1. Security WG: Report of the Fall 2008 Meeting DIN, Berlin Germany October 17, 2008 Howard Weiss NASA/JPL/SPARTA hsw@sparta.com +1-443-430-8089

2. Meeting Agenda 13 October 2008 – 08:00 – 09:00: CCSDS Plenary – 09:00 – 12:00: Systems Engineering Area (SEA) Plenary 14 October 2008 (09:00 – 12:00) – Space Data Link Layer Security BOF 15 October 2008 (09:00 – 17:00) – Welcome, opening remarks, logistics, agenda bashing, introduction for new attendees + Review of document progress and results of Spring 2008 meeting – Document Status (encryption, authentication, key management, mission planners) – “Big Picture” discussions (Black) – 1200-1300: Lunch – Security Architecture Document Discussions (Black) – Mission Planner’s Guide (Biggerstaff) 16 October 2008 (09:00 – 17:00) – Key Management (Fischer) – Application Layer Security (Pajevski/Weiss) – 1200-1300: Lunch – Other discussions (from last meeting): » “Color” of books (magenta vs. blue) » Encryption & authentication application-specific parameters » Common Criteria for mission security profiles (knit docs together) » Agency security implementations (approach, requirements, security services) – Meeting with DTN BOF (tentative) 17 October 2008 – 1300-1700: SEA Wrap-up Plenary

3. Attendance NameOrganizationEmail Address Howard Weiss (Chair)NASA/JPL/SPARTAhoward.weiss@sparta.com Gordon BlackBNSC/Logicagordon.black@logicacmg.com Daniel FischerESA/ESOCdaniel.fischer@esa.int Martin PilgramDLRmartin.pilgram@dlr.de Stefano ZattiESA/ESRINstefano.zatti@esa.int Clayton SigmanNASA/GSFCclayton.sigman@nasa.gov Craig BiggerstaffNASA/JSC/Lockheedcraig.biggerstaff-1@nasa.gov Paolo ChinettiASIpaolo.chinetti@asi.it Ignacio Aguilar-SanchezESA/ESTCignacio.Aguilar.Sanchez@esa.int Sebastain KuzminskyUniversity of Coloradoseb@highlab.com Steve RaderNASA/JSCsteven.n.rader@nasa.gov Zhao HepingCASTzhpcast@public3.bta.net.cn Lee PitsNASA/MSFCrobert.l.pitts@nasa.gov

4. Executive Summary  Attendees from BNSC, ESA/ESOC, ESA/ESRIN, ESA/ESTEC, DLR, ASI, CAST, NASA/GSFC, NASA/JSC, NASA/MSFC, and NASA/JPL. CNES did not attend (a baby is due).  NASA and ESA participation from multiple, respective Agency centers continues to be the norm.  Joint meeting held with Space Link to begin a BOF for Space Link Layer Security Standardization  Reviewed the comments on the latest revision of the SecWG Security Architecture. With respect to the ongoing work in the SLS-BOF, we will add link layer security to the architecture core.  Encryption document out for pre-review review.  Authentication document completed w/security section and submitted to secretariat.  Discussed application layer security.  Discussed color of books.  Reviewed key management green and magenta books.  Reviewed mission planners guide.  Discussed the use of Common Criteria to create “space” Protection Profiles again  Discussed future work areas.

5. Summary of Goals and Deliverables 1. Discussion on the “big picture” of what the SecWG is doing and plans to do. 2. Security Architecture document will be revised based: new link layer security column will be added to the “core” combinatorics table. 3. Continue making good progress on Key Management green book. Stuck on KM magenta book pending information on current KM schemes used by the Agencies. 4. Excellent progress continues on Mission Planners Guide. 5. Good discussion on application layer security and what could be used to provide “security shims” including the potential application of security integrated into messaging frameworks (e.g., AMS, SM&C). 6. Still mixed opinions on the use of the Common Criteria to write unambiguous security documents using an ISO standard language and format. Backburner pending some demonstration of its use. 7. Continue to work with other Areas and their WGs with respect to security. v Joint mtg w/SLS to create space link layer security BOF v Joint mtg DTN-BOF

6. SEA Area MID-TERM REPORT SUMMARY TECHNICAL STATUS 1.Security WG Goal: Working Status: Active _X_ Idle ____ Summary progress: Four documents actively being produced (Security Architecture, Key Management (2), Mission Planners Guide). All docs green. Progress since last meeting: Authentication doc completed. Positive movement on Security Architecture doc, mission planners guide and KM. Link layer sec proposal Problems and Issues: Resources – Excellent right now but need to ensure continued participation from all member agencies status:OKCAUTIONPROBLEM Comment: Working Group is advancing and producing good products. Docs OK. Architecture revisions needed.

7. Near-Term Schedule DeliverableMilestoneDate CCSDS Security Architecture Revise & update per meeting06/09 R 10/09 M Key Management Green Book Revise per meeting comments01/09 03/09 G Key Management Magenta Book Being revised and restructured per internal ESA reviews and WG comments 03/09 03/10 M

8. Near-Term Schedule (cont) Mission Planners Security Guide Work in progress10/08 G1 03/09 G2 10/09 G Common Criteria Protection Profiles Just starting03/09 (white paper) Application Layer Security Just starting03/09 (white paper)

9. Open Issues  None

10. Action Items Item NumberAction Item:Assigned to:Date Due: SecWG1008:1Assign hard dates to outstanding documents & vet with document authors Howard Weiss10/30/08 SecWG1008:2Provide re-write Security Architecture document section 7.5.1 to Gordon Black Howard Weiss11/15/08 SecWG1008:3Update & distribute revised Security Architecture document for WG final review Gordon Black1/30/08 SecWG1008:4Modify architecture diagram for possible inclusion into Security Architecture document Ignacio Aguilar-Sanchez11/30/08 SecWG1008:5Provide existing key management schemes for KM Magenta document to Daniel Fischer ALL12/15/08 SecWG1008:6Set up a WebEx telecon to exclusively review the KM documents – Jan 7 2009 @ 10:00 EST, 16:00 CEST Howard Weiss10/30/08

11. Action Items (2) SecWG1008:7Provide comments/updates to KM green bookALL12/1/08 SecWG1008:8Provide comments/updates to KM magenta bookALL1/1/09 SecWG1008:9Investigate use case scenarios, define/categorize the application layer problem. Identify interoperability scenarios/issues. Investigate use of message systems (AMS). Mike Pajevski03/09 SecWG1008:10How does CFDP plan to meet security req when docs are revised? What missions are now using CFDP and plan to use it? Howard Weiss11/30/08 SecWG1008:11Revise Mission Planners Guide roadmap diagrams. Ensure that 20007 controls are correctly mapped into our document. Craig Biggerstaff01/30/09 SecWG1008:12Write “awareness” statement for algorithms to be integrated into Security Architecture and/or Mission Planners Guide Daniel Fischer11/1/08

12. Action Items (3) SecWG1008:13 Plan for next meeting in Colorado Springs – become familiar with existing standards that might be applicable to our work (e.g., Common Criteria, IATF, etc). ALL03/09 SecWG1008:14 Create a Powerpoint template for briefings by the agencies on their specific security practices Howard Weiss11/15/08

13. Resource Problems  Resources appear to be adequate to perform the current tasks.  Resources are increasing:  ESA has provided additional resources  NASA has provided additional resources  We keep seeing and getting more interest

14. Risk Management Update  Must ensure that the current trend of additional resources remains and that resources don’t shrink.

15. Cross Area WG / BOF Issues  Joint meeting with SLS to create a new dual-area BOF  NASA (JSC, JPL, GSFC) proposal for link layer protocol  Joint meeting with DTN

16. Resolutions to be Sent to CESG and Then to CMC  Resolution from link layer security BOF to charter as WG (from Gilles Moury)

17. New Working Items, New BOFs, etc.  Common Criteria Protection Profiles (backburner)  Joint SLS/SEC Space Link Security BOF -> WG