Analysis of Cyber-Attacks for Modern Digital Railway System Using Cyber Range

Abstract

The simulation of a modern railway system on the cyber range will investigate the supple behavior of cyber-attacks in a modern digital railway system. The contemporary digital railway simulation architecture will focus on the railway's signaling system and the control command system, which is a classic SCADA system. With the introduction of IoT technology to railway systems, they have become vulnerable to cyber-attacks. The simulation is conducted on the cyber range server by simulating STCS. The cyber threats will be analyzed through penetration testing using Kali Linux on the simulated STCS on the cyber range. We analyze the impact of the threat agent groups, especially denial of service (DoS) and quay chain attacks that mainly target the STCS. The DoS attack generates the congestion of packets in the railway system network and will compromise the SCADA components in the STCS. The quay chain attack compromises the SCADA component, resulting in a delay in the signal system of STCS. The attack tree analysis helps us to understand the behavior of threat agents on STCS. Based on the research, we identified some mitigation techniques to reduce the cyber-attacks impact on the modern digital railway system.