[CESG] [EXTERNAL] CYSAT 2024 - tutorial on CCSDS SDLS protocols

Wed Feb 7 17:36:38 UTC 2024

Thanks Ignacio.  I’m not surprised that you find the NIST SP 800-160 to be useful.  I think it is too.  That said, I do think it could be even better.

Whether you choose to use any of what I sent in your talk, if you, as one of our CCSDS Security experts, could make the time available I’d really like to get your feedback on those RASDS Security topics.  This is really true for all of the ADs, there is something in there for each of your areas.

This document will shortly come out for CESG review and it will need CESG approval.  If there are issues about any of this I’d like to address them now.

Thanks, and best regards, Peter

From: Ignacio Sanchez-Aguillar <Ignacio.Aguilar.Sanchez at esa.int>
Date: Tuesday, February 6, 2024 at 11:17 PM
To: Peter Shames <peter.m.shames at jpl.nasa.gov>, CESG <cesg at mailman.ccsds.org>
Cc: Tom Gannett <thomas.gannett at tgannett.net>
Subject: RE: [EXTERNAL] [CESG] CYSAT 2024 - tutorial on CCSDS SDLS protocols

Thank you for your kind e-mail and the supporting material, Peter.

About CYSAT, I believe Mathieu Bailly (promoter from CYSEC) is very enthusiastic about the whole subject. I got to know him before COVID when he approached ESA to enter the space business. However, not sure I would make the claims he makes about the size and importance of the event 😊. His target audience is mainly ‘new space’. My main goals are to continue raising awareness on space system security and promote CCSDS standards.

About the NIST document, I have been using and recommending it, already in its initial version a few years ago. For me it is probably right now one of the best references out there to assist system security engineers. It might not be perfect, but I do not know of any other reference at a similar level on the subject.

Kind regards,

Ignacio

Ignacio Aguilar Sánchez
Communication Systems Engineer
Electrical Engineering Department

European Space Research and Technology Centre
Keplerlaan 1, PO Box 299, 2200 AG Noordwijk, The Netherlands
Mob.+31641360257
Fax  +31715655418
Email: ignacio.aguilar.sanchez at esa.int<mailto:ignacio.aguilar.sanchez at esa.int>
www.esa.int<https://urldefense.us/v3/__http:/www.esa.int/__;!!PvBDto6Hs4WbVuu7!KO5gGc-r8f3sWLWU9U270--hUFHnAbQdpPM3_5t20Jy2Cm1Ydmjpzk6W7aCLwQlpIPAUSJ5bLmVmVfMyA7i0rg0sinErW3jN5Ng4$>

From: Shames, Peter M (US 312B) <peter.m.shames at jpl.nasa.gov>
Sent: Tuesday, February 6, 2024 8:43 PM
To: Ignacio Aguilar Sanchez <Ignacio.Aguilar.Sanchez at esa.int>; cesg at mailman.ccsds.org
Cc: Thomas Gannett (thomas.gannett at tgannett.net) <thomas.gannett at tgannett.net>
Subject: Re: [EXTERNAL] [CESG] CYSAT 2024 - tutorial on CCSDS SDLS protocols

Hi Ignacio,

Congratulations on getting their attention and being invited to give a tutorial.  I think this is a great opportunity for you and for CCSDS.  According to their site the focus is “CYSAT is the biggest worldwide event entirely dedicated to cybersecurity for commercial space applications.”  I’m assuming that largely means near Earth and commercial, but maybe there is room to squeeze in civilian space, exploration, and looking out to the Moon?

There’s a new-ish NIST standard, NIST SP800-160-v1r1, “Engineering Trustworthy Secure Systems” (https://doi.org/10.6028/NIST.SP.800-160v1r1<https://urldefense.us/v3/__https:/doi.org/10.6028/NIST.SP.800-160v1r1__;!!PvBDto6Hs4WbVuu7!KO5gGc-r8f3sWLWU9U270--hUFHnAbQdpPM3_5t20Jy2Cm1Ydmjpzk6W7aCLwQlpIPAUSJ5bLmVmVfMyA7i0rg0sinErW0de7ahy$>).  After reading it I believed that they had missed some important points relating to all of the different viewpoints where cybersecurity needed to be addressed in architecting these systems.  I created a PPT file based on our recent RASDS work, attached here, that I sent to the lead author, Mark Winstead.   He agreed that these materials offered some value and would be considered in an update.  I’m attaching it here for your consideration since it provides a view of the environment within which SDLS has a direct role.

Look for the main relevant viewpoints: functional, information, connectivity, protocol, and enterprise (pgs 14, 19, 25, 30, and 35) and then look for the security topics pages associated with each viewpoint (pgs 17, 22, 28, 33, and 38).

This may be of use (or not), but it is free of charge.  ;-}

Cheers, Peter

From: CESG <cesg-bounces at mailman.ccsds.org<mailto:cesg-bounces at mailman.ccsds.org>> on behalf of CESG <cesg at mailman.ccsds.org<mailto:cesg at mailman.ccsds.org>>
Reply-To: Ignacio Sanchez-Aguillar <Ignacio.Aguilar.Sanchez at esa.int<mailto:Ignacio.Aguilar.Sanchez at esa.int>>
Date: Tuesday, February 6, 2024 at 12:48 AM
To: CESG <cesg at mailman.ccsds.org<mailto:cesg at mailman.ccsds.org>>
Cc: Tom Gannett <thomas.gannett at tgannett.net<mailto:thomas.gannett at tgannett.net>>
Subject: [EXTERNAL] [CESG] CYSAT 2024 - tutorial on CCSDS SDLS protocols

Dear colleagues,

I would like to inform you that following a kind invitation from the CYSAT organisers (https://cysat.eu/about/<https://urldefense.us/v3/__https:/cysat.eu/about/__;!!PvBDto6Hs4WbVuu7!MFdY_7zt_-izCb23JScggshu5yLKKJvEoOABblY3PvVKxwU6JkF2KGgWuYjpsXXi-GAXx6sGSvAoLFkp_QfLFP39oKw$>), I will be giving a tutorial on CCSDS SDLS protocols at their 2024 event.

https://cysat.eu/cysat-academy/<https://urldefense.us/v3/__https:/cysat.eu/cysat-academy/__;!!PvBDto6Hs4WbVuu7!MFdY_7zt_-izCb23JScggshu5yLKKJvEoOABblY3PvVKxwU6JkF2KGgWuYjpsXXi-GAXx6sGSvAoLFkp_QfLGU7bAWY$>

This year CYSAT is also taking place in the US: https://cysat.eu/cysat-usa/<https://urldefense.us/v3/__https:/cysat.eu/cysat-usa/__;!!PvBDto6Hs4WbVuu7!MFdY_7zt_-izCb23JScggshu5yLKKJvEoOABblY3PvVKxwU6JkF2KGgWuYjpsXXi-GAXx6sGSvAoLFkp_QfLKXL4xjg$>

Kind regards,

Ignacio

Ignacio Aguilar Sánchez
Communication Systems Engineer
Electrical Engineering Department

European Space Research and Technology Centre
Keplerlaan 1, PO Box 299, 2200 AG Noordwijk, The Netherlands
Mob.+31641360257
Fax  +31715655418
Email: ignacio.aguilar.sanchez at esa.int<mailto:ignacio.aguilar.sanchez at esa.int>
www.esa.int<https://urldefense.us/v3/__http:/www.esa.int/__;!!PvBDto6Hs4WbVuu7!MFdY_7zt_-izCb23JScggshu5yLKKJvEoOABblY3PvVKxwU6JkF2KGgWuYjpsXXi-GAXx6sGSvAoLFkp_QfLHnXs4kM$>

This message is intended only for the recipient(s) named above. It may contain proprietary information and/or protected content. Any unauthorised disclosure, use, retention or dissemination is prohibited. If you have received this e-mail in error, please notify the sender immediately. ESA applies appropriate organisational measures to protect personal data, in case of data privacy queries, please contact the ESA Data Protection Officer (dpo at esa.int<mailto:dpo at esa.int>).
This message is intended only for the recipient(s) named above. It may contain proprietary information and/or protected content. Any unauthorised disclosure, use, retention or dissemination is prohibited. If you have received this e-mail in error, please notify the sender immediately. ESA applies appropriate organisational measures to protect personal data, in case of data privacy queries, please contact the ESA Data Protection Officer (dpo at esa.int).
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.ccsds.org/pipermail/cesg/attachments/20240207/54490da0/attachment-0001.htm>