RSSP-2 Protocol Security Modeling And Analysis Of Cyber Security For The Railway Signaling System

The railway signaling system is central nervous system in the railway transport system,it is also a core elements to ensure the train operation safety and efficiency. The demands of security information transmission for railway signaling system are stricter following the rapid development of the Chinese Railway High-Speed technology. Nowadays, the increasing number of cyber security events about industry control system (ICS) are happened. Railway signaling system as one of the ICS, it is important to keep the reliability of the system equipment and function integrity. Besides, the great attention also should be paid to the cyber security issue.This dissertation summarizes the current development status of railway signaling communication protocols and the current state on the ICS cyber security research. The work introduced in this paper is shown as follow:(1) On the basis of the railway signaling communication protocol security issue, one of the formalization methods which called the Communication Sequential Processes (CSP) was introduced. Firstly, the three different aspects of RSSP-2 protocol which are the hierarchy structure, threat prevention measures and application example are analyzed. Secondly, Modeling the processes about the key service and peer entity authenticating by CSP method. At last the model checking tool Casper-FDR was applied to verify the confidentiality and authenticity properties of the protocol(2) On the basis of investigation results and ICS cyber security technology, the demands of railway cyber security were proposed. According to these demands, a penetration testing platform was built in laboratory which was applied to test the security of the operation systems, instructions and user accounts about the equipment. At last, the testing results were analyzed and some security advice were proposed.(3) Denial of service attack is a kind of attack mode which has great influence on the cyber security. However, it is almost impossible to do penetration tests in the running railway lines. Besides, the denial of service attack was not be able to test in the currently because of the limitation of the laboratory condition. Hence, the Matlab\SimEvents Modules were used to build scenarios about the attack and the results of this simulation were analyzed.