Cyber security - FOT

Languages

Service navigation

Search

Context sidebar

Cyber security

In public transport, digital and networked data have become indispensable. Today’s signalling systems, for example, would be impossible without it. However, the risks associated with increasing digitalisation are also growing. This is why cyber security in public transport is becoming increasingly important.

Insight into the driver's cab of a modern locomotive travelling through a tunnel. Several screens, coloured lamps and buttons define the driver's workspace. The locomotive is part of a Flirt train on the Leman Express.
Rail transport is no longer possible without digital communication networks.
© SBB

It is the responsibility of the transport companies to take precautions against and deal with cyberattacks. As part of its safety supervision responsibility, the Federal Office of Transport (FOT) helps to ensure that companies have adequate measures in place to prevent and deal with cyber risks. The FOT supports ongoing cyber security campaigns in this and other sectors, and does so by making use of existing platforms such as those of the Association of Public Transport (APT), RAILplus and Swissrail.

As a supervisory authority and regulator in this sector, the FOT focuses on the prevention of cyberattacks in public transport. It regularly exchanges information with the  National Cyber Security Centre (NCSC) on cyber security topics and the current threat situation. The NCSC too is primarily concerned with prevention tasks, and places a focus on early detection and vulnerability identification. The NCSC is also the main contact point for reporting cyber incidents.

Further information

Links

Cybersecurity handbook for public transport companies

National Cyber Security Centre (NCSC)

NCSC: Cyber incidents / vulnerability

NCSC: Coordinated Vulnerability Disclosure

National strategy for the protection of Switzerland against cyber risks (NCS)

Cybersecurity Toolkit (europa.eu)

Tips on how to stay safe in cyberspace (in German)

MITRE ATT&CK® – Cyberattack matrix for companies

KOVE – Coordination of transport in the event of an incident (in German)

Railways

Richtlinie Cybersicherheit Eisenbahn (RL CySec-Rail) (in German)

Implementing Provisions to the Railways Ordinance (IP-RailO) (in German)

Transport | ENISA

UIC Railway publications

Documentation

Auxiliaires pour la mise en œuvre d’un SMSI (in French or German or Italian) (PDF, 152 kB, 26.06.2024)

Top of page

https://www.bav.admin.ch/content/bav/en/home/general-topics/safety/cyber-security.html