2017.52",
language = "English (US)",
series = "Proceedings of IEEE Pacific Rim International Symposium on Dependable Computing, PRDC",
publisher = "IEEE Computer Society",
pages = "274--283",
editor = "Masato Kitakami and Kim, {Dong Seong} and Vijay Varadharajan",
booktitle = "Proceedings - 2017 IEEE 22nd Pacific Rim International Symposium on Dependable Computing, PRDC 2017",

}

TY - GEN

T1 - On train automatic stop control using balises

T2 - Attacks and a software-only countermeasure

AU - Temple, William G.

AU - Tran, Bao Anh N.

AU - Chen, Binbin

AU - Kalbarczyk, Zbigniew T

AU - Sanders, William H

PY - 2017/5/5

Y1 - 2017/5/5

N2 - The components and systems involved in railway operation are subject to stringent reliability and safety requirements, but up until now the cyber security of those same systems has been largely under-explored. In this work, we examine a widely-used railway technology, track beacons or balises, which provide a train with its position on the track and often assist with accurate stopping at stations. Balises have been identified as one potential weak link in train signalling systems. We evaluate an automatic train stop controller that is used in real deployment and show that attackers who can compromise the availability or integrity of the balises' data can cause the trains to stop dozens of meters away from the right position, disrupting train service. To address this risk, we have developed a novel countermeasure that ensures the correct stopping of the trains in the presence of attacks, with only a small extra stopping delay.

AB - The components and systems involved in railway operation are subject to stringent reliability and safety requirements, but up until now the cyber security of those same systems has been largely under-explored. In this work, we examine a widely-used railway technology, track beacons or balises, which provide a train with its position on the track and often assist with accurate stopping at stations. Balises have been identified as one potential weak link in train signalling systems. We evaluate an automatic train stop controller that is used in real deployment and show that attackers who can compromise the availability or integrity of the balises' data can cause the trains to stop dozens of meters away from the right position, disrupting train service. To address this risk, we have developed a novel countermeasure that ensures the correct stopping of the trains in the presence of attacks, with only a small extra stopping delay.

KW - Balise

KW - Cyber physical system security

KW - Railway system

KW - Simulation

KW - Train automatic stop control

UR - http://www.scopus.com/inward/record.url?scp=85019634085&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85019634085&partnerID=8YFLogxK

U2 - 10.1109/PRDC.2017.52

DO - 10.1109/PRDC.2017.52

M3 - Conference contribution

AN - SCOPUS:85019634085

T3 - Proceedings of IEEE Pacific Rim International Symposium on Dependable Computing, PRDC

SP - 274

EP - 283

BT - Proceedings - 2017 IEEE 22nd Pacific Rim International Symposium on Dependable Computing, PRDC 2017

A2 - Kitakami, Masato

A2 - Kim, Dong Seong

A2 - Varadharajan, Vijay

PB - IEEE Computer Society

ER -