« The space sector is in need of frameworks and methodologies specific to our unique operating environment » said Gregory Falco (Aerospace Security & Space Technology Asst. Prof at Johns Hopkins, Cybersecurity PhD from MIT).

In this article, we will present some recently released cybersecurity frameworks for space domain :

• SPARTA : The Aerospace Corporation’s Space Attack Research and Tactic Analysis
• SPACE-SHIELD : The Space Attacks and Countermeasures Engineering Shield from ESA
• TREKS : The Targeting, Reconnaissance, & Exploitation Kill-Chain for Space Vehicles Cybersecurity Framework
• SpaDoCs : The Space Domain Cybersecurity Framework
• EMB3D : A Cybersecurity Threat Model dedicated for Embedded Devices.

The Aerospace Corporation’s Space Attack Research and Tactic Analysis (SPARTA)

The Aerospace Corporation’s Space Attack Research and Tactic Analysis (SPARTA) framework was already in place. SPARTA is an ATT&CK® like knowledge-base framework but for for Space Missions.

SPARTA matrix is intended to provide unclassified information to space professionals about how spacecraft may be compromised due to adversarial actions across the attack lifecycle.

You can learn more about SPARTA in our article here.

The SPACE-SHIELD (Space Attacks and Countermeasures Engineering Shield) from ESA

There was also the SPACE-SHIELD (Space Attacks and Countermeasures Engineering Shield) from ESA. SPACE-SHIELD is an ATT&CK® like knowledge-base framework for Space Systems.

It is a collection of adversary tactics and techniques, and a security tool applicable in the Space environment to strengthen the security level. The matrix covers the Space Segment and communication links, and it does not address specific types of mission.

You can learn more about SPACE-SHIELD in our article here.

The Targeting, Reconnaissance, & Exploitation Kill-Chain for Space Vehicles (TREKS) Cybersecurity Framework

TREKS (Targeting, Reconnaissance, & Exploitation Kill-Chain for Space Vehicles) is a new Cybersecurity Framework that highlights the unique kill chain for the space vehicle.

It’s a Cybersecurity Framework released by Dr. Jacob Oakley after more than five years spent researching and working on space system cybersecurity.

You can learn more about TREKS in our article here.

SpaDoCs, the Space Domain Cybersecurity Framework

SpaDoCs, or the Space Domain Cybersecurity Framework, is a comprehensive and systematic model designed to address cybersecurity challenges in the space domain. Developed to bridge the gap between space and cyber domains, SpaDoCs aims to enhance collaboration and information sharing across mission, company, international, and government boundaries.

The framework provides a layered approach to understanding and tackling cybersecurity issues in space systems, starting from the enterprise layer and drilling down through mission, system, and DevSecOps layers. At each layer, SpaDoCs highlights specific threats and vulnerabilities, keeping the CIA triad (Confidentiality, Integrity, and Availability) as the foundation and key objectives of cybersecurity.

You can learn more about SpaDoCs in our article here.

EMB3D, the Cybersecurity Threat Model dedicated for Embedded Devices

EMB3D (Embedded Device Threat Model) is a comprehensive framework developed by MITRE Corporation to address cybersecurity challenges specific to embedded devices. Launched in May 2024, EMB3D serves as a central repository of information on cyber threats targeting embedded systems used in various industries, including critical infrastructure, IoT, automotive, healthcare, manufacturing and also space sector.

EMB3D aims to provide a common language and understanding of embedded device threats, facilitating better communication and collaboration among vendors, asset owners/operators, security researchers, and testing organizations. By offering a standardized approach to threat identification and mitigation, EMB3D supports the development of more secure embedded devices from the design phase onwards.

The framework’s dynamic nature ensures its relevance in the face of evolving cyber threats, making it a valuable tool for enhancing the security posture of embedded systems across various critical sectors like space.

You can learn more about EMB3D in our article here.

What about SPARTA vs. ATT&CK MITRE ?

The current cyber-security frameworks – MITRE’s ATT&CK and Microsoft’s Kubernetes – while representing the industry standard for analyzing attacks on terrestrial devices, however, do not sufficiently cover the space segment scenarios.

What about SPARTA vs. SPACE-SHIELD ?

SPACE-SHIELD (Space Attacks and Countermeasures Engineering Shield) is an ATT&CK® like knowledge-base framework for Space Systems. It is a collection of adversary tactics and techniques, and a security tool applicable in the Space environment to strengthen the security level. The matrix covers the Space Segment and communication links, and it does not address specific types of mission. You can learn more about SPACE-SHIELD here.

What about TREKS vs. other frameworks

TREKS is intended to provide a bridge between the existing frameworks available to address, categorize, taxonomize and analyze cybersecurity compromises of traditional terrestrial based network architectures and the future of cybersecurity for space where those frameworks become more applicable as compromises become more frequent, prolific, and acknowledged. This framework can provide a taxonomy that can be used to characterize foundational aspects of cyber threats to SVs in a way that allows for the identification of trends and enables analysis of this niche target set at the intersection of the space and cyber domains.

Conclusion

In conlusion, « We need frameworks, this is sure. But we need also to ensure that we are not diverging or duplicating the efforts. » said Paul Varela, CyberSecurity/Risk Expert and Trainer at EUSPA.

My position is that it’s right but I think these frameworks are complementory.