Taking advantage of the upgrading of the Spacecraft Computer Unit (SCU) towards a more optimized architecture, for Eurostar 3000 (E3000) Satellite platform and supported by ESA ARTES4 R&D funding, EADS Astrium has designed and developed a new security function for the Telecommand (TC) link between the Ground and Space segments.
The aim of the new security function is to provide better confidentiality protection for the TC data and to provide at the same time all the guarantees about the authentication of the source of the data, and their integrity.
This security function is based on the use of the AES algorithm, for the protection of the data and on the use of the GCM mode for the implementation of the upper security layer, more dedicated to the authentication and to the integrity aspects.
Security methods, AES and GCM modes are based on the NIST standards; FIPS 197 and SP800-38D, and are implemented within the dedicated module of E3000 Data Handling Subsystem (DHS), named AES CDU.
The main benefits of this product and its associated services are:
The design and development plan of the AES covers the following activities:
To run these activities, the development plan was a standard development logic separated in several phases (Kick Off, BDR (internal), MTR, QRR, Final review).
The validation of each phases and the passage to the next phase being made through formal reviews, and consolidated through a risk mitigation action plan. Building and successful testing of an Engineering Qualification Model (EQM) was mandatory to demonstrate the compliance to the unit technical requirements, but also for the functional chain validation and notably the compatibility with E3000 Flight Software.