1. 1 Document Status CCSDS Security Working Group March 2008

2. 2 AGENDA Document Status – Security Green Book wording revisions – Security Architecture – Key Management – Mission Planners Guide – Encryption – Authentication » Proposals for HMAC replacement?

3. 3 Security Green Book Revisions

4. 4 Revisions per telecon Rationale: Add words about cipher-based MAC

5. 5 Security Green Book Revisions (cont) Red = Susanna Spinsante changes

6. 6 Revisions per telecon Rationale: this section discusses “bulk encryption” so why muddy the waters talking about authentication which has nothing to do with the subject.

7. 7 Green Book ESA Comments

8. 8 Security Architecture Everyone needs to read the document and provide comments to Nick Shave as soon as possible. Also, please provide agency mission profiles.

9. 9 Key Management Implemented changes based on the discussion in Heppenheim. Waiting for comments as per action before issuing the next draft. A request for review and comment had been sent out in Dec. Another reminder will be sent out. Please review and send comments to Daniel Fischer.

10. 10 Mission Planners Guide 1 st draft shown in Heppenheim, Oct. 2007 2 nd draft will be e-mailed to sea-sec list by middle of Feb. 2008 – Will replace 1 st draft security plan template with a new one according to ISO 27002 controls – Will add more material specific to space environment & CCSDS protocols

11. 11 Encryption Changes made to the Magenta book per the Heppenheim meeting Changes made to the ‘trade survey’ green book No comments received to date – Are we ready to send these to the secretariat to be published? One last chance to look at the “final” documents. Any and all comments to Howie Weiss by 4 Feb 2008. Then documents will be forwarded to the Secretariat for publication.

12. 12 Authentication Changes made per Heppenheim meeting Awaiting any HMAC replacement proposals. Changes made to Green Book (‘trade survey’) – Awaiting comments – none received to date – Are we ready to send this to the secretariat to be published? ESA’s study will complete in Feb. Since we’d like to factor in the outcome of that study, we will discuss any replacement proposals for HMAC at the March meetings in Washington. As for the ‘trade survey,’ any final comments should be sent to Howie Weiss by 4 Feb 2008 – the document will then be forwarded to the Secretariat.

13. 13 March Meetings Plans: – Security implementation experiences with SLE? » Problems with its use? » How its used? – Discuss proposed authentication & encryption algorithm application specific parameters – Review of CCSDS books for security sections » Martin Pilgrim will provide books that need to be reviewed – As time permits - CC usage to create mission security profiles – Threat review (review issued document) – How do we integrate all the individual docs into something that someone can really use (knit it all together). – Agency security implementations – how do individual agencies approach, require, and use security services/mechanisms