EKE‑Trainnet® MVB Monitoring Solution
Secure the MVB network against cyber intrusion
The MVB network carries signals that directly affect safety, reliability, and availability. Intrusion via the MVB can allow unauthorised access to safety-critical systems, potentially leading to service disruption, data theft, or even compromised passenger and crew safety.
Complete access to all MVB data traffic
The EKE‑Trainnet® approach captures all data appearing on the MVB, including undocumented or hidden traffic.
- Visibility into unexpected or undocumented onboard communication
- Improved detection of abnormal behaviour on the MVB
- Independence from vehicle supplier configuration limitations
- Stronger foundations for cyber security monitoring and analysis
How does EKE‑Trainnet® MVB Monitoring solution work?
- The EKE‑Trainnet® MVB Monitoring Solution collects all data traversing the MVB not just the preconfigured streams.
- Raw data is passed to RazorSecure’s intrusion detection system (IDS).
- The IDS analyses the information to ensure that transmitted data matches expected patterns and timing.
- The IDS can detect anomalies such as:
- unexpected packet structures
- checksum errors
- unauthorised mastership changes.
Protect the train through full, real‑time MVB visibility
Drawing on 40 years of experience in on-board train data networks, EKE-Electronics has developed, in collaboration with RazorSecure, the EKE-Trainnet® MVB Monitoring Solution with RazorSecure intrusion detection. A robust system designed specifically to address the unique cybersecurity challenges of rail environments.
There are 2 types of systems:
EKE-Trainnet® MVB monitoring unit integrated with EKE-Electronics’ TCMS
Provided as part of EKE-Electronics’ TCMS scope of delivery with an additional MVB module for the monitoring.
Standalone EKE-Trainnet® MVB monitoring unit
The MVB monitoring application supports on-site installation of 3rd-party devices such as a TCMS or a Security Gateway via an M12 Ethernet/TRDP.
Move from passive monitoring to active cyber threat detection
Each solution is supported by RazorSecure’s advanced Intrusion Detection System (IDS) capabilities. Designed specifically for rail, RazorSecure’s Intrusion Detection System leverages powerful anomaly detection to identify unusual and unexpected network behaviours, going beyond traditional IDS systems that rely solely on known threat signatures.
Delta provides comprehensive network topology visibility and the foundation for a proactive cybersecurity strategy. With deployments on over 1000 trains globally, Delta is highly effective in detecting and enabling it to respond to potential cyber threats quickly.
Core features
Vendor
independent
The EKE-Trainnet® MVB Monitoring Solution works with any MVB regardless of the manufacturer.
Total network visibility
Unlike conventional systems, our monitoring device collects all data traversing the MVB not just the preconfigured streams.
Non-intrusive integration
The device connects to the MVB bus without interfering with the control network, ensuring operational safety and compliance.
Flexible data output
Raw or preformatted data (XML, JSON, etc.) can be exported according to customer preference, with Ethernet as the standard interface.
Modular and certified
The hardware is EN 50155 type tested and EN 45545 certified, RoHS and REACH compliant, and supports multiple bus interfaces (CAN, WTB, RS-485) and Ethernet networks making it suitable for diverse rolling stock fleets.
Relevant News & Blogs
- Blog post
- News