On Space Cyber-Security
Lead Research Organisation:
University of Oxford
Department Name: Computer Science
Abstract
This project focuses on cyber-security concerns for satellite systems. On going experimental research includes the investigation of privacy and security properties for modern satellite broadband connections over the Digital Video Broadcasting for Satellite (DVB-S) protocol, and the integrity and authenticity of space situational awareness data for flight control and orbit determination. The project also considers the strategic and political effects of Cyber-ASAT (Anti-Satellite Weapon) capabilities.
Longer term, the thesis will focus on providing core security principles and best practices to enable the secure operation of critical space missions. These principles will be derived from experimental research and strategic analysis
This project is linked to the EPSRC Cyber Security research theme
Longer term, the thesis will focus on providing core security principles and best practices to enable the secure operation of critical space missions. These principles will be derived from experimental research and strategic analysis
This project is linked to the EPSRC Cyber Security research theme
Planned Impact
It is part of the nature of Cyber Security - and a key reason for the urgency in developing new research approaches - that it now is a concern of every section of society, and so the successful CDT will have a very broad impact indeed. We will ensure impact for:
* The IT industry; vendors of hardware and software, and within this the IT Security industry;
* High value/high assurance sectors such as banking, bio-medical domains, and critical infrastructure, and more generally the CISO community across many industries;
* The mobile systems community, mobile service providers, handset and platform manufacturers, those developing the technologies of the internet of things, and smart cities;
* Defence sector, MoD/DSTL in particular, defence contractors, and the intelligence community;
* The public sector more generally, in its own activities and in increasingly important electronic engagement with the citizen;
* The not-for-profit sector, education, charities, and NGOs - many of whom work in highly contended contexts, but do not always have access to high-grade cyber defensive skills.
Impact in each of these will be achieved in fresh elaborations of threat and risk models; by developing new fundamental design approaches; through new methods of evaluation, incorporating usability criteria, privacy, and other societal concerns; and by developing prototype and proof-of-concept solutions exhibiting these characteristics. These impacts will retain focus through the way that the educational and research programme is structured - so that the academic and theoretical components are directed towards practical and anticipated problems motivated by the sectors listed here.
* The IT industry; vendors of hardware and software, and within this the IT Security industry;
* High value/high assurance sectors such as banking, bio-medical domains, and critical infrastructure, and more generally the CISO community across many industries;
* The mobile systems community, mobile service providers, handset and platform manufacturers, those developing the technologies of the internet of things, and smart cities;
* Defence sector, MoD/DSTL in particular, defence contractors, and the intelligence community;
* The public sector more generally, in its own activities and in increasingly important electronic engagement with the citizen;
* The not-for-profit sector, education, charities, and NGOs - many of whom work in highly contended contexts, but do not always have access to high-grade cyber defensive skills.
Impact in each of these will be achieved in fresh elaborations of threat and risk models; by developing new fundamental design approaches; through new methods of evaluation, incorporating usability criteria, privacy, and other societal concerns; and by developing prototype and proof-of-concept solutions exhibiting these characteristics. These impacts will retain focus through the way that the educational and research programme is structured - so that the academic and theoretical components are directed towards practical and anticipated problems motivated by the sectors listed here.
People |
ORCID iD |
| Ivan Martinovic (Primary Supervisor) | |
| James Pavur (Student) |
Studentship Projects
| Project Reference | Relationship | Related To | Start | End | Student Name |
|---|---|---|---|---|---|
| EP/P00881X/1 | 01/10/2016 | 31/03/2023 | |||
| 1939083 | Studentship | EP/P00881X/1 | 02/10/2017 | 30/09/2021 | James Pavur |
| Description | This research has lead to several publications detailing vulnerabilities in satellite communications and navigational systems and possible mitigations to protect customers of satellite services and their data. |
| Exploitation Route | Others may use this research in designing or considering their risk exposure in using satellite broadband services. |
| Sectors | Aerospace, Defence and Marine,Digital/Communication/Information Technologies (including Software),Security and Diplomacy |
| Description | Research Partnership with Armasuisse |
| Organisation | Federal Office for Defence Procurement Armasuisse |
| Country | Switzerland |
| Sector | Public |
| PI Contribution | Several papers in publication or under-peer review have been conducted in partnership with researchers at Armasuisse's Cyber Defense Campus as co-authors and with support on the deployment and use of their hardware in Switzerland for experimental research purposes. |
| Collaborator Contribution | The primary contributions are in the form of co-authorship, research collaboration and hardware access. Armasuisse has the authority to conduct RF experiments which are otherwise difficult to conduct in the UK. |
| Impact | Two academic papers have resulted from the partnership. A further publication is under peer review. All collaboration has been technical thus far. |
| Start Year | 2018 |