Rail Industry

Rail Industry Cybersecurity – Cyber attacks on rail systems can result in service outages or much worse: derailments, toxic spills, equipment damage and even mass casualty events. The rail industry has been focused on safety for over a century, and in the modern world, cybersecurity is essential to safety.

Waterfall’s Unidirectional Gateways secure industrial controls for railways such as the signaling system, as well as rail operation control centers.

With Waterfall you get


Safe IT/OT Integration

Unidirectional Gateways provide rail system business automation with access to OT / industrial data such as equipment usage for predictive maintenance and automatic spare parts ordering, without providing attackers or malware access to the industrial systems that are the sources of that data.


Continuous Monitoring

Unidirectional Gateways provide enterprise and out-sourced Security Operations Centers (SOCs) with safe access to vital network data, so that rail utilities can leverage specialized expertise and central economies of scale.


Worker and Passenger Safety

Unidirectional Gateways help to assure the safety of passenger rail systems as well as the safety of workers who are maintaining tracks and systems.

Use cases

Signalling system monitoring

Waterfall for IDS provides unbreachable, engineering-grade protection for signalling systems and other vital systems, while enabling industrial intrusion detection systems to be deployed safely and integrated with enterprise-based and even cloud-based Security Operations Centers.

Passenger Notifications

Unidirectional Gateways safely replicate SQL Server and other databases of locomotive locations out to enterprise networks and cloud servers, so that passenger cell phone apps know when trains will arrive at which platforms, with no risk from compromised cell phones or other Internet-based threats.

Safe Track Maintenance

Unidirectional Gateways enable safe communications with work crews to management track outages, protecting the safety of those crews from incorrect re-activation of sections of track under maintenance.

How it works

Group 1117


An industrial network safely to an IT network

Group 1117-1


The industrial network with hardware enforced technology

Group 1117-2


Real-time operational servers to the enterprise IT network

Related resources

Books and eBooks

Cybersecurity for the rail industry eBook


Rail System Cybersecurity | Recorded Webinar


Rail Cybersecurity – New Solution for an Old Industry | Recorded Webinar

Consult with a unidirectional
solutions architect