CYRAIL Final Conference, UIC HQ 18 September 2018 at UICHQ, Paris, France

INTRODUCTION

What are the threats?
How to assess the risks?
How to detect attacks targeting Rail systems?
How to mitigate the consequences, what are the counter measures?
What are the Resilience Mechanisms?

The final recommendations of the project was presented during this one-day conference on 18 September 2018 from 09:00 to 16:30

PRESENTATIONS

UIC INTRODUCTION – Jacques Colliard
KEYNOTE SPEECHES
ERA - Thomas Chatelet
CEN-CENELEC - Denis Miglianico
UIC Rail System Department – Francisco Marques on behalf of Marc Antoni
CYRAIL OVERVIEW
Context and objectives (EVOLEO)
Railway systems - Operational context and scenario (UIC)
What are the threats? (AIRBUS)
HOW TO ASSESS THE RISKS? (EUSKOIKER)
What are the main risks?
Overview on existing methodologies
Recommendation for rail
HOW TO DETECT ATTACKS AND SUPERVISE SYSTEMS?
Assessment of existing solutions and Deployment of detection solutions on CYRAIL’s operational scenario (FORTISS)
Practices and solutions for alerts and incident management (AIRBUS)
HOW TO MITIGATE THE CONSEQUENCES, WHAT ARE THE COUNTERMEASURES?
Identification of mitigation strategies and Focus on Security-by-design and MILS (FORTISS)
Specification of countermeasures for CYRAIL’s operational scenario (AIRBUS)
WHAT ARE THE RESILIENCE MECHANISMS ? (EVOLEO)
Cyber resilience design principles and techniques
Applying cyber resilience on CYRAIL’s operational scenario
FINAL RECOMMENDATIONS : PROTECTION PROFILE SPECIFICATION(ATSEC)
Common Criteria and Protection Profiles
Deriving requirements for the modular Protection Profile
Application to the railway
EXPLOITATION OF THE RESULTS (all)

FINAL BROCHURE

CYRAIL Recommendations on cybersecurity of rail signalling and communication systems

PRESS RELEASE

UIC press release published on 18 September 2018 link