Yao Tong

Abstract：At present， after the actual inspection of the rail transit automatic ticket checking system， some security vulnerabilities have appeared， and there are also some defects in information security. For example， the database and virus protection need to be analyzed and upgraded in order to cope with the increasing number of information security risks. This article analyzes the security problems in the AFC system， and puts forward related suggestions and solutions， hoping to provide some reference for technical developers.

Key words：rail transit， automatic ticket inspection system， operational safety

1 Introduction

Introduction The urban rail transit system is a very important key infrastructure for large cities. The operational safety， operating speed， delivery capacity and operating efficiency of the urban rail transit system are closely related to each rail transit system. The information security of the rail transit AFC system has gradually begun to be highly valued by rail transit builders and related management departments. It should be immediately considered to carry out this work in a timely manner to mitigate and eliminate the hidden dangers caused by information security vulnerabilities to the AFC system as soon as possible. Good practice plan. The AFC system is based on computer， communication， network， automatic control and other technologies， and uses non-contact IC cards as a medium to achieve rail ticketing， ticket checking， billing， toll collection， statistics， and management functions in a highly secure， reliable， and confidential manner.

2 Rail transit operation safety and information safety

Safety is in the process of human production， controlling the possible damage to human life， property， and environment of the system's operating state below the level that humans can accept. It is well known that in the field of rail transportation， safety is a train control signal system. The soul， the “failure-safety”（failure-oriented safety） principle is the insurmountable bottom line for the safe operation of rail transit. When obstacles， errors， or failures occur in the system equipment， the system should make a safety-oriented response to ensure driving safety. However， as an efficient and large-capacity public transportation mode， the train control system only meets the“failure-safety” bottom line is not enough. Broadly speaking， intrinsic safety refers to the “man-machine-environment-management” system performance The overall safety performance of the train. However， for how to guide， assist and improve the operation safety of the entire urban rail transit system， and how to control the overall operation and operation safety globally， the train control signal system still has a lot of room for improvement. Safety technology research needs to be further developed.

3 AFC system security design

（1） AFC system information security protection design The security requirements of the AFC system and other business subsystems connected through the network are very urgent， but no border control measures have been taken after the connection， and a special connection security plan has been developed to ensure the AFC system and other business sub-systems System security. It is necessary to solve the problem of the flat network that is common in the AFC system of rail transit. Based on the divided network logical area， establish access control for device access and network communication. At the same time， we recommend an audit mechanism to implement dynamic real-time monitoring， timely discover the real-time risks of the AFC system， and take effective emergency measures; Missing， while deploying and implementing a series of safety protection measures， it is very necessary to organize regular inspections on the effectiveness of the existing safety protection technical measures of the industrial control system， the consistency of the safety configuration and safety strategy， the implementation of the safety management system， etc.， to ensure The rail transit AFC system continues to operate stably under effective safety protection.

（2） AFC system information security management design

Construction of safety management system The establishment of a sound information safety management system is of great significance to the safety management and development of the AFC system. First of all， the establishment of this system will increase employees' awareness of information security， enhance the level of AFC system security management， and enhance the organization's ability to resist catastrophic events. It is an important part of informatization construction and will greatly improve the security and safety of information management. reliability. Secondly， through the construction of the information security management system， the ability to control information security risks can be effectively improved. By connecting with the level protection and risk assessment， the information security management is more scientific and effective. The establishment of an information security management system generally goes through the following main steps： ① Information security management system planning and preparation. Contents include education and training， preparation of plans， research on the development of safety management， and the allocation and management of human resources.② Determine the scope of application of the information security management system. The scope of the information security management system is the security area that needs to be focused on management.

4 System optimization and safety

From the beginning of the design of the rail transit system， the concept of overall safety should be considered. Specifically， the optimized and safe solution of the system can be developed from the following aspects： ①Operational scenario-oriented： The functional design of the system for signals， vehicles， networks， maintenance management， etc. should be directly oriented to the operation scenario， and fully understand the requirements of the operation scenario The design plan is given instead of the function-oriented way.② New technologies and new methods： Inject new technologies and new concepts into the rail transit signal system， learn from， reuse and refine advanced system operation schemes in other fields， reduce or replace traditional manual operations， operation and maintenance， etc.， and reduce safety risks. For example， learn from the secure real-time control characteristics of cloud platforms， distributed computing and data storage， cluster replacement redundancy， real-time fault tolerance and safe data rollback technology.③Association and linkage： Signals， operation management， vehicles， power supply， dispatching and other positions can develop detailed joint commissioning plans and staged system drill plans during the design and liaison phase， without having to wait for the final system delivery and factory acceptance before intervening Use of the system.

5 Conclusion

Based on the concept of security， this paper analyzes the contradictions of operational security， and proposes solutions to provide a reference for further optimization and improvement of the overall security of the system. Whether it is the current CBTC and interlocking backup mode collaboration， or the ascending fully automated driverless， full automation， intelligent processing， and highly centralized control are its technical core and advantages. At the same time， it also controls the equipment， personnel， and operating environment in safety control. Therefore， as a large-scale rail transit information system integrating cash security， information security and data security， AFC system is urgent to establish a safe and reliable information security system. Due to the different network scales of different cities， the data size of the AFC system is different. There is no general consensus on the construction scale of the information security system. The next step should be research and discussion in this direction. More“smart”safety output is provided to make train operation safer， which is a subject that needs continuous research in the industry.

2017 Sichuan Provincial China Key Project“Big Data Analysis and Operation Management Safety Research Based on Smart Rail Transit”（No. 17ZA0235）。

references：

[1]Zhang Guangfu. Current situation and improvement strategies of local staff capacity building in overseas rail transit projects [J]. China Business Review， 2019（8）：76-77.

[2]Ding Lei. Risk Analysis of PPP Mode of Overseas Urban Rail Transit Construction [J]. Jiangxi Building Materials， 2019（4）：9-10.

[3]Shi Shixi. Discussion on the development and design of the property above the subway vehicle base [J]. Railway standard design.2017 （3）：147-150.

[4]Li Junsheng.Dynamic elastoplastic analysis of an over-limit high-rise building in a subway parking lot [J]. Science and technology and innovation. 2016（7）：2-3.

[5]Daamen W，Hoogendoorn S P. Experimental research of pedestrian walking behavior. Transportation Research Record 2013，1828：20-30.