Security issues in hybrid satellite networks (original) (raw)
Related papers
A Survey Paper on Security Issues in Satellite Communication Network infrastructure
Satellite communication is one of the most popular next generation communication technologies for global communication networks in parallel to terrestrial communication networks. In modern age military intelligence, navigation & positioning, weather forecasting, digital video Broadcasting (DVB), and broadband internet services, are the few demanding applications of Satellite communication. Although Satellite communication is cost effective solution for such long distance communication application, However security over the link is still a major concern in satellite communication. Due to limitations such as high bit error rate, power control, large distance between end nodes, high link delays because of large round trip times, and link availability, common security techniques incorporate a lot of issues in implementation of proper secure communication over the satellite links. In this survey paper, we explore the importance of security, trivial and currently deployed security tools, and the limitations to be considered while deploying such security techniques and protocols for securing satellite communication. Finally we reported some future research space in process to further optimize the security tools and measures for the proper security frame work over the satellite communication infrastructure.
A Security Architecture for a Satellite Network Transport Architecture
This paper presents the security architecture designed for SaNTA (Satellite Networks Transport Architecture). SaNTA is an architecture designed for accelerating TCP connections through satellite links. It uses a split architecture to overcome problems in the TCP congestion control mechanism when using satellite links. However, such split architecture cannot easily interoperate with secure communication protocols, that use a end-to-end paradigm. In this paper we present a security architecture for SaNTA using state-of-the-art security solutions: IPSec and SSL/TLS, as well as packet-filtering firewalls and NAT gateway mechanisms. This security architecture allows SaNTA to deal properly with end-to-end secure communication protocols, though not accelerating them, and to properly protect all traffic managed by SaNTA. †
Performance-aware security of unicast communication in hybrid satellite networks
2009
In this work, we address the performance problems that arise when unicast security protocols IPSEC and SSL are applied for securing the end-to-end communication in hybrid satellite networks. Satellite networks use TCP and HTTP performance-enhancing proxy servers to overcome the adverse effect of the large delay-bandwidth product of the satellite channel. However, the proxy servers cannot function when IPSEC and SSL are used for secure unicast communication in hybrid satellite networks. We therefore propose the use of the Layered IPSEC (LES) protocol as an alternative to IPSEC for networklayer security. We describe a modification to the Internet Key Exchange protocol if dynamic key establishment is needed for Layered IPSEC. For application-level security of web browsing with acceptable end-to-end delay, we propose the Dual-mode SSL protocol (DSSL) to be used instead of SSL. We describe how LES and DSSL protocols achieve the desired end-to-end communication security while allowing the TCP and HTTP proxy servers to function correctly. Through simulation studies, we quantify the improvement in performance that is achieved using our proposed protocols, compared to traditional IPSEC and SSL.
Information-Centric Networking (ICN) has been in the spotlight of recent research efforts. ICN architectures depart from the traditional host-centric (inter-)networking paradigm and leverage the role of information by placing it in the core of all networking functions. A target of ICN is to address the security shortcomings of the legacy host-centric paradigm. In this paper we discuss security requirements of an integrated satelliteterrestrial ICN architecture, we present some security solutions and we assess these solutions in our integrated testbed.
Security of Satellite-Terrestrial Communications: Challenges and Potential Solutions
The integration of satellite and terrestrial networks have become inevitable in the next generations of communications networks due to emerging needs of ubiquitous connectivity of remote locations. New and existing services and critical infrastructures in remote locations in sea, land and space will be seamlessly connected through a diverse set of terrestrial and non-terrestrial communication technologies. However, the integration of terrestrial and non-terrestrial systems will open both systems to unique security challenges that can arise due to the migration of security challenges from one to another. Similarly, security challenges can also arise due to the incompatibility of distinct systems or incoherence of security policies. The resulting security implications, thus, can be highly consequential due to the criticality of the infrastructures such as space stations, autonomous ships, and aeroplanes, for instance. Therefore, in this article we study existing security challenges in...
Security Issues in Space Networks
2011
Abstract—Satellites are being used to capture real-time images, video for various purposes, such as, observing the Earth, weather data, live images for tornado, cyclones, tsunami, etc. In future, these data can be accessed by terrestrial users through the Internet. Mobility protocols aim at providing uninterrupted realtime data communication facilities through seamless Internet connectivity to hosts or networks in motion, such as in bus, train, aircraft, and satellites.
Hybrid networks with a space segment-topology design and security issues
Military …, 2005
In this paper we investigate a hybrid network topology that is suitable for supporting interplanetary communications. We define an architecture comprised of a network of sensor nodes on a remote planetary surface, connected to a hybrid terrestrial network of wired and wireless LANs through a series of satellite relays. All the nodes in the network are IPaddressable and support public and symmetric key cryptography. The resulting network forms a hierarchical hybrid mesh that connects users on Earth to networks on or around a remote planetary surface. We describe the design of the network and present preliminary simulation results illustrating the network performance for various parameters. We also discuss how algorithms for user authentication, message integrity and data confidentiality can be incorporated in the network infrastructure for secure end-to-end communication.
Key Management for Secure Multicast in Hybrid Satellite Networks
Security and Protection in Information Processing Systems, 2004
This paper proposes a design for key management for secure multicast in hybrid satellite networks. Communication satellites offer an efficient way to extend IP multicast services for groups in wide-area networks. In order to be commercially viable, the multicast traffic should be accessible only to paying subscribers. Access control can be achieved by data encryption. This requires secure and efficient methods to generate, distribute and update the keys. Most current key management protocols do not scale well when applied to large dynamic groups in wide-area networks. This paper attempts to solve the above problem for groups in a hybrid network that is composed of terrestrial Ethernet LANs interconnected by ATM-based satellite channels. We investigate current group key management protocols, and design a framework for secure and scalable key management for the multicast routing architecture in the satellite network. The proposed framework is presented in detail, alongwith analysis and simulation results.