What is PD CLC/TS 50701 about?
PD CLC/TS 50701 provides the railway operators, system integrators, and product suppliers, with guidance and specifications on how cybersecurity will be managed in the context of the EN 50126-1 RAMS lifecycle process. PD CLC/TS 50701 aims at the implementation of a consistent approach to the management of the security of the railway systems and to introduce the requirements as well as recommendations to address cybersecurity within the railway sector.
PD CLC/TS 50701 provides references to models and concepts from which requirements and recommendations can be derived and that are suitable to ensure that the residual risk from security threats is identified, supervised, and managed to an acceptable level by the railway system duty holder.
NOTE: PD CLC/TS 50701 can also be applied to the security assurance of systems and components/equipment developed independently of EN 50126-1:2017.
NOTE: PD CLC/TS 50701 applies to Communications, Signalling, and Processing domain, to Rolling Stock, and to Fixed Installations domains.
NOTE: PD CLC/TS 50701 does not address functional safety requirements for railway systems but rather additional requirements arising from threats and related security vulnerabilities and for which specific measures and activities need to be taken and managed throughout the lifecycle.
Who is PD CLC/TS 50701 for?
PD CLC/TS 50701 on railway applications cybersecurity is useful for:
- Railway engineers
- Railway operators
- Personnel of communications, signalling, and processing domain
Why should you use PD CLC/TS 50701?
Cybersecurity is a key requirement to enable railways to deploy and take advantage of the full extent of a connected, digital environment. PD CLC/TS 50701 provides guidance and specifications on how cybersecurity will be managed in the railways.
PD CLC/TS 50701 provides cybersecurity requirements in order to provide an acceptable level of protection from all identified threats and known vulnerabilities.
PD CLC/TS 50701 provides an overview of the cybersecurity activities to be carried out during the lifecycle of a railway application.
PD CLC/TS 50701 defines the rules and the process on how to handle cybersecurity activities on system-level and initial risk assessment.
Also gives cybersecurity assurance and system acceptance for the operation to ensure confidence in the effective implementation of cybersecurity requirements giving the operational, maintenance, and disposal requirements.
The aim of PD CLC/TS 50701 is to ensure that the RAMS characteristics of railway systems/ subsystems/ equipment cannot be reduced, lost, or compromised in the case of intentional attacks.