Upload File

ccsds security working group program space it security standards products howard weiss sparta, inc....

  • Home
  • Documents
  • CCSDS Security Working Group Program Space IT Security Standards Products Howard Weiss SPARTA, Inc. (a Parsons Company) [email protected] 443-430-8090
10
CCSDS Security Working Group Program Space IT Security Standards Products Howard Weiss SPARTA, Inc. (a Parsons Company) [email protected] 443-430-8090

Upload: jonas-wright

Post on 18-Jan-2016

214 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: CCSDS Security Working Group Program Space IT Security Standards Products Howard Weiss SPARTA, Inc. (a Parsons Company) howard.weiss@sparta.com 443-430-8090

CCSDS Security Working Group Program

Space IT Security Standards Products

Howard WeissSPARTA, Inc. (a Parsons Company)

[email protected]

mailto:[email protected]
Page 2: CCSDS Security Working Group Program Space IT Security Standards Products Howard Weiss SPARTA, Inc. (a Parsons Company) howard.weiss@sparta.com 443-430-8090

Agenda

• Purpose• Problem statement• Example threats• Documents

– The Security Portfolio

Page 3: CCSDS Security Working Group Program Space IT Security Standards Products Howard Weiss SPARTA, Inc. (a Parsons Company) howard.weiss@sparta.com 443-430-8090

Security WG Purpose

• Develop Security Recommendations• Develop security guides and informative

documents• Provide advice and guidance to all CCSDS WGs• Space Data Link Security Protocol (joint dev)• S/C monitor & Control, Space Link

– Encryption Protocols, – Authentication Protocols– Key Management Protocols

Page 4: CCSDS Security Working Group Program Space IT Security Standards Products Howard Weiss SPARTA, Inc. (a Parsons Company) howard.weiss@sparta.com 443-430-8090

Problem Statement• “Low cost” acquisition and transmitting equipment and services• Unencrypted “cleartext” Commands and Telemetry

– What if the information is intercepted by unfriendly adversary• Replay commands at later time• Modify then replay commands at another time• Use your data against you (“unencrypted UAV syndrome”)

• Unauthenticated Telemetry and Commands– What if you don’t care if an adversary gets the data ; “It’s just science data!”

• Dual use technology• Did the command arrive unmodified? (authentic)

– Did authorized organization transmit it? (authenticated, not replayed)

• “Proprietary/Legacy” solutions lack cross support• Many security standards but so few work well in space environments.

Page 5: CCSDS Security Working Group Program Space IT Security Standards Products Howard Weiss SPARTA, Inc. (a Parsons Company) howard.weiss@sparta.com 443-430-8090

Space Elements

• Space Debris• Replay• Link Jamming• Unauthorised Access• Software Threats

System / Network

• Replay• Link Jamming• Interception (theft)• Unauthorised Access• Software Threats• Traffic Analysis

Control

• Replay• Unauthorised Access• Software Threats• Social Hacking• Physical Attacks

Users

• Interception• Software

Threats• Social Hacking• Physical

Attacks

HardwareFailure

Example Threats

Page 6: CCSDS Security Working Group Program Space IT Security Standards Products Howard Weiss SPARTA, Inc. (a Parsons Company) howard.weiss@sparta.com 443-430-8090

RF RF

DB

Relay Satellite owned By company B

RF

DB

Bus TT&C

Instrument owned by agency F

Instrument ownedby agency BOBD

H

Satellite owned by company A

RF

GSG

Owned by company BGround Tracking Network

DB

Spacecraft Control Centre

Owned by Agency A

Agency BInstrument

ControlCentre

DB

ScienceFacility

DB

University ASLE

SLE

FTP

• Jamming• Eavesdropping• Replay• Unauthorized Access• Traffic Analysis• Data Modification

• Denial of Service• Eavesdropping• Replay• Unauthorized Access• Traffic Analysis• Data Modification

• Replay• Unauthorised Access• Software Threats

• Replay• Unauthorised Access• Software Threats• Eavesdropping• Denial of Service• Data Modification

• Replay• Unauthorised Access• Software Threats• Denial of Service• Social Hacking

• Replay• Unauthorised Access• Software Threats• Denial of Service• Social Hacking

Page 7: CCSDS Security Working Group Program Space IT Security Standards Products Howard Weiss SPARTA, Inc. (a Parsons Company) howard.weiss@sparta.com 443-430-8090
Page 8: CCSDS Security Working Group Program Space IT Security Standards Products Howard Weiss SPARTA, Inc. (a Parsons Company) howard.weiss@sparta.com 443-430-8090

Security WG Document Tree

The Application of CCSDS Protocols to Secure Systems

CCSDS 350.0-G-2

Security Threatsagainst Space Missions

CCSDS 350.1-G-1

CCSDS Guide forSecure System Interconnection

CCSDS 350.4-G-0

Security Guide forMission Planners

CCSDS 350.7-G-1

CCSDS Recommended Practicefor a Key Management Scheme

CCSDS 351.0-W-x

Space MissionsKey Management Concept

CCSDS 350.6-G-x

Security Architecture for Space Data Systems

CCSDS 350.5-R-1

Design

Space Data Link SecurityConcept of Operation

CCSDS xxx.x-G-x

Space Data Link SecurityProtocol

CCSDS 132.5.W-1

ImplementationPlanning & Assessment

Companiondocuments

Companiondocuments

CCSDS Security Algorithms

CCSDS xxx.x-B-x

Page 9: CCSDS Security Working Group Program Space IT Security Standards Products Howard Weiss SPARTA, Inc. (a Parsons Company) howard.weiss@sparta.com 443-430-8090

Security WG Document Conception

CCSDS Guide to SecureSystem Interconnection

CCSDS Recommended Practice for a Key

Management Scheme

Space Data Link SecurityConcept of Operation

Space Data Link SecurityProtocol

Space MissionsKey Management Concept

Security Threats Against Space Missions

Security Architecture for Space Data Systems

The Application ofCCSDS Protocolsto Secure Systems

CCSDS Security Algorithms

Security Guide forMission Planners

Network Layer Security(future work area)

Application Layer Security(future work area)

Security Protection Profiles(future work area)

Page 10: CCSDS Security Working Group Program Space IT Security Standards Products Howard Weiss SPARTA, Inc. (a Parsons Company) howard.weiss@sparta.com 443-430-8090

Published Document Links• The Application of CCSDS Protocols to Secure Systems. Green Book. Issue 2.

January 2006. http://public.ccsds.org/publications/archive/350x0g2.pdf• Security Threats against Space Missions. Green Book. Issue 1. October 2006.

http://public.ccsds.org/publications/archive/350x1g1.pdf• Encryption Algorithm Trade Survey. Green Book. Issue 1. March 2008.

http://public.ccsds.org/publications/archive/350x2g1.pdf• Authentication/Integrity Algorithm Issues Survey. Green Book. Issue 1.

March 2008. http://public.ccsds.org/publications/archive/350x3g1.pdf• CCSDS Guide for Secure System Interconnection. Green Book. Issue 1.

November 2007. http://public.ccsds.org/publications/archive/350x4g1.pdf• Space Missions Key Management Concept. Green Book. Issue 1. November

2011. http://public.ccsds.org/publications/archive/350x6g1.pdf• Security Guide for Mission Planners. Green Book. Issue 1. October 2011.

http://public.ccsds.org/publications/archive/350x7g1.pdf

http://public.ccsds.org/publications/archive/350x0g2.pdf
http://public.ccsds.org/publications/archive/350x1g1.pdf
http://public.ccsds.org/publications/archive/350x2g1.pdf
http://public.ccsds.org/publications/archive/350x3g1.pdf
http://public.ccsds.org/publications/archive/350x4g1.pdf
http://public.ccsds.org/publications/archive/350x6g1.pdf
http://public.ccsds.org/publications/archive/350x7g1.pdf

CCSDS Historical Document · CCSDS 401.0-B-29 BLUE BOOK March 2019 CCSDS HISTORICAL DOCUMENT. CCSDS RECOMMENDATIONS FOR RADIO FREQUENCY AND MODULATION SYSTEMS Earth Stations and Spacecraft

CCSDS Cryptographic Algorithms · CCSDS REPORT CONCERNING CRYPTOGRAPHIC ALGORITHMS CCSDS 350.9-G-1 Page ii December 2014 FOREWORD This document is a companion to the CCSDS Cryptographic

CCSDS Historical Document › Pubs › 100x0g1s.pdf · CCSDS Historical Document ... [3]. Questions relative to the contents or status of this report should be addressed to the CCSDS

CCSDS Historical DocumentPART 1 EARTH STATIONS AND SPACECRAFT RECOMMENDED STANDARD CCSDS 401.0-B-28 February 2018 CCSDS HISTORICAL DOCUMENT Recommendations for Space Data System Standards

CCSDS Recommended Procedures for Cloud-Based Interoperability … · 2018-06-29 · CCSDS RECOMMENDED PROCEDURES FOR CLOUD-BASED INTEROPERABILITY TESTING CCSDS A13.1-Y-1 Page i June

e Hogie Ccsds Hdlc Concept

1 Document Status CCSDS Security Working Group March 2008

CCSDS Security Working Group - Fall 2007 Meeting Research Activities on Encryption and Authentication for Space Applications by the Telecommunications

Group Secure Association Key Management Protocol (GSAKMP) Presented by Hugh Harney [email protected]

CCSDS File Delivery Protocol (CFDP)—Part 2: Implementers Guide · 2018-09-18 · CCSDS REPORT CONCERNING THE CCSDS FILE DELIVERY PROTOCOL (CFDP) CCSDS 720.2-G-3 Page ii April 2007

cwe.ccsds.org Web viewDRAFT CCSDS RECOMMENDED STANDARD FOR MISSION OPERATIONS MESSAGE ABSTRACTION LAYER—SPACE PACKET BINDING. CCSDS 524.1-R-0Page 4-12September 2012. CCSDS 524.1-R-0Page

CCSDS Navigation Working Group

CCSDS Historical Document · Washington, DC 20546, USA CCSDS HISTORICAL DOCUMENT CCSDS HISTORICAL DOCUMENT. CCSDS RECOMMENDATION FOR SPACE LINK IDENTIFIERS ... Through the process

Space Data Link Security Protocol - CCSDS.org · 2016-05-27 · CCSDS RECOMMENDED STANDARD FOR SPACE DATA LINK SECURITY CCSDS 355.0-B-1 Page iii September 2015 FOREWORD This document

WELCOME to the CCSDS Meetings at DIN/Berlin. Martin Pilgram, CCSDS Spring 2011, DIN/Berlin CCSDS Meetings Spring 2011 Location

CCSDS SOIS Wireless Working Group

Lossless Data Compression - CCSDS.org · general will be deeply missed by his many friends and colleagues in the CCSDS. CCSDS RECOMMENDED STANDARD FOR LOSSLESS DATA COMPRESSION CCSDS

Authorizing Slice Creation How ABAC Coordinates Distributed Authorization Alefiya Hussain [email protected] 1

CCSDS Historical Document · CCSDS 871.3-M-1 Page ii October 2014 STATEMENT OF INTENT The Consultative Committee for Space Data Systems (CCSDS) is an organization officially established

CCSDS Historical Document

CCSDS File Delivery Protocol (CFDP) · CCSDS RECOMMENDED STANDARD FOR CCSDS FILE DELIVERY PROTOCOL (CFDP) At time of publication, the active Member and Observer Agencies of the CCSDS

CCSDS Cryptographic Algorithms · CCSDS RECOMMENDED STANDARD FOR CRYPTOGRAPHIC ALGORITHMS CCSDS 352.0-B-2 Page ii August 2019 STATEMENT OF INTENT . The Consultative Committee for

Sepucha_Date_01 Group Key Management Architecture Howie Weiss NASA/JPL/SPARTA [email protected]

CCSDS SOIS Wireless BoF

1 Security Policy Framework & CCSDS Common Criteria Use CCSDS Security WG Fall 2005 Atlanta, GA USA Howard Weiss NASA/JPL/SPARTA [email protected] +1-410-872-1515

AUTHORITY Completed... · CCSDS RECOMMENDATION FOR CCSDS [number] Page ii [May 2004] STATEMENT OF INTENT The Consultative Committee for Space Data Systems (CCSDS) is an organization

CCSDS “ Boot Camp ” : CCSDS Book “ Colors ” and Contents

CCSDS Message Bus Comparison

CCSDS File Delivery Protocol (CFDP) · Recommendation for Space Data System Standards CCSDS FILE DELIVERY PROTOCOL (CFDP) RECOMMENDED STANDARD CCSDS 727.0-B-5 BLUE BOOK JULY 2020

CCSDS Historical Document · CCSDS 121.0-B-2 Page iii May 2012 STATEMENT OF INTENT The Consultative Committee for Space Data Systems (CCSDS) is an organization officially established

Daftar Rekomendasi CCSDS

The Application of Security to CCSDS Protocols · CCSDS REPORT ON THE APPLICATION OF SECURITY TO CCSDS PROTOCOLS CCSDS 350.0-G-3 Page ii March 2019 FOREWORD This document is a CCSDS

CCSDS Engineering Steering Group: report to the CCSDS Management Council

CCSDS Security WG

CCSDS Report Mike Kearney CCSDS Management Council Chairman CCSDS General Secretary NASA MSFC EO-01 256-544-2029 [email protected] March 2008