From Gilles.Moury at cnes.fr Fri May 5 12:56:55 2017 From: Gilles.Moury at cnes.fr (Moury Gilles) Date: Fri, 5 May 2017 12:56:55 +0000 Subject: [Sls-sea-dls] SDLS Extended Prcocedures Red Book Draft 1.3 In-Reply-To: References: Message-ID: <442F062EBF46F247A96B8A50EF3EB6F42A6D4780@TW-MBX-P04.cnesnet.ad.cnes.fr> Dear Daniel, Thank you for this updated version. Please find my proposed modifications/additions and comments inserted in the attached version. This version is now complete and, pending successful discussion and resolution of the 6 remaining open points you summarized in your mail, I think we can reasonably expect to go for red-1 and agency review just after our upcoming meeting. Looking forward to a fruitful meeting in San Antonio, Best regards, Gilles Gilles MOURY CNES Toulouse De : SLS-SEA-DLS [mailto:sls-sea-dls-bounces at mailman.ccsds.org] De la part de Daniel.Fischer at esa.int Envoyé : mercredi 12 avril 2017 10:49 À : sls-sea-dls at mailman.ccsds.org Objet : [Sls-sea-dls] SDLS Extended Prcocedures Red Book Draft 1.3 Dear all, I have finished the update of the SDLS Extended Procedures Draft Red Book. Please find it attached. Updates included: - Definition of managed parameters for Key Management - Definition of managed parameters for SU Management and Control - Inclusion of Key Management and SU Management and Control PDUs in the PICS - Completed Security Section - Updated Baseline Mode (DK comments, Inclusion of CRC definition provided by Gilles (D 4.3)) Please note: This is a HUGE document. I am pretty sure there are still a not of small problems in it. If you have some time, could you please check the document for things like this? I am afraid we are not ready for Red Book Status yet. In recent discussions on the mailing list and also with industry a number of questions popped up that need to be clarified first. 1) SA Management Discussion It was pointed out that the way how keys can be changed on a running SA may not be practicable. At the moment, this requires four SA procedures to be executed. (1) Stoop SA, (2) Expire SA (3) Rekey SA (4) Start SA. However, it may be preferable to be able to change the keys "on the fly" without having to shut down the SA. This would make key changing much simpler. 2) OTAR/Key Verification Procedures Discussion The rationale for us to introduce the CRC check was to be able to execute the Key Verification without having to start the lifetime of the key that is being checked. Industry however pointed out that (1) These kind of checks are usually done by the spacecraft anyway on its memory and (2) That a CRC is not secure and will not guarantee that keys cannot be modified onboard the spacecraft. Instead they suggested to go back to the old Challenge/Response concept but only execute that prior to activating the session key for operations anyway. In this way, the start of the key lifetime is not a problem. 3) Use of Master Keys We have specified which procedures are considered sensitive. Industry pointed out that it is still not clear which procedures requires protection under a master key (so far only the OTAR specifies that directly) and in general what the master keys are being used for. Some of this is in the Symmetric Key Management Book however we should think about if we want to have other procedures especially protected under the use of a master key. 4) Association of ARC to Key instead of SPI Industry suggested to associate the ARC to a key rather than an SPI. They argue that is is a more natural connection since a new key would also start a new ARC (TBD). I personally disagree with this but I think its worth discussing this in the group. 5) Frame Security Report Industry appreciates the concept but has argued that the inclusion of additional error sources (and thus more flags and reduced bits from SN) should be included such as (a) bad MAC, (b) invalid Key/SA state, (c) invalid frame length. For me this makes sense. 6) Unique Identification of Sender and Receiver VCs. David has raised the point once more that sender and receiver VCs can currently not be distinguished (since the GVCID is not unique for up and downlinks). A discussion with SLS should take place in the meeting to find a solution for this since it does not only touch the Extended Procedures. Small things to be approved by the WG: - There seems to be a possible misunderstanding regarding the reserved SPIs. Industry thought that it always has to be exactly the two reserved ones for EP and no more. We may want to add a clarification. - Discussion on the extend to which the security log is specified in the Extended procedures. Ed suggested the global definition of a GVCIDS and GVCIDR which I personally find a good solution. While this looks like a lot of discussion material, I think we will actually be able to finalise the discussions in the next meeting and then publish the Red Book afterwards. Cheers, Daniel Dr. Daniel Fischer Head of the Engineering Support Section, OPS-GES Ground Systems Engineering Department Directorate of Operations ESA - ESOC Robert-Bosch-Str. 5, D-64392 Darmstadt, Germany Tel. +49 6151 90 2718 | E-mail: Daniel.Fischer at esa.int Disclaimer This message and any attachments are intended for the use of the addressee or addressees only. The unauthorized disclosure, use, dissemination or copying (either in whole or in part) of its content is not permitted. If you received this message in error, please notify the sender and delete it from your system. Emails can be altered and their integrity cannot be guaranteed by the sender. Please consider the environment before printing this email. Disclaimer This message and any attachments are intended for the use of the addressee or addressees only. The unauthorized disclosure, use, dissemination or copying (either in whole or in part) of its content is not permitted. If you received this message in error, please notify the sender and delete it from your system. Emails can be altered and their integrity cannot be guaranteed by the sender. Please consider the environment before printing this email. -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: SDLS Extended Procedures Red 1 v3_no track GM20170419.docx Type: application/vnd.openxmlformats-officedocument.wordprocessingml.document Size: 1543613 bytes Desc: SDLS Extended Procedures Red 1 v3_no track GM20170419.docx URL: From Gilles.Moury at cnes.fr Mon May 8 20:16:08 2017 From: Gilles.Moury at cnes.fr (Moury Gilles) Date: Mon, 8 May 2017 20:16:08 +0000 Subject: [Sls-sea-dls] TR: This morning's presentation on Physical Layer security Message-ID: <442F062EBF46F247A96B8A50EF3EB6F42A6D8692@TW-MBX-P04.cnesnet.ad.cnes.fr> Dear SEC, C&S and RFM WG members, Please find attached the presentation made by Ignacio Aguilar and Charles Sheehe this morning on Physical Layer Security during our joint session on this subject. I will issue shortly the MoM summarizing the conclusions of our discussion. Best regards, Gilles Gilles MOURY CCSDS SLS DAD De : Ignacio.Aguilar.Sanchez at esa.int [mailto:Ignacio.Aguilar.Sanchez at esa.int] Envoyé : lundi 8 mai 2017 22:00 À : Moury Gilles Objet : This morning's presentation Gilles, Please distribute as needed. Kind regards, Ignacio [cid:_1_0A2AC4AC0A2ABF78006DD96CC125811A] Ignacio Aguilar Sánchez Communication Systems Engineer Electrical Engineering Department European Space Research and Technology Centre Keplerlaan 1, PO Box 299, 2200 AG Noordwijk, The Netherlands Tel. (31) 71 565 5695 Fax (31) 71 565 5418 Email: ignacio.aguilar.sanchez at esa.int www.esa.int This message and any attachments are intended for the use of the addressee or addressees only. The unauthorised disclosure, use, dissemination or copying (either in whole or in part) of its content is not permitted. If you received this message in error, please notify the sender and delete it from your system. Emails can be altered and their integrity cannot be guaranteed by the sender. Please consider the environment before printing this email. -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: ATT00001.gif Type: image/gif Size: 1155 bytes Desc: ATT00001.gif URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: CCSDS PHY_Layer_Sec_05_08_2017.pdf Type: application/octet-stream Size: 719220 bytes Desc: CCSDS PHY_Layer_Sec_05_08_2017.pdf URL: From Gilles.Moury at cnes.fr Mon May 8 21:46:44 2017 From: Gilles.Moury at cnes.fr (Moury Gilles) Date: Mon, 8 May 2017 21:46:44 +0000 Subject: [Sls-sea-dls] SLS area resolution to publish Space Data Link Security Green Book Issue 1 Message-ID: <442F062EBF46F247A96B8A50EF3EB6F42A6D8770@TW-MBX-P04.cnesnet.ad.cnes.fr> Dear CESG member, Please find attached an SLS area resolution requesting CESG/CMC poll to publish the Space Data Link Security Green Book Issue 1, together with the final draft for publication of the document : Best regards, Gilles Moury SLS DAD SDLS WG chairman -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: SLS-R-2017-05-001(350.5-G.publish).v1.docx Type: application/vnd.openxmlformats-officedocument.wordprocessingml.document Size: 27220 bytes Desc: SLS-R-2017-05-001(350.5-G.publish).v1.docx URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: SDLS Green Book 350.5-G-0 final draft.docx Type: application/vnd.openxmlformats-officedocument.wordprocessingml.document Size: 1355781 bytes Desc: SDLS Green Book 350.5-G-0 final draft.docx URL: From Gilles.Moury at cnes.fr Wed May 10 23:01:30 2017 From: Gilles.Moury at cnes.fr (Moury Gilles) Date: Wed, 10 May 2017 23:01:30 +0000 Subject: [Sls-sea-dls] TR: [Cesg-all] CESG Plenary Presentation In-Reply-To: <8086_1494442953_591363C8_8086_457_1_OFB031E842.CAA0E35E-ONC125811C.00685836-C125811C.006893EB@esa.int> References: <8086_1494442953_591363C8_8086_457_1_OFB031E842.CAA0E35E-ONC125811C.00685836-C125811C.006893EB@esa.int> Message-ID: <442F062EBF46F247A96B8A50EF3EB6F42A6D9738@TW-MBX-P04.cnesnet.ad.cnes.fr> Dear all, Please find attached the CCSDS/CESG opening plenary presentation on May 8th. Best regards, Gilles MOURY CNES Toulouse De : CESG-All [mailto:cesg-all-bounces at mailman.ccsds.org] De la part de Nestor.Peccia at esa.int Envoyé : mercredi 10 mai 2017 21:02 À : CCSDS Engineering Steering Group - CESG All Objet : [Cesg-all] CESG Plenary Presentation Dear all, Please find attached the CESG presentation given during the Opening Plenary on 8th M ay 2017 I count on the WG Chairs for distribution within your WG. ciao nestor This message and any attachments are intended for the use of the addressee or addressees only. The unauthorised disclosure, use, dissemination or copying (either in whole or in part) of its content is not permitted. If you received this message in error, please notify the sender and delete it from your system. Emails can be altered and their integrity cannot be guaranteed by the sender. Please consider the environment before printing this email. -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: d0.3-S17-Opening-Plenary.pptx Type: application/octet-stream Size: 2340293 bytes Desc: d0.3-S17-Opening-Plenary.pptx URL: -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: ATT00001.txt URL: From Gilles.Moury at cnes.fr Fri May 12 14:35:19 2017 From: Gilles.Moury at cnes.fr (Moury Gilles) Date: Fri, 12 May 2017 14:35:19 +0000 Subject: [Sls-sea-dls] TR: [Cesg-all] Phil Liebrecht's presentation on 8th May 2017 In-Reply-To: <25132_1494515632_59147FB0_25132_830_1_OFDB0724FA.85985A01-ONC125811D.005372FA-C125811D.0053AA07@esa.int> References: <25132_1494515632_59147FB0_25132_830_1_OFDB0724FA.85985A01-ONC125811D.005372FA-C125811D.0053AA07@esa.int> Message-ID: <442F062EBF46F247A96B8A50EF3EB6F42A6DA10F@TW-MBX-P04.cnesnet.ad.cnes.fr> Please find hereafter the link to the presentation made by NASA at the CCSDS opening plenary on Monday May 8. Best regards, Gilles MOURY CNES Toulouse De : CESG-All [mailto:cesg-all-bounces at mailman.ccsds.org] De la part de Nestor.Peccia at esa.int Envoyé : jeudi 11 mai 2017 17:14 À : CCSDS Engineering Steering Group - CESG All Objet : [Cesg-all] Phil Liebrecht's presentation on 8th May 2017 Dear all The CCSDS Secretariat has uploaded Phil's presentation to the CESG under the CWE > CESG > Meetings. The folder is located here: https://cwe.ccsds.org/cesg/docs/Forms/AllItems.aspx?RootFolder=%2Fcesg%2Fdocs%2FCWE%20Private%2FMeetings%2F2017%20Spring%20Meeting%2C%20SwRI%2C%20San%20Antonio%2C%20Texas%2FCESG%20Opening%20Plenary%2C%208th%20May%202017 I count that you will distribute it within your WG Note: SwRI presentation has already been requested. ciao nestor This message and any attachments are intended for the use of the addressee or addressees only. The unauthorised disclosure, use, dissemination or copying (either in whole or in part) of its content is not permitted. If you received this message in error, please notify the sender and delete it from your system. Emails can be altered and their integrity cannot be guaranteed by the sender. Please consider the environment before printing this email. -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: ATT00001.txt URL: From Gilles.Moury at cnes.fr Fri May 12 17:15:31 2017 From: Gilles.Moury at cnes.fr (Moury Gilles) Date: Fri, 12 May 2017 17:15:31 +0000 Subject: [Sls-sea-dls] SDLS WG report to SLS plenary Message-ID: <442F062EBF46F247A96B8A50EF3EB6F42A6DA442@TW-MBX-P04.cnesnet.ad.cnes.fr> Gian-Paolo, Please find attached the report in subject matter : Best regards, Gilles Gilles MOURY CNES Toulouse Expert senior "Plateforme Satellite" Sous-Direction "Architecture, Validation & Intégration" DSO/AVI - Bpi 1416 18, avenue Edouard Belin F-31401 TOULOUSE Cedex 9 http://www.cnes.fr tel : +33 (0)5 61 27 3790 fax : +33 (0)5 61 27 4099 sec : +33 (0)5 61 27 3882 mob : +33 (0)6 83 56 0485 -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: SLS-SDLS-WG-Report-to-Area-Spring2017-v1.pptx Type: application/vnd.openxmlformats-officedocument.presentationml.presentation Size: 167821 bytes Desc: SLS-SDLS-WG-Report-to-Area-Spring2017-v1.pptx URL: