Transportation System Cybersecurity Framework

Transcription

1 Transportation System Cybersecurity Framework August 24, 2016 Patrick Zelinski, AASHTO

2 Background Growing issue of cybersecurity and its impact on the highway environment has highlighted safety and operational risks to our roadways critical infrastructures It is important to Obtain a clearer picture of past incidents on Intelligent Transportation System (ITS) deployments Gather lessons learned from other sectors using industrial control systems (ICS) Employ specific defensive countermeasures Be prepared for potential future technology deployments (i.e. connected vehicles) The Institute of Transportation Engineers (ITE), AASHTO, the Intelligent Transportation Society of America (ITS America), the National Association of Electrical Equipment and Medical Imaging Manufacturers (NEMA), and the National Association of City Transportation Officials (NACTO) are proposing a Transportation Systems Cyber-Security Framework (TSCF), working with USDOT

3 Transportation System Cyber Security Framework (TSCF) Partnership Develop statement of vision, mission, and goals as well as the formalized partnership agreement Identify the initial set of stakeholder organizations to invite into the partnership: infrastructure stakeholders from both private and public sector representing state, county, city, vendors, manufacturers, and service providers Experts in the field of cybersecurity, industrial cybersecurity standards, as well as other domains can be consulted to adapt known standards and processes for cybersecurity frameworks

4 Outreach Site The attributes for refinement can include but not limited to: Discussion Forum, Outreach/Informational, and Site characteristics. How information sharing is to be conducted with other existing mechanisms such as ISAC, ICS-CERT alerts, or others as identified by SMEs. Outreach and Training material handling as appropriate.

5 Transportation System Cyber Security Framework (TSCF) Working Groups WG1: Public Sector Workgroup (represents AASHTO, ITS America, NEMA, NACTO and ITE) WG2: Vendor/Supplier/Industry Workgroup (represents ITS America, NEMA, and ITE) WG3: Local/Regional Cybercrime/Law Enforcement/Legal WG WG4: Red Team SME (Testing)

6 Needs Assessment and Concept of Operations Create an initial needs assessment outline and assign TSCF work groups to needs Develop a Concept of Operations that documents the needs, as well as operational scenarios, crucial to monitoring transportation systems and alerting or advising owners/operators of transportation systems when cybersecurity incidents occur Address the following aspects of cybersecurity in transportation Current systems; Current cybersecurity needs; Past cybersecurity incidents; and Future technology plans and impacts on cybersecurity needs.

7 TCS Framework Research Dimensions of Threat Identify gaps, redundancies, and unknowns that result from comparisons to the NIST Framework. To build (Functional) requirements and from the Concept of Operations create a Contract/Report that helps in both capturing the needs and a summary of proposed processes to address the needs.

8 Monitor/Alert/Advisory System Develop a TSCF specification to address, monitor, alert, and advisory functions that are based on the ConOps and Requirements The Monitor/Alert/Advisory System will use the services of the outreach site. Operate the TSCF Monitor/Alert/Advisory system Maintain a database for input with a plan to resolve the same using a comment resolution plan

9 Self-Assessment Tool Funded by FHWA AID TCSF Partners role review/input as stakeholders Development (FHWA-AID) Pilots (FHWA-AID) Final Tool Pre-deployment Implementation workshops (FHWA-EDC5)

10 Questions? Patrick Zelinski,