CCSDS Systems Engineering Area: Security Working Group

1. CCSDS Systems Engineering Area: Security Working Group Howard Weiss NASA/JPL/Cobham (Parsons) howard.weiss@cobham.com +1.443.430.8089 31 October 2011

2. OVERVIEW • The CCSDS Security WG is chartered to: • Develop security recommendations: • Encryption, authentication, key management, etc • Develop security guides and informative documents: • Security architecture, threat, secure interconnection guide, key management, security glossary of terms, etc • Provide advice and guidance to other WGs • E.g., Spacecraft Monitoring & Control, Space Link

3. STATUS • Berlin (May 2011) Progress: • Finalized and submitted charter revisions (since approved). • Security Architecture status: awaiting RIDS (since recd). • Reviewed Algorithm Book: more modifications. • Reviewed Algorithm Testing Yellow Book: needs more work. • Reviewed Security Glossary: a few more minor mods. • Reviewed Mission Planners Guide: done, ready for polling. • Reviewed Key Management Green Book: complete, ready for polling. • Discussed Key Management Blue Book: Making progress. • Discussed network layer security: agreed upon profile contents. Book to be written. • Discussed SDLS WG: making good progress.

4. STATUS (cont) • Current Progress: • Completed: • Security Architecture (RIDS to be dispositioned in CO), • Key Management green book (submitted to AD & Secretariat), • Mission Planner’s Guide (CESG/CMC polling completed). • Continuing: • Algorithm Blue Book (new rev sent to WG) • Algorithm Yellow Book (new rev sent to WG) • Key Management Blue Book (in progress by ESA) • Security Glossary (new rev sent to WG) • Link Layer Security (in progress by NASA)

5. FUTURE WORK AREAS • Algorithm Green Book • Key Management Yellow Book • Upper Layer Security • (1) Network layer (just starting) • (2) Application layer • Cross Support Issues • E.g., Cross realm identification, authentication, access control • Increased SLE security? • Increased SM&C security? • Integrate Individual Documents • possibly tie them together with a mission security Protection Profile (PP) using the Common Criteria

6. AGENDA • 31 October 2011 • 08:45 – 09:45: CCSDS Plenary • 09:45 – 12:00: Systems Engineering Area (SEA) Plenary • 1 November 2011 (09:00 – 17:00) • Welcome, opening remarks, logistics, agenda bashing, introductions • Review results of Spring 2011 (Berlin) meeting • Status of documents • Review newly updated CWE entries: charter, programs, schedules • Algorithm Document review (Weiss) • Algorithm Yellow Book review (Weiss) • Glossary Review (Weiss) • Security Architecture RID Disposition (Black)

7. AGENDA (cont) • 2 November 2011 (09:00 – 17:00) • Key Management (Fischer/Aguilar-Sanchez) • Threat book review (All) • Cross Support (All) ?? • SM&C Support (Fischer) ?? • Network Layer Security Update (Weiss) • Link Layer Security Update (Biggerstaff/Weiss/Aguilar-Sanchez) • Other areas of discussion • New work areas • 3 November 2011 • 09:00-17:00: Space Data Link Security WG • 4 November 2011 • 09:00-12:30: Space Data Link Security WG • 13:00-17:00: SEA Wrap-up Plenary