Tuesday, 24 January 2017

How to hack a train, safely

On March 14th and 15th in London, Solutions Architect James McKenney of the CSX Corporation will be discussing "How to hack a train, Safely. Rail Cyber Risk, Testing Methodologies and Techniques," for the Cyber Senate 2nd Annual Rail Cyber Security Summit.

Mr McKenney states, "The rail environment has its share of anecdotes on cyber risk and rumors of cyber attacks. But really, can a cyber attack cause a safety issue? Can it truly disrupt rail operations? In this talk I discuss the program I developed and led over the summer which built a live environment of in-service locomotives, switches, crossings and signals for hackers to attack and explore eleven questions that keep coming up in rail; For example; Can a cyber attack cause a train to accelerate out of control? Can a cyber attack cause a train to miss a braking target? Can it cause a collision? To finally put the anecdotes to rest we built a program with real trains, engineers and missions to understand impact, and, if an adverse outcome was possible, what level of expertise would be needed to carry it out.

In the presentation I can’t discuss the actual results; but I can discuss how to frame the program, gain support, build and run the program. I also discuss the developed methodologies, techniques and lessons learned from attempting to achieve inherently unsafe outcomes."

The CSX Transportation network encompasses about 21,000 route miles of track in 23 states, the District of Columbia and the Canadian provinces of Ontario and Quebec. Their transportation network serves some of the largest population centers in the nation. Nearly two-thirds of Americans live within CSX’s service territory. The company’s rail and intermodal businesses serve major markets in the eastern United States and has access to over 70 ocean, river and lake port terminals along the Atlantic and Gulf Coasts, the Mississippi River, the Great Lakes and the St. Lawrence Seaway. The company also has access to Pacific ports through alliances with western railroads.
 
Additional Speakers include: Department for Transport, RSSB, SNCF, DB Netz, London Underground, Network Rail, NS Dutch Railways, Thales, The Go Ahead Group, ERTMS Users Group with special panellist contributions from Transport for London and leading transport cyber security subject matter experts from the US based AMC Cyber and panel moderation from the US ICS ISAC.
Final seating is now being allocated


2nd Annual 
Rail Cyber Security Summit 

London England
14th & 15th March 2017
Millennium Gloucester Hotel
www.railcybersecurity.com

Lead Co Sponsors Thales
Associate Sponsors Waterfall Securities
Exhibitors LightCyber


Media Partners include:
AMC Cyber, CCI, Infosecurity Magazine, Webster University's Cyberpspace Research Institute, ICS ISAC

Exclusive hotel rates are available for a limited time at the Millennium Gloucester Hotel


Sponsorship and delegate information contact
Marketing@cybersenate.com
or call + 44 (0)207 096 1754 


2016 sold out with representatives from the Rail Operators, Government, Cyber Security Solution providers and industry leading consultants and integrators.    


Asset Information and Data Management for Smart Rail June 14/15th London
Call for Papers contact james@sagacity-media.com
 
The Cyber Senate is a division of Sagacity-Media Ltd 
Registration number Companies House 
08753316, England & Wales

No comments:

Post a Comment