HOME MyTRB CONTACT US DIRECTORY E-NEWSLETTER FOLLOW US RSS

About TRB

Annual Meeting

Calendar

Committees & Panels

Programs

Projects

Publications

Resources & Databases

NCHRP 08-197 [Anticipated]

Integrating Cyber Resilience to Advance Transportation Systems Management and Operations Programs: A Strategic Necessity

Project Data
Funds:	725000
Staff Responsibility:	Zuxuan Deng
Comments:	In development
Fiscal Year:	2026

This project has been tentatively selected and a project statement (request for proposals) is expected to be available on this website. The problem statement below will be the starting point for a panel of experts to develop the project statement.

Cybersecurity and resilience are essential components of all Transportation Systems Management and Operations (TSMO) activities, especially as transportation networks become increasingly interconnected across agency and jurisdictional boundaries.

Recent incidents underscore the urgent need for a coordinated approach to cybersecurity in regional TSMO systems:

· The Kansas City (KC) Scout Ransomware Attack (2024): The KC Scout traffic management system was targeted by a ransomware attack that shut down real-time traffic cameras and dynamic message signs. The attackers exploited vulnerabilities in remote desktop software, highlighting the risks associated with interconnected traffic control systems and the critical need for stronger cybersecurity defenses.

· “Sun Hacker” Cyberattacks on Dynamic Message Signs (DMS) (2014): A hacker group gained access to several states’ DMS, altering them to display unauthorized messages. These incidents exposed vulnerabilities in roadside equipment and demonstrated how such breaches can lead to public confusion and misinformation and potential traffic hazards.

Although these attacks were contained, the increasing integration of TSMO systems across regions raises the risk of broader impacts and greater disruption in the future.

This research seeks to assess the potential consequences of cross-jurisdictional cyber incidents and develop a practical framework to help transportation agencies mitigate associated risks. The research will guide TSMO practitioners and cybersecurity professionals in embedding cyber resilience into state and local TSMO programs.

The objectives of the research include:

· Identifying potential regional and multi-jurisdictional impacts of cyber events;

· Supporting the development of response and mitigation strategies for disruptions that may span regions, states, or international borders;

· Reviewing existing tools and resources, such as the TSMO Capability Maturity Model and the National Institute of Standards and Technology (NIST) Cybersecurity Framework, to identify integration opportunities; and

· Analyzing trends that may influence the daily responsibilities of TSMO professionals and shape future projects and programs.

Additionally, the research will explore emerging technologies, such as vehicle-to-everything (V2X), digital infrastructure, and artificial intelligence, to assess both their potential vulnerabilities and opportunities for strengthening the intersection of TSMO and cybersecuri

To create a link to this page, use this URL: http://apps.trb.org/cmsfeed/TRBNetProjectDisplay.asp?ProjectID=5847