Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Security Policy Framework & CCSDS Common Criteria Use CCSDS Security WG Fall 2005 Atlanta, GA USA Howard Weiss NASA/JPL/SPARTA +1-410-872-1515.

Published byGeorgina Davis Modified over 9 years ago

Similar presentations

Presentation on theme: "1 Security Policy Framework & CCSDS Common Criteria Use CCSDS Security WG Fall 2005 Atlanta, GA USA Howard Weiss NASA/JPL/SPARTA +1-410-872-1515."— Presentation transcript:

1 1 Security Policy Framework & CCSDS Common Criteria Use CCSDS Security WG Fall 2005 Atlanta, GA USA Howard Weiss NASA/JPL/SPARTA hsw@sparta.com +1-410-872-1515 September 2005

2 2 AGENDA 14 September 2005 – 0900-0915: Welcome, opening remarks, logistics, agenda bashing, 0915-0930: Review results of Spring 2005 SecWG meeting in Athens Mtg Notes Mtg Notes – 0930-1000: RASDS Review wrt Security Architecture (Kenny) – 1000-1030: coffee break – 1030-1200: Security Architecture Document Discussions (Kenny) – 1200-1330: Lunch – 1330-1400:Review CNES Mission Security Req Development using EDIOS (Pechmalbec/Belbus) – 1400-1500: Encryption Algorithm Trade Study (Weiss) – 1500-1530: coffee break – 1530-1700: Authentication/Integrity Algorithm Trade Study (Weiss) 15 September 2005 – 0900-1000: Key management discussion (Kenny) – 1000-1030: Coffee break – 1030-1100: Identity Management, Spacecraft IDs (Weiss) – 1100-1130: CNES Interconnection Rules (Pechmalbec/Belbus) – 1130-1300: Lunch – 1300-1400: CNES Security Development Process (Pechmalbec/Belbus) – 1400-1500: Security Policy Document/Common Criteria (Weiss)

3 3 Security Policy Framework – What is This? Connection agreements between space agencies have to be developed – often from scratch – to govern the security policies and enforcement between the connected networks. We agreed that it would make sense to develop a standard CCSDS policy framework for – developing trust agreements, – rules for operational engagement, – ensuring security compliance between legacy systems, and – standard, secure interfaces between systems and across security domains.

4 4 What Might It Contain? Sections might include: – System description – Interconnection partners reason for connecting – Description of networks to be connected » Security policies » Security administration – Interconnection demarcation rules – Mutual agreements and understanding – Etc.

5 5

6 6

7 7 Existing Document US National Institute of Standards and Technology (NIST) Special Publication 800-47 – NIST 800-47 NIST 800-47 – This would appear to need to be re-written for CCSDS rather than adopting » Lots of US-centric references to documents, regulations, departments, etc. » But it contains a lot of the baseline information including a template for an agreement between parties.

8 8 Discussion Results Athens meeting: seemed to be in agreement that this is a good thing to do – Create a Green Book based on NIST 800-47? – Action item assigned (Weiss) to investigate » Not completed – question is should we still contemplate doing this? » ……..

9 9 CCSDS Use of Common Criteria Background – In the past we’ve discussed the creation of an information security guide for the mission planner – We have discussed re-examining this in favor of using the Common Criteria to instead write a Space Mission Protection Profile

10 10 What Might It Contain? Sections might include: – Project mission roles and responsibilities – Security overview (a la Green Book) – Threat/risk analysis – Risk mitigation – Security planning (a la Security Architecture document) – Security mechanisms (a la Green Book) – Contingency and disaster mitigation – Etc.

11 11 Alternative: Common Criteria ISO 15408: Common Criteria for Information Technology Security Evaluation – Protection Profiles (PP) are produced as security “acquisition” documents » Collection of system security requirements that the system “user” wants to purchase – Security Targets (ST) are produced by vendors to describe the security characteristics of their system. Use the CC as the basis for describing the mission security requirements? – Use the existing CCToolbox? – Extend/modify the CCToolbox for space environments? – Write a (several) Protection Profiles to describe the security requirements for space missions? » E.g., Use illustrative mission categories from the Threat Green Book?

12 12 CC Protection Profiles Means by which security requirements for missions can be described in a way that is internationally understood. Threat Document mission types: – Manned – Meteorological (LEO, GEO) – Communications (LEO constellations, GEO) – Science missions: Near-earth, Lunar, Interplanetary/Deep-space – Navigation Develop a PP for each mission type?

13 13 Use CCToolbox? SPARTA-developed for US National Information Assurance Partnership (NIAP) Freely available (although no longer supported) – Written in Java – ftp://ftp.sparta.com/pub/columbia/cctb.zip ftp://ftp.sparta.com/pub/columbia/cctb.zip “Interviews” PP or ST developer to walk through the developer though the myriad mess of the CC. – Akin to TurboTax that walks folks in the US through their income tax preparation

14 14

15 15

16 16 Discussion Results

Download ppt "1 Security Policy Framework & CCSDS Common Criteria Use CCSDS Security WG Fall 2005 Atlanta, GA USA Howard Weiss NASA/JPL/SPARTA +1-410-872-1515."

Similar presentations

<<Date>><<SDLC Phase>>

<<Date>><<SDLC Phase>>
The Common Criteria for Information Technology Security Evaluation

The Common Criteria for Information Technology Security Evaluation
The Common Criteria Cs5493(7493). CC: Background The need for independently evaluated IT security products and systems led to the TCSEC Rainbow series.

The Common Criteria Cs5493(7493). CC: Background The need for independently evaluated IT security products and systems led to the TCSEC Rainbow series.
1 CCSDS Security Working Group Fall 2008 Meeting 15-16 October 2008 Berlin Germany.

1 CCSDS Security Working Group Fall 2008 Meeting October 2008 Berlin Germany.
Connecting People With Information DoD Net-Centric Services Strategy Frank Petroski October 31, 2006.

Connecting People With Information DoD Net-Centric Services Strategy Frank Petroski October 31, 2006.
11 Authentication Algorithm Trade Study CCSDS Security WG Fall 2005 Atlanta, GA USA Howard Weiss NASA/JPL/SPARTA +1-410-872-1515 September.

11 Authentication Algorithm Trade Study CCSDS Security WG Fall 2005 Atlanta, GA USA Howard Weiss NASA/JPL/SPARTA September.
Security Controls – What Works

Security Controls – What Works
Security Extensions to the DOD Architecture Framework Kevin Richardson Information Assurance Lab Auburn University Computer Science and Software Engineering.

Security Extensions to the DOD Architecture Framework Kevin Richardson Information Assurance Lab Auburn University Computer Science and Software Engineering.
1 Integrating Information Security Into the Procurement Process for Large Systems MITRE © 2003 The MITRE Corporation. All rights reserved.

1 Integrating Information Security Into the Procurement Process for Large Systems MITRE © 2003 The MITRE Corporation. All rights reserved.
0 CCSDS Systems Engineering Area: Security Working Group Howard Weiss NASA/JPL/SPARTA (a Parsons Company) +1.443.430.8089 15 October.

0 CCSDS Systems Engineering Area: Security Working Group Howard Weiss NASA/JPL/SPARTA (a Parsons Company) October.
Gurpreet Dhillon Virginia Commonwealth University

Gurpreet Dhillon Virginia Commonwealth University
Security WG: Report of the Winter 2007 Meeting Colorado Springs, CO USA January 20, 2007 Howard Weiss NASA/JPL/SPARTA +1-443-430-8089.

Security WG: Report of the Winter 2007 Meeting Colorado Springs, CO USA January 20, 2007 Howard Weiss NASA/JPL/SPARTA
CSSM Meeting Summary Fall 2012 Meetings 15 – 18 October E. Barkley Chair (NASA/JPL) C. Haddow Co-Chair (ESA/ESOC) Cleveland, Ohio, USA.

CSSM Meeting Summary Fall 2012 Meetings 15 – 18 October E. Barkley Chair (NASA/JPL) C. Haddow Co-Chair (ESA/ESOC) Cleveland, Ohio, USA.
CCSDS Security WG Management Remarks Martin Pilgram - DLR RB-KOB > Management Remarks on Sec WG > 15-04-2013www.DLR.de/rb Slide 1.

CCSDS Security WG Management Remarks Martin Pilgram - DLR RB-KOB > Management Remarks on Sec WG > www.DLR.de/rb Slide 1.
© 2001 Carnegie Mellon University S8A-1 OCTAVE SM Process 8 Develop Protection Strategy Workshop A: Protection Strategy Development Software Engineering.

© 2001 Carnegie Mellon University S8A-1 OCTAVE SM Process 8 Develop Protection Strategy Workshop A: Protection Strategy Development Software Engineering.
Symmetric Key Management Books Development Plan Daniel Fischer (ESA) Ignacio Aguilar Sanchez (ESA) CCSDS Spring Meeting 2010 | Portsmouth, VA.

Symmetric Key Management Books Development Plan Daniel Fischer (ESA) Ignacio Aguilar Sanchez (ESA) CCSDS Spring Meeting 2010 | Portsmouth, VA.
Security WG: Report of the Fall 2014 Meeting BSI, London UK 14 November 2014 Howard Weiss NASA/JPL/PARSONS +1-443-430-8089.

Security WG: Report of the Fall 2014 Meeting BSI, London UK 14 November 2014 Howard Weiss NASA/JPL/PARSONS
1 Common Criteria Discussions CCSDS Security Working Group Spring 2008 Meeting 11-12 March 2008 Washington DC (Marriott Courtyard Crystal City, Virginia)

1 Common Criteria Discussions CCSDS Security Working Group Spring 2008 Meeting March 2008 Washington DC (Marriott Courtyard Crystal City, Virginia)
1 Space Communications Cross Support Architecture WG: Charter and Work Plan October 2010 London, UK Takahiro Yamada, JAXA/ISAS.

1 Space Communications Cross Support Architecture WG: Charter and Work Plan October 2010 London, UK Takahiro Yamada, JAXA/ISAS.
Security WG Status Review ESA European Space Operations Centre Darmstadt, Germany 16 April 2012 Howard Weiss NASA/JPL/SPARTA +1-443-430-8089.

Security WG Status Review ESA European Space Operations Centre Darmstadt, Germany 16 April 2012 Howard Weiss NASA/JPL/SPARTA

Similar presentations

Ads by Google