{"title":"卫星软件总线网络体系结构漏洞分析","authors":"Adrian Schalk, Luke Brodnik, Dane Brown","doi":"10.1109/MILCOM55135.2022.10017967","DOIUrl":null,"url":null,"abstract":"With the rapid expansion of the space industry, there has been a strong push to develop simple, reusable, and easy to deploy satellite system architecture solutions. The space industry may have assumed that the complexity of their systems of systems would make the vulnerability discovery process too difficult for attackers. However, focused research into the design of modern Software-Bus (SB) dependent satellite systems has the ability to reveal numerous vulnerabilities in deployed space system architectures. In particular, our in-depth analysis of NASA's open source core Flight System (cFS) resulted not only in the discovery of various novel vulnerabilities, but also the implementation of several straight-forward, practical exploits. Due to the lack of authentication required to execute commands via the SB as well as the inability to recover from an attack in a robust manner, cFS is vulnerable to a number of attacks through the SB entry point. This paper presents four exploit demonstrations on the unsecured cFS bus architecture, and then provides recommendations on how to secure against these attacks and make a modern satellite system architecture more robust.","PeriodicalId":239804,"journal":{"name":"MILCOM 2022 - 2022 IEEE Military Communications Conference (MILCOM)","volume":"22 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-11-28","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Analysis of Vulnerabilities in Satellite Software Bus Network Architecture\",\"authors\":\"Adrian Schalk, Luke Brodnik, Dane Brown\",\"doi\":\"10.1109/MILCOM55135.2022.10017967\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"With the rapid expansion of the space industry, there has been a strong push to develop simple, reusable, and easy to deploy satellite system architecture solutions. The space industry may have assumed that the complexity of their systems of systems would make the vulnerability discovery process too difficult for attackers. However, focused research into the design of modern Software-Bus (SB) dependent satellite systems has the ability to reveal numerous vulnerabilities in deployed space system architectures. In particular, our in-depth analysis of NASA's open source core Flight System (cFS) resulted not only in the discovery of various novel vulnerabilities, but also the implementation of several straight-forward, practical exploits. Due to the lack of authentication required to execute commands via the SB as well as the inability to recover from an attack in a robust manner, cFS is vulnerable to a number of attacks through the SB entry point. This paper presents four exploit demonstrations on the unsecured cFS bus architecture, and then provides recommendations on how to secure against these attacks and make a modern satellite system architecture more robust.\",\"PeriodicalId\":239804,\"journal\":{\"name\":\"MILCOM 2022 - 2022 IEEE Military Communications Conference (MILCOM)\",\"volume\":\"22 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-11-28\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"MILCOM 2022 - 2022 IEEE Military Communications Conference (MILCOM)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/MILCOM55135.2022.10017967\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"MILCOM 2022 - 2022 IEEE Military Communications Conference (MILCOM)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/MILCOM55135.2022.10017967","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Analysis of Vulnerabilities in Satellite Software Bus Network Architecture
With the rapid expansion of the space industry, there has been a strong push to develop simple, reusable, and easy to deploy satellite system architecture solutions. The space industry may have assumed that the complexity of their systems of systems would make the vulnerability discovery process too difficult for attackers. However, focused research into the design of modern Software-Bus (SB) dependent satellite systems has the ability to reveal numerous vulnerabilities in deployed space system architectures. In particular, our in-depth analysis of NASA's open source core Flight System (cFS) resulted not only in the discovery of various novel vulnerabilities, but also the implementation of several straight-forward, practical exploits. Due to the lack of authentication required to execute commands via the SB as well as the inability to recover from an attack in a robust manner, cFS is vulnerable to a number of attacks through the SB entry point. This paper presents four exploit demonstrations on the unsecured cFS bus architecture, and then provides recommendations on how to secure against these attacks and make a modern satellite system architecture more robust.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
