Saved in:
Bibliographic Details
Main Author: Zhang, Zikai
Format: Preprint
Published: 2025
Subjects:
Online Access:https://arxiv.org/abs/2509.25786
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866909816488722432
author Zhang, Zikai
author_facet Zhang, Zikai
contents Protecting the security of the train control system is a critical issue to ensure the safe and reliable operation of high-speed trains. Scientific modeling and analysis for the security risk is a promising way to guarantee system security. However, the representation and assessment of the multi-staged, causally related, and temporal-dynamic changed attack dependencies are difficult in the train control system. To solve the above challenges, a security assessment framework based on the Dynamical Causality Attack Graph (DCAG) model is introduced in this paper. Firstly, the DCAG model is generated based on the attack graph with consideration of temporal attack propagation and multi-stage attack event causality propagation. Then, the DCAG model is analyzed based on Bayesian inference and logic gateway-based inference. Through the case analysis of the CTCS-3 system, the security assessment framework is validated. With the DCAG-based security assessment framework, we can not only perform appropriate security risk quantification calculations, but also explore the importance of different attacks on system security risks, which is helpful in adjusting the cyber security defense policy.
format Preprint
id arxiv_https___arxiv_org_abs_2509_25786
institution arXiv
publishDate 2025
record_format arxiv
spellingShingle Dynamic Causal Attack Graph based Cyber-security Risk Assessment Framework for CTCS System
Zhang, Zikai
Systems and Control
Protecting the security of the train control system is a critical issue to ensure the safe and reliable operation of high-speed trains. Scientific modeling and analysis for the security risk is a promising way to guarantee system security. However, the representation and assessment of the multi-staged, causally related, and temporal-dynamic changed attack dependencies are difficult in the train control system. To solve the above challenges, a security assessment framework based on the Dynamical Causality Attack Graph (DCAG) model is introduced in this paper. Firstly, the DCAG model is generated based on the attack graph with consideration of temporal attack propagation and multi-stage attack event causality propagation. Then, the DCAG model is analyzed based on Bayesian inference and logic gateway-based inference. Through the case analysis of the CTCS-3 system, the security assessment framework is validated. With the DCAG-based security assessment framework, we can not only perform appropriate security risk quantification calculations, but also explore the importance of different attacks on system security risks, which is helpful in adjusting the cyber security defense policy.
title Dynamic Causal Attack Graph based Cyber-security Risk Assessment Framework for CTCS System
topic Systems and Control
url https://arxiv.org/abs/2509.25786