Presentation is loading. Please wait.

Presentation is loading. Please wait.

Threat identification & analysis

Published byRainer Bösch Modified over 6 years ago

Similar presentations

Presentation on theme: "Threat identification & analysis"— Presentation transcript:

1 Threat identification & analysis
What are the current and emerging threats targeting railway infrastructures?

2 Methodology for threat identification & analysis
Threat identification and analysis Context Transport verticals Rail sector profile Historical attacks All transport sectors Focus on the rail sector Comparative study Targets: Countries, Sectors, Zones and assets Attacks: Attack types and effects, Vulnerability, health and safety Threat Actors profiles: APT, Ransomware Threat scenarios for CYRAIL New likely threat scenarios Overview of potential future attacks Advisory Threat taxonomy and ontology Threat taxonomy: Context, Threat Actor, Target , Attack, Impact Threat ontology

3 Timeline of historical attacks

4 Timeline of historical attacks
2008, Poland: Homemade transmitter that tripped rail switches and redirected trains and injured a dozen people in Lodz 2012, USA: Cyberattacks disrupted rail signaling and traffic in the north-western USA for two days 2015, South Korea: Malware attack against dozens of terminals of a subway operator in Seoul over the course of several months 2016, UK: Multiple cyberespionage operations against Network Rail 2017, Germany: WannaCry ransomware attack on Deutsche Bahn

5 Comparative study Rail/Transport
Targeted sectors Targeted countries Impacted zones Attack types

6 Cyber-attack classification methodology
Identity card of a cyber-attack Based on a threat taxonomy

7 Threat taxonomy Context Geopolitical Attack Type Effect Impact Safety
Unknown geopolitical context Conflicts Economical Not relevant Personal Threat taxonomy Threat Actor Name Name of the attacker or group of attacker Geographical area Location Country Motivation Accidental Coercion Dominance Ideology Notoriety Organisational-gain Personal-gain Personal-Safisfaction Revenge Unpredictable Unknown motivation Resource-level Individual Club Contest Team Organization Government Unknown resource-level Sophistication None Minimal Intermediate Advanced Expert Innovator Strategic Unknown level of sophistication Target Geographical area Location Country Organizational Unit Name of the impacted Organizational Unit Sector Rail Aviation Highway & motor carrier Military transport Maritime Shipping Zone Onboard Wayside Signal Command-onboard Maintain JRU Movement KMC Control Center IT infrastructure Multiple zones Unknown zone Asset Name of the impacted asset(s) Attack Type Type of attack Effect Effect of the attack on the targeted system Vulnerability, health and safety Exploited vulnerability or weakness Impact Safety Unknown Life-threatening injuries Severe and life-threatening injuries Light and moderate injuries No injuries Financial Existence-threatening financial damage Substantial financial damage Undesirable financial damage Operational Vehicule unusable Service required Comfort affected Not relevant

8 New threat scenarios for CYRAIL

9 Risk assessment based on a threat ontology

Download ppt "Threat identification & analysis"

Similar presentations

Critical Infrastructure Protection Policy Priorities Sara Pinheiro European Commission DG Home Affairs.

Critical Infrastructure Protection Policy Priorities Sara Pinheiro European Commission DG Home Affairs.
© 2013 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual.

© 2013 AT&T Intellectual Property. All rights reserved. AT&T, the AT&T logo and all other AT&T marks contained herein are trademarks of AT&T Intellectual.
GAMMA Overview. Key Data Grant Agreement n° 312382 Starting date: 1 st September 2013 Duration: 48 months (end date 31 st August 2017) Total Budget: 14.837.981.

GAMMA Overview. Key Data Grant Agreement n° Starting date: 1 st September 2013 Duration: 48 months (end date 31 st August 2017) Total Budget:
Identification of Critical Infrastructures in the Mediterranean Sea context and communications’ criticalities Irene Fiorucci Cesidio Bianchi Istituto Nazionale.

Identification of Critical Infrastructures in the Mediterranean Sea context and communications’ criticalities Irene Fiorucci Cesidio Bianchi Istituto Nazionale.
Session 8: Modeling the Vulnerability of Targets to Threats of Terrorism 1 Session 8 Modeling the Vulnerability of Targets to Threats of Terrorism John.

Session 8: Modeling the Vulnerability of Targets to Threats of Terrorism 1 Session 8 Modeling the Vulnerability of Targets to Threats of Terrorism John.
Cyber and Maritime Infrastructure

Cyber and Maritime Infrastructure
Alexander Brandl ERHS 561 Emergency Response Environmental and Radiological Health Sciences.

Alexander Brandl ERHS 561 Emergency Response Environmental and Radiological Health Sciences.
S5-1 © 2001 Carnegie Mellon University OCTAVE SM Process 5 Identify Key Components Software Engineering Institute Carnegie Mellon University Pittsburgh,

S5-1 © 2001 Carnegie Mellon University OCTAVE SM Process 5 Identify Key Components Software Engineering Institute Carnegie Mellon University Pittsburgh,
Introduction to Network Defense

Introduction to Network Defense
A project under the 7th Framework Programme CPS Workshop Stockholm 12/04/2010 Gunnar Björkman Project Coordinator A Security Project for the Protection.

A project under the 7th Framework Programme CPS Workshop Stockholm 12/04/2010 Gunnar Björkman Project Coordinator A Security Project for the Protection.
Space Systems as Critical Infrastructure Iulia-Elena Jivanescu 1st Space Retreat, Tenerife, Spain, 8-22 January, 2013.

Space Systems as Critical Infrastructure Iulia-Elena Jivanescu 1st Space Retreat, Tenerife, Spain, 8-22 January, 2013.
Maritime Security Risk Analysis Model

Maritime Security Risk Analysis Model
Presented by: Cyber Operations Division 1 Navigating the Compliance, Risk and Engineering Cyber Security Challenges Impacting Navy Programs 2015 ASNE Intelligent.

Presented by: Cyber Operations Division 1 Navigating the Compliance, Risk and Engineering Cyber Security Challenges Impacting Navy Programs 2015 ASNE Intelligent.
Isdefe ISXXXX-090000-1XX 5.10.2010 Your best ally Panel: Future scenarios for European critical infrastructures protection Carlos Martí Sempere. Essen.

Isdefe ISXXXX XX Your best ally Panel: Future scenarios for European critical infrastructures protection Carlos Martí Sempere. Essen.
Securing Critical Chemical Assets: The Responsible Care ® Security Code Protection of Hazardous Installations from Intentional Adversary Acts European.

Securing Critical Chemical Assets: The Responsible Care ® Security Code Protection of Hazardous Installations from Intentional Adversary Acts European.
INTELLIGENCE SERVICES. The Stratfor Advantage As the world’s leading private intelligence company, Stratfor is able to analyze and deliver timely, accurate.

INTELLIGENCE SERVICES. The Stratfor Advantage As the world’s leading private intelligence company, Stratfor is able to analyze and deliver timely, accurate.
Cyber Warfare Situational Awareness & Best Defense Practices Presented by Hasan Yasar 19.11.2013.

Cyber Warfare Situational Awareness & Best Defense Practices Presented by Hasan Yasar
Research Project #7 Expand the Collection of “Near-Miss” Data to All Modes.

Research Project #7 Expand the Collection of “Near-Miss” Data to All Modes.
CARVER+Shock Vulnerability Assessment Tool “As Agile As the Enemy” The Foundation for Institutional Development.

CARVER+Shock Vulnerability Assessment Tool “As Agile As the Enemy” The Foundation for Institutional Development.
Health Emergency Risk Management Pir Mohammad Paya MD, MPH,DCBHD Senior Technical Specialist Public Health in Emergencies Asian Disaster Preparedness Center.

Health Emergency Risk Management Pir Mohammad Paya MD, MPH,DCBHD Senior Technical Specialist Public Health in Emergencies Asian Disaster Preparedness Center.

Similar presentations

Ads by Google