Skip to main content

Cybersecurity in the RAILway sector

Objective

Railway infrastructures are moving towards more intelligent, connected, user-centric and collaborative systems. While it brings many advantages for the industry and users, it also poses new opportunities for cyber-criminals and terrorists. CYRail aims to deliver tailored specifications and recommendations for secure modern rail systems design and operation.

The challenges are multiple: wide and distributed geographical display of rail systems limit the traditional cyber-protection and cyber-defence tools & practices; the heterogeneous nature of rail systems make them vulnerable to blended attacks; the collaboration with other transportation infrastructures increase the number of points for attack; new passenger-centric services may expose rail systems to threats known in the IoT; last but not least, ICT supporting these trends are not necessarily trusted for critical applications.

CYRail will address those challenges through a methodical diagnosis and specification process, enforced at each step of the cyber-security chain: operational context and scenarios will be defined, followed by a security assessments of railway systems. An analysis of threats targeting those infrastructures will be developed as well as innovative, attack detection and alerting techniques. Adapted mitigation plans and countermeasures will be defined, taking into account their potential impact on operations. Protection Profiles for railway control and signalling applications will be delivered to ensure security by design of new rail infrastructures.

The CYRail consortium intends to take advantage of developments in other industries (aeronautics, automotive and energy) and bring them into the railway sector, taking similarities and specificities into account. The Consortium is comprised of a well-balanced group of 6 partners from 5 European countries with complementary skills. An Advisory Board is foreseen, to bring on board the expertise from stakeholders within the railway value chain.

Call for proposal

H2020-S2RJU-2015-01

See other projects for this call

Sub call

H2020-S2RJU-OC-2015-01-2

Coordinator

EVOLEO TECHNOLOGIES LDA
Net EU contribution
€ 209 000,00
Address
Rua Goncalo Mendes Maia 1350 1 H
4425 656 Maia
Portugal

See on map

Region
Continente Norte Área Metropolitana do Porto
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 0,00

Participants (5)

FUNDACIÓN INVESTIGACIÓN UNIVERSIDAD EMPRESA JAKINTZA LANEZKO IKERKUNTZA - EUSKOIKER
Spain
Net EU contribution
€ 141 000,00
Address
Gran Via De Don Diego Lopez De Haro, 38 - 3º Dpto. 4
48009 Bilbao (Bizkaia)

See on map

Region
Noreste País Vasco Bizkaia
Activity type
Research Organisations
Other funding
€ 0,00
FORTISS GMBH
Germany
Net EU contribution
€ 228 000,00
Address
Guerickestrasse 25
80805 Munchen

See on map

Region
Bayern Oberbayern München, Kreisfreie Stadt
Activity type
Research Organisations
Other funding
€ 0,00
UNION INTERNATIONALE DES CHEMINS DE FER
France
Net EU contribution
€ 257 250,00
Address
Rue Jean Rey 16
75015 Paris

See on map

SME

The organization defined itself as SME (small and medium-sized enterprise) at the time the Grant Agreement was signed.

Yes
Region
Ile-de-France Ile-de-France Paris
Activity type
Other
Other funding
€ 0,00
AIRBUS CYBERSECURITY SAS
France
Net EU contribution
€ 427 900,00
Address
Boulevard Jean Moulin 1 Zac De La Clef Saint Pierre
78990 Elancourt

See on map

Region
Ile-de-France Ile-de-France Yvelines
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 0,00
ATSEC INFORMATION SECURITY AB
Sweden
Net EU contribution
€ 235 000,00
Address
Svardvagen 3 C
18233 Danderyd

See on map

Region
Östra Sverige Stockholm Stockholms län
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Other funding
€ 0,00