Abstract: Through the research on the current situation of the security protection of railway critical information infrastructure, based on the design requirements of Classified Protection 2.0 of Cybersecurity, combining with the network security needs of CHINA RAILWAY, taking the railway key information infrastructure as the important protection object and risk control as the starting point, this paper established a security protection framework of railway key information infrastructure with the core of identification, protection, detection, response and recovery. The framework helps to consolidate the network security infrastructure protection ability, consolidate the foundation of network security compliance construction, strengthen the network security key protection ability, carry out the measures of key information infrastructure security protection, and gradually realize the protection of railway key information infrastructure security with solid foundation, smooth links, efficient measures and strong response.