REG NASA-LLIS-1133-1999 Lessons Learned - Computer Hardware-Software International Space Station Uplink Encryption.pdf

1、Lessons Learned Entry: 1133Lesson Info:a71 Lesson Number: 1133a71 Lesson Date: 1999-02-01a71 Submitting Organization: HQa71 Submitted by: David M. LengyelSubject: Computer Hardware-Software/International Space Station/Uplink Encryption Description of Driving Event: Compromising of the current Data E

2、ncryption Standard (DES)Lesson(s) Learned: The recent compromising of the Data Encryption Standard (DES) suggests that the ISS command uplink may not be sufficiently protected.Recommendation(s): NASA should engage the National Security Agency to conduct a thorough evaluation of the level of protecti

3、on provided by the current system and proceed as rapidly as feasible with its plans for a more secure encryption system for the ISS. Potential vulnerabilities of the ground elements of the system should also be assessed.Evidence of Recurrence Control Effectiveness: NASA concurs with the recommendati

4、on. The ISS Program Office has been working with the NASA HQ Security Office, the NSA and NIST to define an acceptable replacement for DES. The newly selected encryption standard for ISS is Triple-DES, as approved at the Avionics Software Control Panel on March 17, 1999.The target date to begin impl

5、ementation is assembly flight 9A with completion at 13A.Documents Related to Lesson: Provided by IHSNot for ResaleNo reproduction or networking permitted without license from IHS-,-,-N/AMission Directorate(s): a71 Exploration Systemsa71 Space Operationsa71 Aeronautics ResearchAdditional Key Phrase(s

6、): a71 Aerospace Safety Advisory Panela71 Computersa71 Flight Operationsa71 Securitya71 SpacecraftAdditional Info: Approval Info: a71 Approval Date: 2002-02-25a71 Approval Name: Bill Loewya71 Approval Organization: HQa71 Approval Phone Number: 202-358-0528Provided by IHSNot for ResaleNo reproduction or networking permitted without license from IHS-,-,-