Satellites, are both crucial and, despite common misbelieve, very fragile parts our civilian and military critical infrastructure. While, many efforts are focused on securing ground and space segments, especially when national security or large businesses interests are affected, the small-sat, newspace revolution democratizes access to, and exploitation of the near earth orbits. This brings new players to the market, typically in the form of small to medium sized companies, offering new or more affordable services. Despite the necessity and inevitability of this process, it also opens potential new venues for targeted attacks against space-related infrastructure. Since sources of satellite ephemerides are very often centralized, they are subject to classical Man-in-the-Middle attacks which open venues for TLE spoofing attack, which may result in unnecessary collision avoidance maneuvers, in best case and orchestrated crashes, in worst case. In this work, we propose a countermeasure to the presented problem that include distributed solution, which will have no central authority responsible for storing and disseminating TLE information. Instead, each of the peers participating to the system, have full access to all of the records stored in the system, and distribute the data in a consensual manner,ensuring information replication at each peer node. This way, single point of failure syndromes of classic systems, which currently exist due to the direct ephemerids distribution mechanism, are removed. Our proposed solution is to build data dissemination systems using permissioned, private ledgers where peers have strong and verifiable identities, which allow also for redundancy in SST data sourcing.
翻译:虽然许多努力侧重于确保地面和空间部分的安全,特别是在国家安全或大型商业利益受到影响的情况下,小型卫星、新空间革命使接近地球轨道的进入和利用民主化,这给市场带来了新的参与者,通常是中小型公司,提供了新的或更廉价的服务。尽管这一进程的必要性和不可避免性,但它也开辟了对空间相关基础设施进行有针对性的袭击的潜在新场所。由于卫星消息源往往集中,它们受到典型的中位人攻击,这些攻击为TLE Spoofing攻击打开了场所,这可能导致不必要的避免碰撞的动作,在最坏的情况下,最好是和精心策划的碰撞。在这项工作中,我们建议对所提出的问题采取对策,包括分发解决办法,而这种解决办法没有中央当局负责储存和传播TRE信息。相反,参与该系统的每个同侪都能够充分利用系统储存的所有电子记录,在该系统的每个端点上储存的机密记录,并且以相互谅解的方式传播数据的方式传播到单一的系统,而这种系统则是相互谅解的系统。