Resource Center

Space ISAC BLOG

Advancing Cybersecurity in Space at OASIS

Publish Date: Wednesday, 02 October
Authors: Erin Miller, Hector Falcon, and Joel Francis

As space operations become increasingly complex, the need for effective threat intelligence sharing is more crucial than ever. The increase in data transmission across space networks brings both opportunities and heightened risks, as cyber threats increasingly target critical space infrastructure. Protecting these assets demands a coordinated and proactive approach to threat intelligence sharing. To address this, the OASIS global standards body is working with Space ISAC to form the Space Automated Threat Intelligence Sharing (SATIS) Technical Committee (TC). The group will formally launch on Oct 9, but initial members include NSA, Northrup Grumman, Cyware, MITRE, Peraton, and Carnegie Mellon University. SATIS will build on existing frameworks like Structured Threat Information Expression (STIX) and Trusted Automated eXchange of Intelligence Information (TAXII) to help secure space operations against evolving threats…

Read more

Space ISAC White Papers

Developing a Sustainable Space Domain

Abstract: The Space Information Sharing and Analysis Center (Space ISAC) advocates for the responsible use of space and associated space-related activi­ties. In alignment with the United States Space Priorities Framework, December 2021, the Space ISAC will focus on and advocate in the near-term for work-force development and the continued emphasis on science, technology, engineering, and mathematics (STEM) education to support space activities; the enhanced use of space in support of climate change; and the establishment of norms, which should include a discussion leading to the end of destructive anti-satellite (ASAT) testing in outer space. The Space ISAC also supports respon­sible behavior in space for all actors, and as such, developed three key pillars around developing norms and behavior for collective security, adopt­ing space evolutions, and ensuring access to universal public-private sharing of threats. At such a key inflection point where space infrastructure is nearly indivisible from a functioning society, it is imperative to ensure the preservation of the space domain.
Download

Machine Learning Security Operations – MLSecOps

Abstract: The growing space industry relies increasingly on AI solutions, valued at around $2 billion, for operational security and strategic advantages. However, the unique space environment poses cybersecurity challenges, leading to vulnerabilities in AI-enabled technologies. To address this, the Space ISAC AI/ML Community of Interest proposes Machine Learning Security Operations (MLSecOps) as a framework for securing and maintaining trustworthy AI technologies in space. MLSecOps draws inspiration from DevSecOps and MLOps methodologies, integrating security and data-centric practices into AI development and deployment. By implementing MLSecOps, the space community can ensure the resilience and performance of AI systems while countering evolving cyber threats, enhancing space superiority. Further research and collaborative efforts will promote the adoption of MLSecOps, establishing best practices for AI/ML in space operations.
Download

Information Sharing Working Group Current and Future Capabilities FAQ

Download

CMMC Resources

CMMC Webinar Series

Watch the Webinar Series on YouTube

Kratos Defense CMMC Supply Chain Briefing

Download Slide Deck

OUSD(A&S) CMMC website

Visit Website

Defense Federal Acquisition Regulation Statement: Assessing Contractor Cybersecurity Requirements (DFARS Cases 2019-D041)

Read More

DIB SCC CyberAssist

Read More

CMMC Model and Assessment Guides

Read More

We'd like your feedback! Please submit any questions, comments or requests on our CMMC resuorces here.

Sparta: Space Attack Research and Threat Analysis

Cybersecurity matrices have become an industry standard approach for providing a knowledge base of adversary behaviors and serve as a taxonomy for adversarial actions across the attack lifecycle. The Aerospace Corporation created the Space Attack Research and Tactic Analysis (SPARTA) matrix to address the information and communication barriers that hinder the identification and sharing of space-cyber Tactic, Techniques, and Procedures (TTP). SPARTA is intended to provide unclassified information to space professionals about how spacecraft may be compromised via cyber means. The matrix defines and categorizes commonly identified activities that contribute to spacecraft compromises.
Download

The Aerospace Corporation Papers

Cybersecurity Protections for Spacecraft: A Threat Based Approach by Brandon Bailey

Leveraging Digital Engineering for Space Guardians and Space Explorers by Angie Bukley & Ronald Birk

Assuring Operations of Autonomous Systems by Ronald Birk

Building Normentum: A Framework for Space Norm Development by Robin Dickey

Assessing Commercial Solutions for Government Space Missions by Ronald Birk

Defending Spacecraft in the Cyber Domain by Brandon Bailey, Ryan Speelman, Prashant Doshi, Nicholas Cohen, & Wayne Wheeler

CISA Resources

CISA Cyber Event Information Sharing Fact Sheet

CISA GitHub

CISA Emergency Directive 21-02

CISA Ransomware Campaign Toolkit

CISA Ransomware Resources

CISA Supply Chain Risk Management

Additional Resources

Secure World Foundation: Handbook for New Actors in Space

FDD | Cyber Hygiene 101 for Small- and Medium-Sized Businesses

Center for Internet Security Benchmarks

SOLARWINDS AND AD-M365 COMPROMISE RISK DECISIONS FOR LEADERS

https://us-cert.cisa.gov/remediating-apt-compromised-networks

Table for Detecting APT Activity Related to SolarWinds

Mission: Secure Space Newsletter

Newsletter – December 2023

Newsletter – December 2022

Newsletter – September 2022

Newsletter – May 2022

Newsletter – April 2022

Newsletter – March 2022

Newsletter – January 2022

Newsletter – December 2021

Newsletter – November 2021

Newsletter – October 2021

Newsletter – September 2021

Newsletter – August 2021

Newsletter Signup
Newsletter Archive

Space ISAC Newsletter

CMMC Resource Feedback

We’d like to hear your thoughts, questions, and feedback on our CMMC resources so we can continue to update and improve our resource library for the community!

Space, man.

It's gonna be huge.

Space ISAC Logo
Partner with Us

Please provide your information below, and a Space ISAC team member will contact you shortly.

We'd Like to Hear from You

We’d like to hear your thoughts, questions, and feedback. A team member will reach out to you in response, as appropriate.

Space ISAC

Membership Inquiry