The security of IoT systems in railway transport


  • Iryna Voronko



The Internet of Things (IoT), cybersecurity, cyberattacks, data protection, security of IoT systems, threats, vulnerabilities, unauthorised access, railway transport


The widespread adoption of Internet of Things (IoT) devices in the railway industry is creating new cybersecurity challenges. These devices, which collect and transmit data on train movements, infrastructure and passengers, can be vulnerable to cyberattacks, which can lead to disruption of operations, security threats or compromise of sensitive data. A wide range of potential threats have been described, such as unauthorised access, data misuse and denial of service (DoS) attacks. These threats can have serious consequences, such as train accidents, data theft, or disruption of supply chains. The article is devoted to the study of the cybersecurity aspects of IoT systems in railway transport and the identification of the necessary measures to ensure the safety and reliability of these systems. Potential threats to IoT on the railway, including vulnerabilities of network devices and insufficient protection of network traffic, are considered. Simple and effective cybersecurity measures are proposed, including authentication and authorisation of IoT devices, network connection protection, and monitoring of potential threats. Threat modeling using the Microsoft Threat Modeling Tool allowed us to identify the main security issues and propose solutions. The conclusions of the article emphasise the importance of investing additional resources in ensuring the cybersecurity of IoT systems in railway transport and recommend active cooperation with experts in this field for the successful implementation of digital transformation in the railway industry.


Ammar, M., Russello, G., & Crispo, B. (2018). Internet of Things: A survey on the security of IoT frameworks /Journal of Information Security and Applications, 38, 8-27.

Opirskyy, I., Holovchak, R., Moisiichuk, I., Balianda T., & Haraniuk, S. (2021). Problemy ta zahrozy bezpetsi IoT prystroiv/ Elektronne fakhove naukove vydannia «Kiberbezpeka: osvita, nauka, tekhnika», 3(11), 31–42. [in Ukrainian].

Dongre, N., Atique, M., Shaik, Z. A., & Raut, A. D. (2022, January). A survey on security issues and secure frameworks in internet of things (iot). In 2022 4th International Conference on Smart Systems and Inventive Technology (ICSSIT) (pp. 173-181). IEEE.

Jaiswal, S., & Gupta, D. (2017). Security requirements for internet of things (IoT). In Proceedings of International Conference on Communication and Networks: ComNet 2016 (pp. 419-427). Springer Singapore..

Shancang Li, & Li Da Xu (2020). Securing the Internet of Things. Syngress.

Serajuddin, M., Hasan, Z., Khan, A., & Akhtar, A. (2023). Impact of IoT on Security and Data Protection. Journal of Informatics Education and Research, 3(2).

Singh, P., Elmi, Z., Meriga, V. K., Pasha, J., & Dulebenets, M. A. (2022). Internet of Things for sustainable railway transportation: Past, present, and future. Cleaner Logistics and Supply Chain, 4, 100065..

Stellios, I., Kotzanikolaou, P., Psarakis, M., & Alcaraz, C. (2021). Risk assessment for IoT-enabled cyber-physical systems. Advances in Core Computer Science-Based Technologies: Papers in Honor of Professor Nikolaos Alexandris, 157-173.

Miloslavskaya, N., & Tolstoy, A. (2019). Internet of Things: information security challenges and solutions. Cluster Computing, 22, 103-119.

Shandilya, S.K., Chun, S.A., & Shandilya, S. (Eds.) (2018) Internet of Things Security: Fundamentals, Techniques, and Applications (1st ed.). River Publishers, 162.

Anderson, R. (2020). Security engineering: a guide to building dependable distributed systems. John Wiley & Sons.

Gubbi, J., Buyya, R., Marusic, S., & Palaniswami, M. (2013) Internet of Things (IoT): A Vision, Architectural Elements, and Future Directions / Future Generation Computer Systems, 29, 1645-1660.

Kour, R. (2020). Cybersecurity in railway: a framework for improvement of digital asset security (Doctoral dissertation, Luleå University of Technology). URL:

Voronko I.O. (2020) Osoblyvosti nadiinosti ta informatsiinoi bezpeky system monitorynhu ta diahnostyky. Informatsiino-keruiuchi systemy na zaliznychnomu transporti: naukovo-tekhnichnyi zhurnal. Kharkiv: UkrDUZT, 3, 49-50. [in Ukrainian].

Voronko I.O.(2021) Dyferentsialno-ihrova model zakhystu informatsii dlia kompiuternykh system transportnoi infrastruktury. «Transportni systemy i tekhnolohii», 38, 201-213. [in Ukrainian].

Yash Madwanna. (2018) IoT based Railway system using ICN: Chapter 1 Problem Definition. College of Engineering and Technology. URL: ICN_CHAPTER_1_Problem_Definition

Gupta, B. B., & Quamara, M. (2020). Internet of Things Security: Principles, Applications, Attacks, and Countermeasures. CRC Press.

Microsoft Threat Modeling Tool (2022). URL:




How to Cite

Voronko, I. (2024). The security of IoT systems in railway transport. Transport Systems and Technologies, (43), 90–99.



Technics and techology