Will ivancic nasa glenn research center william d ivancic@nasa gov http roland grc nasa gov ivancic
This presentation is the property of its rightful owner.
Sponsored Links
1 / 25

Will Ivancic NASA Glenn Research Center [email protected] http:// roland.grc.nasa.gov/~ivancic / PowerPoint PPT Presentation


  • 101 Views
  • Uploaded on
  • Presentation posted in: General

Network Centric Operations Research Secure Mobile Networking SWIM Demonstrations and Prototypes Technical Interchange Meeting November 9, 2011. Will Ivancic NASA Glenn Research Center [email protected] http:// roland.grc.nasa.gov/~ivancic /. Goal or Today’s Participation?.

Download Presentation

Will Ivancic NASA Glenn Research Center [email protected] http:// roland.grc.nasa.gov/~ivancic /

An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -

Presentation Transcript


Will ivancic nasa glenn research center william d ivancic@nasa gov http roland grc nasa gov ivancic

Network Centric Operations Research Secure Mobile NetworkingSWIM Demonstrations and Prototypes Technical Interchange Meeting November 9, 2011

Will Ivancic

NASA Glenn Research Center [email protected]

http://roland.grc.nasa.gov/~ivancic/


Goal or today s participation

Goal or Today’s Participation?

  • Gain a better understanding of the current state of SWIM and the future plans, directions and needs.

  • Determine what expertise and technologies the Networks and Architectures Branch of NASA Glenn Research Center might be applicable to future demonstrations and prototyping.

  • Provide some insight into what NASA GRC has done and is currently doing in regarding Aeronautics and Space-based Network Centric Operations.

  • Provide some insight into NASA GRC’s capabilities and facilities – particularly regarding:

    • The Airport Surface Wireless Communications, Navigation and Surveillance (CNS) Test Bed at Cleveland Hopkins

    • Aircraft Access to SWIM (AAtS)


Secure mobile networking in an operational setting

Secure Mobile Networking in an Operational Setting

US Coast Guard Cutter Neah Bay – Cleveland, Ohio


Use and deployments

Use and Deployments

  • 1st Demonstrated August 23 & November 6, 2002

  • Used in operational setting July – Sept 2003

    • New York and Boston Harbor

      • NY had no land line

      • Boston land line was poor – switched to satellite

  • Used Oct – Nov 2003 at shipyard during maintenance

    • 802.11b at 11 Mbps


Will ivancic nasa glenn research center william d ivancic nasa gov http roland grc nasa gov ivancic

PROXY

USCG

INTRANET

10.x.x.x

Encrypted Network

Data Transfers

Dock

Encryption

Mobile

LAN

10.x.x.x

EAST

WEST

INTERNET

FIREWALL

FA - Detroit

Encryption

EAST

WEST

HA

Dock

FA

Cleveland

802.11b link

Public Address

USCG Officer’s Club


Will ivancic nasa glenn research center william d ivancic nasa gov http roland grc nasa gov ivancic

NASA NREN

IPv6

Intranet

Monitoring

Points

Globalstar

IPv4 Mobile LAN

IPv6 Mobile

Networking

Demonstration

Nov 2004 to

CIO of DOD

IPv6

Mobile

Router

Z

T-Mobile

4-to-6 Tunnel

6-to-4 (DOOR)

6-to-4 (DOOR)

IPv6 Mobile LAN

Remote

Controlled

Webcam

IPv6

Network

IPv4

Public

Internet

Corresponding

Public Node

6-to-4

Tunnel

CNS

IPv6

Intranet

Z

GRC Open Network (DMZ)

6-to-4

Tunnel

IPv6 Web

Server

Glenn Research

Center

IPv6 Web

Server

IPv6 Web

Server

Eurocontrol

IPv6

Intranet

IPv6

Home

Agent

6-to-4

(DOG)


Will ivancic nasa glenn research center william d ivancic nasa gov http roland grc nasa gov ivancic

Aeronautics-Based

Network Centric Operations Research


Uas integration in the nas

UAS Integration in the NAS

  • Communications Sub-Project

  • Project Engineer: Jim Griner

  • Deputy Sub Project Manager for GRC: Bob Kerczewski

  • Goal: Partner with industry to develop and test a prototype commercial UAS command and control communication system consistent with RTCA SC-203 defined vision and architectural concepts. Provide data and recommendations regarding future policy and guidance

Milestones:

FY11 Provide Spectrum Inputs to WP5B of WRC

FY12 C2 frequency band propagation in a relevant environment complete

FY13 Development of C2 system prototype equipment complete

FY14 Validation of security mitigations in relevant environment complete

FY15 Performance testing of C2 System in relevant environment complete

FY16 C2 system performance testing in mixed traffic environment (Flight Test 4)

FY16 Large scale simulations of candidate C2 technologies and their impact on air traffic capacity complete

  • Security, Security, Security

  • Security is the key to everything

  • But its hard

    • ITAR make is very difficult to address internationally

  • Need one system for both the National and Global Airspace Systems


Nasa fams air to ground communications systems partnership

NASA-FAMS Air-to-Ground Communications Systems Partnership

  • Objectives

  • Develop a communications capability satisfying the operational needs of the Federal Air Marshal Service involving aircraft platforms

  • Capability: Fully realized, deployable and useable end-to-end solution

  • Aircraft Platforms: Communications within an aircraft and between other air and ground contacts

FAMS Air-to-Ground

Communication System Emulator

  • Approach

  • Develop AGCS technology Roadmap identifying services, technology maturity, and gaps

  • Work with specific commercial systems/vendors to ensure FAMS comm requirements are integrated

  • Develop comm prototypes, perform lab evaluations to assess and validate performance

  • Develop a public/private partnership plan for implementing the FAMS air/ground communication system

Key Milestones

4/1/08 Deliver AGCS technology Roadmap

11/1/08 Complete Flight tests of InmarsatSatcom system

3/1/09 Complete installation of emulated air/ground communication system on FAMS trainer aircraft

6/1/09 Complete FAMS Public/Private Partnership Plan

3/1/10 Complete FAMS Communication Device EMI testing at FAA Technical Center

3/1/10 Deliver 26 Air-to-Ground Comm System Emulators

12/31/11Complete FAMS Device-to-Device prototype and perform EMI testing at FAA Tech Center

Partners

DHS Science & Technology, DHS Federal Air Marshal Service (FAMS)


Icao endorsed future communications study technology recommendations what has become aeromacs

ICAO Endorsed Future CommunicationsStudy Technology Recommendations(what has become AeroMACS)

Future Communications Study, ICAO Aeronautical Communications Panel, Recommendation #1:Develop a new system based on the IEEE 802.16e standard operating in the C-band and supporting the airport surface environment.

Europe

Today’s Focus

Common Shortlist

United States

Continental

Continental

B-AMC

B-AMC

P34/TIA-902

P34/TIA-902

Custom Satellite

LDL

LDL

AMACS

AMACS

Oceanic / Remote

Oceanic / Remote

Inmarsat SBB

Inmarsat SBB

Custom Satellite

Custom Satellite

Airport

Airport

IEEE 802.16e

IEEE 802.16e


Aeronautical mobile airport communications system aeromacs

Aeronautical Mobile Airport Communications System (AeroMACS)

  • Objectives

  • Participate in the development of a Wireless Airport Communications System for use in the National Airspace System

  • Support technology profile development and standardization in national and international forums

  • Develop, test and validate wireless communications technology utilizing NASA GRC Communications Navigation and Surveillance (CNS) test bed

  • Approach

  • Utilize GRC CNS test bed to validate wireless system performance for fixed and mobility nodes

  • Conduct technology interference analysis utilizing propagation tools

  • Test system performance with operational applications in GRC CNS test bed

  • Utilize collected test data to support technology standardization activities

    • RTCA Special Committee (SC-223)

      • AeroMACS profile development

      • Minimum Operational Performance Standards

      • Action Plan 30 Future Communications Infrastructure

        • Joint Eurocontrol - FAA/NASA recommendations to NextGen Program, SESAR, ICAO on WIMAX

  • Potential Mobile Applications

    • ATC Communications with any aircraft anywhere

    • Airport operations

    • Investigate network capabilities for AeroMACS to support AOC applications and Aircraft Access to SWIM (AAtS)

    • Potential Fixed Applications

    • Sensor data collection/dissemination for situational awareness

    • Network enabled Weather Data


Nasa cleveland test bed aeromacs network layout

NASA-Cleveland Test Bed AeroMACS Network Layout

GRC B500

SS

NASA Glenn

Research Center

GRC B4 BS &

Backhaul

AZ =55° °

Private

Hangar SS

Subscriber

Stations

AZ= 200°

GRC B110

Core Server

& Backhaul

AZ = 45°

AZ = 295°

ARFF BS &

Backhaul

Backhaul

Consolidated

Maintenance

Facility SS

Terminal C

SS

Snow

Barn SS

AZ = 185°

Approach

Lighting SS

Glycol

Tanks SS

Cleveland-Hopkins International Airport

Base

Stations

Core

Server


Will ivancic nasa glenn research center william d ivancic nasa gov http roland grc nasa gov ivancic

AeroMACS Development – GRC

  • First (and still only) in the World AeroMACS Operational Prototype Testbed

  • First Networked Wireless Airport Surface Communications System interconnecting ASDE-X (Surface Multilateration) ground stations

  • First Networked Wireless Inter-Airport Communications System interconnecting three NE Ohio airports

  • First WiMAX-based multi-node network operating in new 5091-5150 MHZ spectrum allocationFirst AeroMACS mobile network demonstrations

  • First radar site integration demonstration using AeroMACS(current activity)

  • AeroMACS-aircraft connectivity demonstration (planned)

  • AeroMACSElectronic Flight Bag upload (planned)

  • AeroMACSFMS upload demonstration (planned)

  • AeroMACS-SWIM integration test and demonstration (planned)

  • AeroMACSWx sensor integration (planned)


How do you select and implement the routing path

  • Low Rate VHF

  • Reliable

  • Low Latency

Destination Network

(for Entertainment)

How Do You Select and Implement the Routing Path?

  • High Speed SatCom Network

  • Globally Available

  • Affected by Weather

  • Higher Bandwidth

  • High Latency

  • High Cost

  • Low Speed SatCom Network

  • Globally Available

  • Low Bandwidth

  • High Latency

  • Very High Cost

  • Redundant

Entertainment

Mobile Network

Command and

Control

Operations

  • High Speed Terrestrial

  • Not Available when Mobile

  • High Bandwidth

  • Low latency

  • Lower Cost

  • High Speed LOS Network

  • Globally Available

  • High Bandwidth

  • Low Latency

  • Lower Security

  • Moderate Cost

Internet

Destination Network

(for Operations)

Destination Network

(for Command & Control)

How do you decide which path the data should take?

How do you cause the network(s) to route the data via this path?


Aviation specific issues

Aviation Specific Issues

  • Safety of Life / Safety of Flight

    • Time-Critical command and control for Air Traffic Control

      • Fast convergence time is essential!

  • New radio link technologies are “uncertified” for Air Traffic Control / Air Operations Communications (ATC/AOC)

  • Regulatory requirements force network design

  • Three independent network domains

    • (required for regulatory, QoS, & security)

    • Passenger & In-Flight-Entertainment

    • Airline Operations

    • Air Traffic Control

  • Service providers may be authorized to carry one, two, or all services.

  • ATC will be a “closed network”

  • Multiple security and authentication architectures

Internet Engineering Task Force (IETF)

RFC5522: “Network Mobility Route Optimization Requirements for

Operational Use in Aeronautics and Space Exploration Mobile Networks”


Network partitioning by service architecture example

Network Partitioning by ServiceArchitecture Example

NSPs/Airlines/Framers/Suppliers/etc

  • QoS & Security Service Levels for:

  • Network Control

  • Voice over IP

  • High Priority

  • Special Projects

  • General Purpose

Security Perimeter

Security Mgt

PIES

Networks are logically partitioned.

Many logical networks share a common physical infrastructure.

QoS can be managed by both network & flow

Net-Mgt

& Routing

VOIP

Network Infra.

AOC

ATC

PIES

Data Center

Source: Terry L Davis, Boeing


Will ivancic nasa glenn research center william d ivancic nasa gov http roland grc nasa gov ivancic

Operations LAN (Avionics)

Passenger Services

Air Traffic Management LAN

SATCOM AERO-1

Multiplexing at the Router

Communication and Display

SATCOM AERO-HH

Mobile Network 1

VHF Voice/DATA

Mobile Router

HF Voice/DATA

Mobile Network 2

NEM0-1 NEMO-2 NEMO-3

INMARSAT Swift 64

High-Rate Satellite

Sensor Controller (Optional Display)

WiFi Max

Mobile Network 3

GateLink

Cellular

Future Links


Policy based routing critical link active

Policy-Based Routing, Critical Link Active

P-DATA

Mobile Router

High speed link

P-DATA

AOC

Home Agent

int1

Low latency link

ATC

AOC

ATC

int2

P-DATA

Reliable link

int3

ATC

ATC

Routing Policy

Routing Policy


Policy based routing passengers link active

Policy-Based Routing, Passengers Link Active

P-DATA

High speed link

P-DATA

Mobile Router

P-DATA

P-DATA

AOC

ATC

AOC

Home Agent

int1

P-DATA

Low latency link

ATC

AOC

int2

P-DATA

Reliable link

int3

ATC

Routing Policy

Routing Policy


Will ivancic nasa glenn research center william d ivancic nasa gov http roland grc nasa gov ivancic

Space-Based

Network Centric Operations Research


Grc network architectures branch

GRC Network & Architectures Branch

Our Facilities are Global and Beyond!

  • 1st to demonstrate and deploy secure mobile networking in an operational government network, the US Coast Guard

    • (Used SeaTel / Globalstar 8 muxed phone antenna system)

  • 1st and only group to deploy Mobile-IP Mobile networking on a space-based asset, the Cisco router in Low Earth Orbit (CLEO)

  • 1st to deploy Internet Protocol security (IPsec) and Internet Protocol version 6 (Ipv6) on a space-base asset.

  • 1st to deploy delay/disruption network technology bundling protocol in space.

  • 1st and only group to demonstrate space-based large file transfers over multiple ground stations using Delay Tolerant Networking (DTN) bundling. Experiments exercised proactive and reactive bundle fragmentation and International interoperability using standard Internet protocols.


Secure autonomous integrated controller for distributed sensor webs

VMOC negotiates for Space Assets

Network Control Center Configures Spacecraft via VMOC

VMOC negotiates for ground station services

Stored data transferred to ground (Large file transfer over multiple ground stations)

Space Sensor acquires data (e.g. image)

7

6

3

5

2

2

4

Stored data transferred to ground

4

Network Control Center Configures Ground Assets

3

VMOC negotiates for ground station services

4

1

Seismic Sensor alerts VMOC

Network Control Center Configures Ground Assets

Sensor

4

Secure Autonomous Integrated Controller for Distributed Sensor Webs

VMOC

NOC

NOC

NOC


Will ivancic nasa glenn research center william d ivancic nasa gov http roland grc nasa gov ivancic

Network Configuration

UK-DMC/CLEO

US Army Space & Missile Defense Battle Lab

Colorado Springs

Experiments

Workstation

Satellite

Scheduler

& Controller

National Institute for Information and Communication Technology (NICT)

Koganei, Japan

Multi-User Ground Station (MUGS)

Colorado Springs, CO

SSTL

Guildford England

Segovia NOC

Open Internet

VMOC-1

(GRC)

Universal Space Networks

Ground Network

Alaska, Hawaii and Australia

Home

Agent

(GRC)

Database

VMOC


Cisco router in low earth orbit grc sstl cleo ipv6 ipv4 tunnels

Cisco Router in Low Earth Orbit(GRC/SSTL/CLEO IPv6/IPv4 Tunnels)

8.1Mbps from satellite

9600bps to satellite

frame relay DLCI 17 – unencrypted ‘clear’ link

IPv6 in 6-over-4 tunnel in Mobile IPv4 tunnel to Home Agent

Mobile IPv4

native IPv4

6-over-4 tunnel for non-mobile IP traffic

native IPv6 between routers

PIX

firewall

2621

router

PIX

firewall

Secure VPN tunnel

secured IPv6 in 6-over-4 tunnel over IPv4 IPsec

Internet

Cisco MAR

3251 on

UK-DMC

IPv6 in 6-over-4 tunnel in Mobile IP as above, if IPsec link is preferred and used instead

IPv4

IPv4

IPv4 IPsec encryption between routers

SSTL ground station LAN,

carrying IPv4 and IPv6 over Ethernet

NASA

Glenn

Home

Agent

frame relay DLCI 18 – encrypted link

IPv6

IPv4 IPsec

Mobile IPv4 tunnel

Private 192.x addressing

Private 192.x addressing

Public addressing


International multi organizational network centric operations proposed security research

International Multi-organizational Network Centric Operations “Proposed” Security Research

  • Intrusion Detection

  • Penetration Testing

  • Ground Rules

    • What Information will be shared regarding security implementations?

    • What degree of probing will be allowed?

    • What information will be shared regarding probing techniques?

    • What information will be shared regarding vulnerabilities found?

  • Leave Markers?

    • How and to whom will this information be reported?


  • Login