The National Academies Press

Currently Skimming:

Pages 61-68

The Chapter Skim interface presents what we've algorithmically identified as the most significant single chunk of text within every page in the chapter.
Select key terms on the right to highlight them within pages of the chapter.

From page 61... ... 61 Cybersecurity Guidance This appendix provides a selection of guidance and resources available to transit agencies for cybersecurity. The National Institute of Standards and Technology (NIST) Read the entire page →
From page 62... ... 62 Cybersecurity in Transit Systems the overall decision-making strategy. Upon completion, the risk profile furthers an organization's understanding of its current cyber-risk posture and promotes mitigation strategies for improvement. Read the entire page →
From page 63... ... Cybersecurity Guidance 63 APTA-SS-CCS-WP-003-15 Securing Control and Communications Systems in Rail Transit Environments Part IIIa: Attack Modeling Security Analysis White Paper APTA SS-CCS-RP-004-16 Securing Control and Communications Systems in Rail Transit Environments Part IIIb: Operationally Critical Security Zone APTA SS-CCS-WP-005-19 Securing Control and Communications Systems in Transit Bus Vehicles and Supporting Infrastructure Enterprise Cyber Security APTA SS-ECS-RP-001-14 Cybersecurity Considerations for Public Transit APTA SS-ESC-RP-002-19 Enterprise Cybersecurity Training and Awareness APTA SS-ECS-RP-003-19 Enterprise Cybersecurity Involving the Board of Directors and the Executive Suite Federal Transportation Cybersecurity Resources TSA Surface Transportation Cybersecurity Resource toolkit is a collection of documents designed to provide cyber-risk management information to surface transportation operators who have fewer than 1,000 employees. The materials are drawn from three primary sources: • National Institute of Standards and Technology Framework for Improving Critical Infrastructure Cybersecurity: A voluntary framework for reducing cyber risks in critical infrastructure. Read the entire page →
From page 64... ... 64 Cybersecurity in Transit Systems critical infrastructure. Security and threat information is collected from worldwide resources, then analyzed and distributed to members to help protect their vital systems from attack. Read the entire page →
From page 65... ... Cybersecurity Guidance 65 Microsoft: Microsoft Security Development Lifecycle OWASP: Software Assurance Maturity Model Version 1.5 Payment Card Industry (PCI) Security Standards Council: Secure Software Lifecycle (Secure SLC) Read the entire page →
From page 67... ... Abbreviations and acronyms used without denitions in TRB publications: A4A Airlines for America AAAE American Association of Airport Executives AASHO American Association of State Highway Officials AASHTO American Association of State Highway and Transportation Officials ACI–NA Airports Council International–North America ACRP Airport Cooperative Research Program ADA Americans with Disabilities Act APTA American Public Transportation Association ASCE American Society of Civil Engineers ASME American Society of Mechanical Engineers ASTM American Society for Testing and Materials ATA American Trucking Associations CTAA Community Transportation Association of America CTBSSP Commercial Truck and Bus Safety Synthesis Program DHS Department of Homeland Security DOE Department of Energy EPA Environmental Protection Agency FAA Federal Aviation Administration FAST Fixing America's Surface Transportation Act (2015) FHWA Federal Highway Administration FMCSA Federal Motor Carrier Safety Administration FRA Federal Railroad Administration FTA Federal Transit Administration GHSA Governors Highway Safety Association HMCRP Hazardous Materials Cooperative Research Program IEEE Institute of Electrical and Electronics Engineers ISTEA Intermodal Surface Transportation Efficiency Act of 1991 ITE Institute of Transportation Engineers MAP-21 Moving Ahead for Progress in the 21st Century Act (2012) Read the entire page →
From page 68... ... Transportation Research Board 500 Fifth Street, NW Washington, DC 20001 ADDRESS SERVICE REQUESTED ISBN 978-0-309-09454-2 9 7 8 0 3 0 9 0 9 4 5 4 2 9 0 0 0 0 Read the entire page →

From page 61...

... 61 Cybersecurity Guidance This appendix provides a selection of guidance and resources available to transit agencies for cybersecurity. The National Institute of Standards and Technology (NIST)

Read the entire page →

From page 62...

... 62 Cybersecurity in Transit Systems the overall decision-making strategy. Upon completion, the risk profile furthers an organization's understanding of its current cyber-risk posture and promotes mitigation strategies for improvement.

Read the entire page →

From page 63...

... Cybersecurity Guidance 63 APTA-SS-CCS-WP-003-15 Securing Control and Communications Systems in Rail Transit Environments Part IIIa: Attack Modeling Security Analysis White Paper APTA SS-CCS-RP-004-16 Securing Control and Communications Systems in Rail Transit Environments Part IIIb: Operationally Critical Security Zone APTA SS-CCS-WP-005-19 Securing Control and Communications Systems in Transit Bus Vehicles and Supporting Infrastructure Enterprise Cyber Security APTA SS-ECS-RP-001-14 Cybersecurity Considerations for Public Transit APTA SS-ESC-RP-002-19 Enterprise Cybersecurity Training and Awareness APTA SS-ECS-RP-003-19 Enterprise Cybersecurity Involving the Board of Directors and the Executive Suite Federal Transportation Cybersecurity Resources TSA Surface Transportation Cybersecurity Resource toolkit is a collection of documents designed to provide cyber-risk management information to surface transportation operators who have fewer than 1,000 employees. The materials are drawn from three primary sources: • National Institute of Standards and Technology Framework for Improving Critical Infrastructure Cybersecurity: A voluntary framework for reducing cyber risks in critical infrastructure.

Read the entire page →

From page 64...

... 64 Cybersecurity in Transit Systems critical infrastructure. Security and threat information is collected from worldwide resources, then analyzed and distributed to members to help protect their vital systems from attack.

Read the entire page →

From page 65...

... Cybersecurity Guidance 65 Microsoft: Microsoft Security Development Lifecycle OWASP: Software Assurance Maturity Model Version 1.5 Payment Card Industry (PCI) Security Standards Council: Secure Software Lifecycle (Secure SLC)

Read the entire page →

From page 67...

... Abbreviations and acronyms used without denitions in TRB publications: A4A Airlines for America AAAE American Association of Airport Executives AASHO American Association of State Highway Officials AASHTO American Association of State Highway and Transportation Officials ACI–NA Airports Council International–North America ACRP Airport Cooperative Research Program ADA Americans with Disabilities Act APTA American Public Transportation Association ASCE American Society of Civil Engineers ASME American Society of Mechanical Engineers ASTM American Society for Testing and Materials ATA American Trucking Associations CTAA Community Transportation Association of America CTBSSP Commercial Truck and Bus Safety Synthesis Program DHS Department of Homeland Security DOE Department of Energy EPA Environmental Protection Agency FAA Federal Aviation Administration FAST Fixing America's Surface Transportation Act (2015) FHWA Federal Highway Administration FMCSA Federal Motor Carrier Safety Administration FRA Federal Railroad Administration FTA Federal Transit Administration GHSA Governors Highway Safety Association HMCRP Hazardous Materials Cooperative Research Program IEEE Institute of Electrical and Electronics Engineers ISTEA Intermodal Surface Transportation Efficiency Act of 1991 ITE Institute of Transportation Engineers MAP-21 Moving Ahead for Progress in the 21st Century Act (2012)

Read the entire page →

From page 68...

... Transportation Research Board 500 Fifth Street, NW Washington, DC 20001 ADDRESS SERVICE REQUESTED ISBN 978-0-309-09454-2 9 7 8 0 3 0 9 0 9 4 5 4 2 9 0 0 0 0

Read the entire page →

Key Terms

← Previous Chapter Skim

This material may be derived from roughly machine-read images, and so is provided only to facilitate research.
More information on Chapter Skim is available.