Cybersecurity threats to railways are increasing, both due to improvements in the techniques of hackers and the increasing merger of cyber and physical spheres. Accepted approaches to safety can be extended to consider the risks from cyber, however the nature of railways as complex cyber-physical systems of systems may require a broader approach beyond functional safety. This paper explores some of the cybersecurity hazards using a war gaming approach. The authors find that, while standard engineering approaches are effective in building new rail control system components, a broader and more creative consideration of attacks has benefits. In particular they identify the ability to cause mass disruption by targeting the fail-safes designed to ensure safety or auxiliary systems that are not directly classified within the scope of the ICS.

铁路的网络安全威胁正在增加，这既是由于黑客技术的进步，又是网络与物理领域合并的增加。可以将公认的安全方法扩展到考虑来自网络的风险，但是，铁路作为系统的复杂网络物理系统的性质可能需要功能安全以外的更广泛的方法。本文使用战争游戏方法探索了一些网络安全隐患。作者发现，尽管标准的工程方法可以有效地构建新的铁路控制系统组件，但对攻击进行更广泛和更具创造性的考虑会有所裨益。尤其是，它们通过针对旨在确保未在ICS范围内直接分类的安全或辅助系统的故障安全措施，确定引起大规模破坏的能力。