• ISSN 0258-2724
  • CN 51-1277/U
  • EI Compendex
  • Scopus
  • Indexed by Core Journals of China, Chinese S&T Journal Citation Reports
  • Chinese S&T Journal Citation Reports
  • Chinese Science Citation Database
Volume 28 Issue 3
Jun.  2015
Turn off MathJax
Article Contents
Journal of Southwest Jiaotong University  > 2015  >  28(3): 478-484,503.
LI Saifei, YAN Lianshan, GUO Wei, GUO Jin, CHEN Jianyi, PAN Wei, FANG Xuming. Analysis of Network Security for Chinese High-Speed Railway Signal Systems and Proposal of Unified Security Control[J]. Journal of Southwest Jiaotong University, 2015, 28(3): 478-484,503. doi: 10.3969/j.issn.0258-2724.2015.03.015
Citation: LI Saifei, YAN Lianshan, GUO Wei, GUO Jin, CHEN Jianyi, PAN Wei, FANG Xuming. Analysis of Network Security for Chinese High-Speed Railway Signal Systems and Proposal of Unified Security Control[J]. Journal of Southwest Jiaotong University, 2015, 28(3): 478-484,503. doi: 10.3969/j.issn.0258-2724.2015.03.015
shu

Analysis of Network Security for Chinese High-Speed Railway Signal Systems and Proposal of Unified Security Control

doi: 10.3969/j.issn.0258-2724.2015.03.015
  • Received Date: 05 Aug 2014
  • Publish Date: 25 Jun 2015
    Abstract
  • In order to ensure the network security of China's high-speed railway signal system, the network security issues including the central traffic control (CTC) system, train control system, centralized signal monitoring system and the GSM-R system were analyzed generally. Subsequently a unified network security control and management strategy was proposed based on the software-defined networking (SDN) architecture. The centralized management and unified security policies are achieved in one physical network, and the original control logics between sub-networks including CTC network, train control network and centralized signal monitoring network are all software-defined in the control plane, which enables the finer and unified control of the whole network. Using the logically centralized controller, the unified device register control, communication control and packet traceability are all achieved, thus improving the network security and reducing the management complexity. According to the analysis, the proposed architecture is centrally managed, network programmable and unified of the security policy. The proposed strategy is better than the distributed control network for the management of China's high-speed railway signal system network security and can solve the complex management of networks' interconnection of different security levels.

     

    • FullText(HTML)
  • loading
    • References(38)
  • CHEN T M, ABU-NIMEH S. Lessons from stuxnet
    BREWER R. Advanced persistent threats: minimising the damaged
    [J]. Computer, 2011, 44(4): 91-93.
    北京交通大学,株洲南车时代电气股份有限公司. GB/T 24339.12009 轨道交通 通信、信号和处理系统 第1部分 封闭式传输系统中的安全相关通信
    [J]. Network Security, 2014, 2014(4): 5-9.
    北京交通大学,株洲南车时代电气股份有限公司. GB/T 24339.22009 轨道交通 通信、信号和处理系统 第2部分 开放式传输系统中的安全相关通信
    DECOTIGNIE J D. Ethernet-based real-time and industrial communications
    中华人民共和国铁道部. 科技运
    [S]. 北京:国家质检总局,2009.
    中华人民共和国铁道部. 科技运
    中华人民共和国铁道部. 运基信号
    [S]. 北京:国家质检总局,2009.
    中华人民共和国铁道部. 运基信号
    刘大为,郭进,王小敏,等. 中国铁路信号系统智能监测技术
    [J]. Proceeding of IEEE, 2005, 93(6): 1102-1117.
    中华人民共和国铁道部. 运基通信
    中华人民共和国铁道部. 运基信号
    MARTIN C, MICHAEL J, JUSTIN P, et al. Ethane: taking control of the enterprise
    [S]. 北京:中国铁道出版社,2008.
    ONF. Software-defined networking: the new norm for networks. (2012-04-13)
    GUDE N, KOPNNEN T, PETTIT J, et al. NOX: towards and operating system for networks
    NICK M, ANDERSON T, BALAKRISHNAN H, et al. OpenFlow: enabling innovation in campus networks
    SHERWOOD R, GIBB G, YAP K K, et al. Carving research slices out of your production networks with OpenFlow
    LI S F, YAN L S, XING H L, et al. Enhanced robustness of control network for chinese train control system level 3 (CTCS-3) facilitated by software defined networking
    [J]. 西南交通大学学报,2014,49(5): 904-912. LIU Dawei, GUO Jin, WANG Xiaomin, et al. Intelligent monitoring technologies for railway signaling systems in China
    [J]. Journal of Southwest Jiaotong University, 2014, 49(5): 904-912.
    [J]. ACM SIGCOMM Computer Communication Review, 2007, 37(4): 1-12.
    [J]. ACM Sigcomm Computer Communication Review, 2008, 38(3): 105-110.
    [J]. ACM Sigcomm Computer Communication Review, 2008, 38(2): 69-74.
    [J]. ACM Sigcomm Computer Communication Review, 2010, 40(1): 129-130.
    [J]. International Journal of Rail Transportation, 2014, 2(4): 239-252.
    15号 分散自律调度集中系统技术条件.(2004-02-12)
    185号 GSM-R与CTC系统接口规范. (2006-06-08)
    34号 CTCS-3级列控系统总体技术方案
    223号 客运专线信号系统安全数据网技术方案 V2.0. (2010-11-12)
    709号 铁路信号集中监测系统技术条件. (2010-09-20)
    267号 铁路信号安全通信协议技术规范.
    -08-05]. https://www.opennetworking.org/images/stories/down loads/sdn-resources/white-papers/wp-sdn-newnorm.pdf.
    • Relative Articles
    • Supplements(0)
    • Cited By
  • 加载中

Catalog

    通讯作者: 陈斌, bchen63@163.com
    • 1. 

      沈阳化工大学材料科学与工程学院 沈阳 110142

    1. 本站搜索
    2. 百度学术搜索
    3. 万方数据库搜索
    4. CNKI搜索
    Get Citation
    PDF
    XML
    Article views(1469) PDF downloads(777) Cited by()
    Proportional views
    Related

    Copyright © 2009 Journal of Southwest Jiaotong University

    Address: RM449 & 451, Administrative Building, Xipu Campus, Southwest Jiaotong University Western Hi-tech Zone, Chengdu, Sichuan 611756, P. R. China

    Tel: 028-66367562Fax: 028-66366552Email: xbz@home.swjtu.edu.cn

    Supported by: Beijing Renhe Information Technology Co. Ltdsupport: info@rhhz.net

    /

    DownLoad:  Full-Size Img  PowerPoint
    Return
    Return