| Communication-based Train Control(CBTC)system provides accurate closed-loop control of the train through continuous,bi-directional,and large-capacity communication between the train and the wayside equipment.Along with the rapidly popularizing and developing of information technology,information security flaws of train-ground data communication system(DCS)in CBTC system is gradually obvious.Attack based on these flaws will impact control performance and functional safety of the train control system,and this will bring hidden danger to CBTC system’s information safety.The main purpose of this paper is to research information safety of urban railway transport system.This research is focus on the information safety detection,which can provide protective barrier to CBTC system.NCS theory is applied in this paper,and research is carried out,which is focus on the change of the operating state of the control system when the network transmission data is lost or tampered because of the communication network information attack.A targeted information security detection scheme for CBTC system is proposed.The contents of this paper are as follows:1)The method of modeling the train-ground communication and train control together through NCS is researched.CBTC multi-train control system is equivalent to NCS.The relationship between vehicle communication and train control is described quantitatively by establishing a multi-train NCS model of CBTC system under communication transmission error.2)The inherent vulnerabilities and risks in the CBTC system’s DCS are summarized,and the principles of typical attacks in ICS system are classified and studied.By studying the principle of denial of service(DoS)attack and data decption attack,this paper establishes the CBTC system model under the above two kinds of attack.3)Based on the characteristics of CBTC system,a nonparametric cumulative sum(CUSUM)detection technique for CBTC system is proposed,and a CBTC system information security detection scheme is proposed from the aspects of information security detection process and functional requirement.4)The system model and detection technology are simulated and verified with quatified simulation parameters.Detections of the DoS attack and data deception attack,which are investigated in this paper,are carried out,and the validity and feasibility of the detection technology are verified by simulation results.The results show that the non-parametric CUSUM detection technique,which is based on the characteristic of CBTC system,can detect DoS attack and data deception attack.The failure or misinformation rate is lower than 0.02,and detection time delay is not more than 0.6s.The results show that the non-parametric CUSUM detection method based on CBTC system can detect the attack behavior of CBTC system in real time and effectively. |
PDF Full Text Request