Security WG:Report of the Spring

2010 MeetingRenaissance Hotel

Portsmouth, VAMay 7, 2010

Howard WeissNASA/JPL/Cobham

Howard.weiss@cobham.com+1-443-430-8089

Meeting Agenda

•4 May 2010 (09:00 – 17:00)–Welcome, opening remarks, logistics, agenda bashing, introduction for new attendees –Review results of Fall 2009 meeting–High-level Document Status (security architecture, algorithms, key management, mission planners, glossary)–Review CWE WG entries: charter, programs, schedules–Meet w/SANA–BNSC becomes the UK Space Agency (Black)–Security Architecture FINAL review (Black)–Algorithm Document review (Weiss)

–Think about testing for Yellow Book–Authenticated Encryption Algorithms (Aguilar-Sanchez)

–Glossary Review (Weiss)

Meeting Agenda (cont)

•5 May 2010 (09:00 – 17:00)–Mission Planner’s Guide (Biggerstaff)–Key Management (Fischer/Sanchez-Aguilar)

»Identity-Based Key Management (Birrane)–Network Layer Security (Pajevski/Weiss)–Link Layer Security (Weiss/all)–Other areas of discussion–New work areas

•6 May 2010 –09:00-17:00: Space Data Link Security WG

•7 May 2010–09:00-12:30: Space Data Link Security WG–13:00-17:00: SEA Wrap-up Plenary

AttendanceName Organization Email Address

Howard Weiss (Chair) NASA/JPL/Cobham howard.weiss@sparta.com

Mark Stables BNSC/Logica mark.stables@logica.com

Daniel Fischer ESA/ESOC daniel.fischer@esa.int

Martin Pilgram DLR martin.pilgram@dlr.de

Lorenzo Chessa ASI lorenzo.chessa@asi.it

Clayton Sigman NASA/GSFC clayton.sigman@nasa.gov

Craig Biggerstaff NASA/JSC/Lockheed craig.biggerstaff-1@nasa.gov

Mike Pajevski NASA/JPL michael.j.pajevski@nasa.gov

Ignacio Aguilar-Sanchez ESA/ESTEC ignacio.Aguilar.Sanchez@esa.int

Fred Stillwagen NASA/LaRC frederic.h.stillwagen@nasa.gov

Marc Blanchet CSA/Viagenie marc.blanchet@viagenie.ca

Executive Summary Attendees from UKSA, ESA/ESTEC, ESA/ESOC, DLR, ASI, CSA,

NASA/GSFC, NASA/JSC, and NASA/JPL. No attendees from CNES. Charter revisions will be discussed via email. Discussed BNSC becoming the UK Space Agency (UKSA). Discussed SecWG contributions/use of SANA (algorithm IDs, glossary) Reviewed the Security Architecture – we will submit as WG final. Reviewed Algorithm Blue Book – not too many comments. Decided to take Security Glossary review to email. Reviewed Mission Planners Guide – minor edits and then final. Reviewed key management. Green Book has editorial edits. Discussed KM Blue Book. Just getting started. Discussed Identity-based keying and Erasure Coding. Discussed network layer security. Two books: Green to “describe” the

IPsec profile for CCSDS and Blue/Magenta to “define” the profile. Telecon to be held in early Sept.

Summary of Goals and Deliverables

1. Update & evolve the charter.

2. Security Architecture submit as final after edits.

3. Algorithm document moving well. Move to Red at next mtg. Need to get started on Yellow Book for testing.

4. Mission Planners Guide – minor edits and then to Secretariat.

5. Key Management green book – minor edits and then to Secretariat.

6. KM Blue Book for symmetric KM just starting. White book in London.

7. Security glossary – aiming for completion by London.

8. Network layer security – White Book (green) by London.

SEA Area MID-TERM REPORTSUMMARY TECHNICAL STATUS

1. Security WG

Goal:

Working Status: Active _X_ Idle ____

Summary progress: Five documents actively being produced (Glossary, Key Management (2), Mission Planners Guide, Algorithms, Network Layer). All docs green.

Progress since last meeting: Security Architecture doc final edits, mission planners guide and KM Green completed final edits.

Problems and Issues: Resources – Excellent right now but need to ensure continued participation from all member agencies

status: OK CAUTION PROBLEM

Comment: Working Group is advancing and producing good

products.

Docs OK.

Near-Term ScheduleDeliverable Milestone Date

Charter Revision

• Include WG “roadmap” 08/10

Algorithm Blue Book

• Clean up descriptive material into notes, discussion & capture for Green Book

09/10

Key Management Green Book

• Revise with final edits and then submit to Secretariat

06/10

Key Management Blue Book

• Changed from Magenta to Blue Book.

• Create a symmetric KM BB• White Book for next mtg

09/10

Near-Term Schedule (cont)

Mission Planners Security Guide

• Final edits• Submit to Secretariat

Common Criteria Protection Profiles

On hold TBD

Application Layer Security

On hold TBD

Network Layer Security White Book (Green) 09/10

Security WG Overview & Capabilities Presentation

Create WG overview as basis for explaining capabilities to other WG

In process

Open Issues

None

Action ItemsItem Number Action Item: Assigned to: Date Due:

SecWG0510:1 • Revise/edit Security Architecture Mark Stables 05/30/10

SecWG0510:2 • Revise/edit Algorithm document Howard Weiss 09/30/10

SecWG0510:3 • Agencies need to obtain resources for algorithm testing

All 10/15/10

SecWG0510:4 • Investigate ISO 19972 alternatives for other encryption algorithms/modes.

Ignacio Aguilar Sanchez and Howard Weiss

10/30/10

SecWG0510:5 • Resend Security Glossary to WG for review & comments

Howard Weiss 05/15/10

SecWG0510:6 • Obtain a document number for Algorithms document & provide to Craig Biggerstaff for inclusion in Mission Planner’s Guide

Howard Weiss 05/15/10

Action Items (2)SecWG0510:7 • Perform final edits on Mission Planner’s Guide and

submit to Secretariat editor.Craig Biggerstaff 06/30/10

SecWG0510:8 • Write Network Layer Security Profile white book (green)

Mike Pajevski and Howard Weiss

09/30/10

SecWG0510:9 • Email draft charter changes to WG for comments & discussion

Howard Weiss 05/07/10

SecWG0510:10 • Advise Secretariat that PDF documents do not allow comments to be embedded

Martin Pilgram 05/30/10

SecWG0510:11 • Ensure that security glossaries currently in SecWG documents are consistent with one another

Howard Weiss & Tom Gannett

On-going

SecWG0510:12 • Set up telecon for Sept 2010 Howard Weiss 08/15/10

Resource Problems

Resources are adequate to perform the current tasks. However, testing will require additional resources (or redirection

of current resources)

Risk Management Update

Must ensure that the current trend of additional resources remains and that resources don’t shrink.

Cross Area WG / BOF Issues

Joint meeting with Space Data Link Security WG

Resolutions to be Sent to CESG and Then to CMC

None

New Working Items, New BOFs, etc.

Network Layer Green + Blue/Magenta “profiles”