Chelsea Wright, Ferris State University
Keywords: Space cybersecurity, security training program, space security policy, government, commercial space endeavors
Abstract:
The Bureau of Labor Statistics states that information security analysts are projected to have a 35% growth rate between 2021-2031. (Fastest growing occupations: Occupational outlook handbook 2022) With the growing use of space for technology in both the government and commercial sectors, there becomes a need for training that is specific to space cybersecurity. The United States government relies on the ability of commercial satellites to be accessed and operate in space which helps with the advancement of security, economic prosperity, increased knowledge, and scientific knowledge for the Nation (Scholl, 2021). This is more prevalent in space, as in accordance with The Outer Space Treaty, space activities are for the benefit of all nations, and any country is free to explore orbit and beyond as well as There is no claim for sovereignty in space; no nation can own space, the Moon or any other body. (International Space Law 2021).
Much of the worlds technology activity is reliant on assets that are space-based and infrastructure, this infrastructure is vulnerable to cyberattacks. If the technological infrastructures in space are insecure this will impede economic development and create increased risks to communications, transportation, financial transactions, energy, agriculture, food, weather monitoring, and defense (Livingstone & Lewis, 2016). A strong training program focused on cybersecurity, space situational awareness, and space domain awareness for future space endeavors is critical.
This study will investigate what current training policies are being utilized for space cybersecurity and frameworks. This research looks to answer if a common global framework for space cybersecurity training can be established from known cybersecurity frameworks to be used in space cybersecurity.
Aerospace outlines five specific cybersecurity principles that the Space policy Directive-5 (SPD-5) defines for space policies. These policies are used as the groundwork for the United States government method, which also includes working with the space industry that is in the commercial sector that will help outline the best practices, develop cybersecurity norms, and advocate for improved cybersecurity behaviors (Bailey, 2020). These policies and standards are compared to the NIST Cybersecurity Framework.
The NIST Cybersecurity Framework is created based on known effective practices using five key Functions; Identity, Protect, Detect, Respond, and Recover (Mahn et al., 2021). Using a solid foundation of well-known cybersecurity practices to help define a basis for a space cybersecurity framework and policy to be used for training is part of what defined this research. This study analyzes current security training practices for space endeavors, both terrestrially and within space. From this research, a new training policy framework for space cybersecurity will be created that can be utilized for training programs to reference.
References
Bailey, B. (2020, October 15). Establishing Space Cybersecurity Policy, standards, and risk management practices: The Aerospace Corporation. Aerospace. Retrieved January 28, 2023, from https://aerospace.org/paper/establishing-space-cybersecurity-policy-standardsand-risk-management-practices
Livingstone, D., & Lewis, P. (2016, September). Space, the Final Frontier for Cybersecurity? Chatham House. Retrieved January 28, 2023, from https://www.chathamhouse.org/sites/default/files/publications/research/2016-09-22-spacefinal-frontier-cybersecurity-livingstone-lewis.pdf
Mahn, A., Marron, J., Quinn, S., & Topper, D. (2021). Getting started with the NIST Cybersecurity Framework: A quick start guide. NIST Special Publication 1271. https://doi.org/https://doi.org/10.6028/nist.sp.1271
Scholl, M. (2021, June 29). Introduction to Cybersecurity for Commercial Satellite Operations (2nd draft). NIST. Retrieved January 28, 2023, from https://csrc.nist.gov/publications/detail/nistir/8270/draft
Space Foundation Editorial Team. (2021, February 10). International Space Law. Space Foundation. Retrieved January 28, 2023, from https://www.spacefoundation.org/space_brief/international-spacelaw/#:~:text=The%20Outer%20Space%20Treaty,- %E2%80%9CTreaty%20on%20Principles&text=There%20is%20no%20claim%20for,be %20used%20for%20peaceful%20purposes.
U.S. Bureau of Labor Statistics. (2022, September 8). Fastest growing occupations: Occupational outlook handbook. U.S. Bureau of Labor Statistics. Retrieved February 27, 2023, from https://www.bls.gov/ooh/fastest-growing.htm
Date of Conference: September 19-22, 2023
Track: Space Domain Awareness