security wg: report of the spring 2010 meeting renaissance hotel portsmouth, va may 7, 2010 howard...
Post on 19-Jan-2016
216 Views
Preview:
TRANSCRIPT
Security WG:Report of the Spring
2010 MeetingRenaissance Hotel
Portsmouth, VAMay 7, 2010Howard Weiss
NASA/JPL/CobhamHoward.weiss@cobham.com
+1-443-430-8089
Meeting Agenda
•4 May 2010 (09:00 – 17:00)–Welcome, opening remarks, logistics, agenda bashing, introduction for new attendees –Review results of Fall 2009 meeting–High-level Document Status (security architecture, algorithms, key management, mission planners, glossary)–Review CWE WG entries: charter, programs, schedules–Meet w/SANA–BNSC becomes the UK Space Agency (Black)–Security Architecture FINAL review (Black)–Algorithm Document review (Weiss)
–Think about testing for Yellow Book–Authenticated Encryption Algorithms (Aguilar-Sanchez)
–Glossary Review (Weiss)
Meeting Agenda (cont)
•5 May 2010 (09:00 – 17:00)–Mission Planner’s Guide (Biggerstaff)–Key Management (Fischer/Sanchez-Aguilar)
»Identity-Based Key Management (Birrane)–Network Layer Security (Pajevski/Weiss)–Link Layer Security (Weiss/all)–Other areas of discussion–New work areas
•6 May 2010 –09:00-17:00: Space Data Link Security WG
•7 May 2010–09:00-12:30: Space Data Link Security WG–13:00-17:00: SEA Wrap-up Plenary
AttendanceName Organization Email Address
Howard Weiss (Chair) NASA/JPL/Cobham howard.weiss@sparta.com
Mark Stables BNSC/Logica mark.stables@logica.com
Daniel Fischer ESA/ESOC daniel.fischer@esa.int
Martin Pilgram DLR martin.pilgram@dlr.de
Lorenzo Chessa ASI lorenzo.chessa@asi.it
Clayton Sigman NASA/GSFC clayton.sigman@nasa.gov
Craig Biggerstaff NASA/JSC/Lockheed craig.biggerstaff-1@nasa.gov
Mike Pajevski NASA/JPL michael.j.pajevski@nasa.gov
Ignacio Aguilar-Sanchez ESA/ESTEC ignacio.Aguilar.Sanchez@esa.int
Fred Stillwagen NASA/LaRC frederic.h.stillwagen@nasa.gov
Marc Blanchet CSA/Viagenie marc.blanchet@viagenie.ca
Executive Summary Attendees from UKSA, ESA/ESTEC, ESA/ESOC, DLR, ASI, CSA, NASA/G
SFC, NASA/JSC, and NASA/JPL. No attendees from CNES. Charter revisions will be discussed via email. Discussed BNSC becoming the UK Space Agency (UKSA). Discussed SecWG contributions/use of SANA (algorithm IDs, glossary) Reviewed the Security Architecture – we will submit as WG final. Reviewed Algorithm Blue Book – not too many comments. Decided to take Security Glossary review to email. Reviewed Mission Planners Guide – minor edits and then final. Reviewed key management. Green Book has editorial edits. Discussed KM Blue Book. Just getting started. Discussed Identity-based keying and Erasure Coding. Discussed network layer security. Two books: Green to “describe” the I
Psec profile for CCSDS and Blue/Magenta to “define” the profile. Telecon to be held in early Sept.
Summary of Goals and Deliverables
1. Update & evolve the charter.
2. Security Architecture submit as final after edits.
3. Algorithm document moving well. Move to Red at next mtg. Need to get started on Yellow Book for testing.
4. Mission Planners Guide – minor edits and then to Secretariat.
5. Key Management green book – minor edits and then to Secretariat.
6. KM Blue Book for symmetric KM just starting. White book in London.
7. Security glossary – aiming for completion by London.
8. Network layer security – White Book (green) by London.
SEA Area MID-TERM REPORTSUMMARY TECHNICAL STATUS
1. Security WG
Goal:
Working Status: Active _X_ Idle ____
Summary progress: Seven documents actively being produced (Glossary, Key Management (2), Mission Planners Guide, Algorithms, Network Layer). All docs green.
Progress since last meeting: Security Architecture doc final edits, mission planners guide and KM Green completed final edits.
Problems and Issues: Resources – Excellent right now but need to ensure continued participation from all member agencies
status: OK CAUTION PROBLEM
Comment: Working Group is advancing and producing good
products.
Docs OK.
Near-Term ScheduleDeliverable Milestone Date
Charter Revision
• Include WG “roadmap” 08/10
Algorithm Blue Book
• Clean up descriptive material into notes, discussion & capture for Green Book
09/10
Key Management Green Book
• Revise with final edits and then submit to Secretariat
06/10
Key Management Blue Book
• Changed from Magenta to Blue Book.
• Create a symmetric KM BB• White Book for next mtg
09/10
Near-Term Schedule (cont)
Mission Planners Security Guide
• Final edits• Submit to Secretariat
Common Criteria Protection Profiles
On hold TBD
Application Layer Security
On hold TBD
Network Layer Security White Book (Green) 09/10
Security WG Overview & Capabilities Presentation
Create WG overview as basis for explaining capabilities to other WG
In process
Open Issues
None
Action ItemsItem Number Action Item: Assigned to: Date Due:
SecWG0510:1 • Revise/edit Security Architecture Mark Stables 05/30/10
SecWG0510:2 • Revise/edit Algorithm document Howard Weiss 09/30/10
SecWG0510:3 • Agencies need to obtain resources for algorithm testing
All 10/15/10
SecWG0510:4 • Investigate ISO 19972 alternatives for other encryption algorithms/modes.
Ignacio Aguilar Sanchez and Howard Weiss
10/30/10
SecWG0510:5 • Resend Security Glossary to WG for review & comments
Howard Weiss 05/15/10
SecWG0510:6 • Obtain a document number for Algorithms document & provide to Craig Biggerstaff for inclusion in Mission Planner’s Guide
Howard Weiss 05/15/10
Action Items (2)SecWG0510:7 • Perform final edits on Mission Planner’s Guide and
submit to Secretariat editor.Craig Biggerstaff 06/30/10
SecWG0510:8 • Write Network Layer Security Profile white book (green)
Mike Pajevski and Howard Weiss
09/30/10
SecWG0510:9 • Email draft charter changes to WG for comments & discussion
Howard Weiss 05/07/10
SecWG0510:10 • Advise Secretariat that PDF documents do not allow comments to be embedded
Martin Pilgram 05/30/10
SecWG0510:11 • Ensure that security glossaries currently in SecWG documents are consistent with one another
Howard Weiss & Tom Gannett
On-going
SecWG0510:12 • Set up telecon for Sept 2010 Howard Weiss 08/15/10
Resource Problems
Resources are adequate to perform the current tasks. However, testing will require additional resources (or redirection
of current resources)
Risk Management Update
Must ensure that the current trend of additional resources remains and that resources don’t shrink.
Cross Area WG / BOF Issues
Joint meeting with Space Data Link Security WG
Resolutions to be Sent to CESG and Then to CMC
None
New Working Items, New BOFs, etc.
Network Layer Green + Blue/Magenta “profiles”
top related