A primer on data security - How do we protect our satellites?. Daniel Fischer OPS-GDA / Uni Lux 3 November 2006. Introduction. Weakest Link Principle. The overall security of a system is only as strong as the security of its weakest link.
Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.
A primer on data security- How do we protect our satellites?
OPS-GDA / Uni Lux
3 November 2006
The overall security of a system is only as strong as the security of its weakest link
Example: A strong access control system is useless if the passwords are written on a yellow piece of paper that sticks on the computer
Data Security is more than just encryption and firewalls!
From what do we need to protect an information system and which countermeasures are most urgent?
Risk = P(Threat)*P(Vulnerability)*C(Impact)
What kind of threats are in existence?
System vulnerabilities are the entrance doors for successful attacks
Successful exploitation of one or more vulnerabilities can have a more or less critical impact on a system
There are two cryptographic design principles that form the basis for all crypto primitives
Message = D ( E (Message, Key), Key )
Message = D ( E (Message, EncKey), DecKey )
EncKey != DecKey
Security Policies are guidelines of any kind that have the goal to increase the level of security
System Evaluation protects against vulnerabilities resulting from a poor system design or implementation
User training sessions increase security sensitivity of users
Filtering and Monitoring of network traffic can uncover or prohibit many attacks
Where do we stand?
Where stands ESA/ESOC in terms of data security?
The attack on mcs30 was of extremely simple nature and would not have been possible if a few security regulations were followed
The Data Security Support Project