onway Logoonway.ch

Cybersecurity in public transport

Transport companies are increasingly exposed to the threat of cyber attacks.

Contact
Contact

Cybersecurity in public transport

Contact

Challenges

Increasing cyberattacks on public transport are damaging the integrity and security of the entire transport infrastructure. Data theft, ransomware attacks and the manipulation of IT systems in vehicles are lurking dangers. Exposures in connected vehicles and digital interfaces to external services are particularly vulnerable. Missing software updates also pose a risk.

Stricter legal requirements

Another challenge is the increasing tightening of legal regulations. Tenders for the procurement of ITC systems require more and more compliance with security standards. Both processes, i.e. software updates, and technologies such as firewalls are required to comply with international standards (ISO27001, EN62443, TS50174, etc.).

Transport companies are particularly vulnerable

Why are transport companies in particular vulnerable to cyber attacks? Like defence or energy supply, for example, public transport is part of the so-called critical or system-relevant infrastructure and therefore requires special protection from hackers. The integration of digital technologies and the many outdated IT systems of transport companies make the sector vulnerable to digital crime. Dependencies on existing hardware and suppliers make modernisation efforts difficult and employees are busy with operations, leaving little time for new projects.

It is particularly important to identify weak points in the transport infrastructure at an early stage and rectify them quickly.
Ivan Bütler
Ivan BütlerBoard Member, Compass Security AG

Solution

Our software products work according to the motto "Security by Design". This means that security is already integrated into the design and architecture of the system and no subsequent measures are necessary to guarantee it. By default, for example, all incoming network connections are blocked by firewalls unless they are explicitly authorised. We also help you to implement international standards. The centralised management of all systems enables gaps in the software to be closed quickly.

Our upcoming workshops:

March 2025

IT architecture for Cybersecurity

A secure architecture is based on a few fundamental principles:

1. Separation of Hardware and Software

Video in German - subtitles are available in various languages via youtube.

2. Regular Software Updates

Video in German - subtitles are available in various languages via youtube.

3. Network Zoning

Video in German - subtitles are available in various languages via youtube.

4. Strict Access Control

Video in German - subtitles are available in various languages via youtube.

Our approach

A variety of measures can massively increase the security of (transport) companies in the network. With a structured approach - "5 steps to a secure infrastructure" - we support you in implementing these measures.

In cooperation with its partner Compass Security, onway also offers workshops that focus on the practical implementation of security guidelines through an Information Security Management System (ISMS). In this way, travellers can be transported safely to their destination even in the age of digital networking.

Cybersecurity in public transport

You can download the white paper on cyber security in public transport here:

Download

Would you like to protect your vehicles even better?

We will be happy to advise you.