Abstract High-speed trains, as critical components of public transportation, have seen remarkable advancements globally in recent years. The evolution of communication technology has played a pivotal role in enhancing train performance and management efficiency, yet it has also rendered high-speed train systems increasingly susceptible to severe cybersecurity threats due to the widespread adoption of wireless communications, and Ethernet connectivity, among others. Consequently, railway departments and research institutions worldwide have devoted substantial efforts to tackle these issues. This paper delves into existing standards, guidelines, frameworks, and technologies, and, in conjunction with an analysis of high-speed train network architectures and potential vulnerabilities, devises a comprehensive security protection framework tailored to the characteristics of high-speed train networks. This framework aims to establish a robust defense system and implement resilient protective measures that effectively mitigate the impact of cyberattacks on overall operational functionality. To begin with, from the standpoint of preventing intrusion, it describes end-to-end secure communication mechanisms and interface designs encompassing both ground-train and intra-train communications. Subsequently, to minimize the effect of attacks on system functionality, it introduces a risk-mitigation-based attack tolerance architecture, and resilience recovery strategies tailored to the dynamic operation of high-speed trains. Lastly, by considering the future trends in high-speed train development, the paper explores emerging challenges, thereby guiding future research endeavors.
Jun et al. (Mon,) studied this question.