U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

NIST IR 8441 (Initial Public Draft)

Cybersecurity Framework Profile for Hybrid Satellite Networks (HSN)

Date Published: June 6, 2023
Comments Due: July 14, 2023 (public comment period is CLOSED)
Email Questions to: hsn_nccoe@nist.gov

Planning Note (06/28/2023): The comment period has been extended to July 14, 2023.

Author(s)

James McCarthy (NIST), Dan Mamula (MITRE), Joseph Brule (MITRE), Karri Meldorf (MITRE), Rory Jennings (MITRE), John Wiltberger (MITRE), Chris Thorpe (MITRE), John Dombrowski (MITRE), O'Ryan Lattin (MITRE)

Announcement

The HSN Cybersecurity Framework (CSF) Profile, informed by an active community of interested stakeholders, provides a practical tool for organizations engaged in the design, acquisition, and operation of satellite buses or payloads involving HSN. Its primary intent is to help those organizations better understand the attack surface, incorporate security, and achieve greater resilience for space systems that may be leveraged by critical infrastructure owners and operators, the DoD, or other government missions, in a manner that is consistent with the sponsor organization’s risk tolerance.

The HSN Profile will help organizations:

  • Identify systems, assets, data, and risks from the CSF that pertain to HSN.
  • Protect HSN services by utilizing cybersecurity principles and self-assessment.
  • Detect cybersecurity-related disturbances or corruption of HSN services and data.
  • Respond to HSN service or data anomalies in a timely, effective, and resilient manner.
  • Recover the HSN to proper working order at the conclusion of a cybersecurity incident.

As the space sector is transitioning away from traditional vertically integrated entities and towards an aggregation of independently-owned and operated segments, it is becoming more critical for all stakeholders to share a common understanding of the risks and how they can be mitigated. We appreciate your help. If you have expertise in Commercial Space capabilities, please help shape this important Profile.

We encourage you to use this comment template when preparing/providing your comments.  

NOTE: A call for patent claims is included on page ii of this draft. For additional information, see the Information Technology Laboratory (ITL) Patent Policy – Inclusion of Patents in ITL Publications.

Abstract

Keywords

Cybersecurity Framework; Hybrid satellite networks; HSN; payload; shared services; hosted payload; virtual payload command center; PCC
Control Families

None selected

Documentation

Publication:
https://doi.org/10.6028/NIST.IR.8441.ipd
Download URL

Supplemental Material:
Comment template (xlsx)
Project homepage

Document History:
07/12/22: CSWP 27 (Draft)
11/03/22: CSWP 27 (Final)
06/06/23: IR 8441 (Draft)