Space Segment Cybersecurity Profile for National Security Systems - Revision A
Abstract
We present a cybersecurity profile approach to defining and performing threat-focused risk assessment for a space system space segment. The described cybersecurity profile approach significantly leverages content openly published on within The Aerospace Corporations (Aerospaces) Space Attack Research and Tactic Analysis (SPARTA) framework to show rationale for tailoring of the Committee on National Security Systems Instruction (CNSSI) No. 1253 space platform overlay. This threat-focused analysis creates unique tailoring of the space platform overlay and helps to provide a notional maximum control baseline from which system security engineering can more efficiently define cybersecurity requirements before a contract is set. We also present a notional minimum control baseline for national security systems that is based on SPARTA notional risk scores. This minimum baseline approach helps space segment acquisitions if they do not have resident expertise for control tailoring. All controls referenced in the baselines have example acquisition requirements on the SPARTA website to aid creating contracts, guiding development, and informing accurate assessments of control implementations.
Document Details
- Document Type
- Technical Report
- Publication Date
- Apr 23, 2024
- Accession Number
- AD1228798
Entities
People
- Brad V. Roeher
- Brandon T. Bailey
- Daniel P. Faigin
- Paul J. De Naray
Organizations
- The Aerospace Corporation