Ntxissacsc5 gold 4 beyond detection and prevension remediation
Ntxissacsc5 yellow 6-abusing protocols for dynamic addressing in space-jacenr_kohler
-
Upload
north-texas-chapter-of-the-issa -
Category
Internet
-
view
38 -
download
0
Transcript of Ntxissacsc5 yellow 6-abusing protocols for dynamic addressing in space-jacenr_kohler
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
[Session Title]
[Presenter]
[Position]
[Institution]
[Date]
About me
•University of North Texas Alum• Class of 2017• Majored in Computer Engineering• Team Leader for Senior Design project for NASA• President of UNT’s Club for Cyber Security• National Cyber League
•Collegiate Cyber Defense Competition
•Goldman Sachs Analyst 2017 NAPA• GS 2016 Summer Analyst (Intern)
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
32017-Nov-11th
Team IRIS
• Jacen R Kohler
•Tyler Alvarez
•Alex Fatum
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
42017-Nov-11th
How did I get a NASA Project?
Texas Space Grant Consortium
• Educational wing for NASA in Texas
• Open to all college students in Texas
• Other stated have equivilant programs
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
52017-Nov-11th
Current Situation
Internet in space uses static IPv4 addresses
Static addressing requires manually assigning addresses
Static addressing is not fault tolerant
duplicates are possible
The constantly varying propagation delays & line interfere with traditional network handshakes
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
62017-Nov-11th
Current Situation
The current Tracking and Data Relay Satellite (TDRS) System are merely repeaters and amplifies and have no routing capabilities
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
72017-Nov-11th
The Problem
The process should be automated
aka… Dynamic Addressing
Just like your phone on a coffee shop’s wifi
A protocol like this already exists
Dynamic Host Configuration Protocol (DHCP)
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
82017-Nov-11th
How to Solve this problem
Simulate a space network, down here on Earth including…
propagation delay
line-of-sight signal blocking
adequate complexity (enough parts to be realistic)
Find a way to implement DHCP in the simulated space network
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
92017-Nov-11th
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
102017-Nov-11th
Adequate Complexity•Simulate a space network on earth• 10x Raspberry Pi 3•Mission Control Center•3x TDRS•TDRS5, TDRS7, &TDRS9
•3x Spacecraft• ISS, Hubble, Orion
•3x EVA Suits
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
112017-Nov-11th
Adequate Complexity
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
122017-Nov-11th
Adequate Complexity• Pull TLE data from CelesTrak• Two Line Element (TLE)
• 3000 TLE data in the file that gets parsed• Search for orbital element we need• Extract the 6 Keplerian Elements from TLE• 6 Keplerian elements are like an address• Allow us to calculate time based locations• Past, present, or future
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
132017-Nov-11th
Simulated Space Network•One way link to TDRS in GeoSynchronous orbit takes •Simulation must emulate these delays to be realistic
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
142017-Nov-11th
Simulated Space Network (cont.)•Delays will be simulated using existing open source tools designed for network testing
• tcconfig
+312.432ms
1494601200
Hold for delay
Epoch time received
Packet Ingress
( distance / speed of light ) + time of insert
+312.437ms
1494601201
+312.443ms
1494601202
+312.449ms
1494601203
+312.452ms
1494601204
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
152017-Nov-11th
Simulated Space Network (cont.)
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
162017-Nov-11th
Simulated Space Network (cont.)
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
172017-Nov-11th
DHCP• Discover
• Spacecraft announces its presence• Offer
• DHCP offers several available addresses
• Request• Spacecraft requests an offered
addresses• Acknowledge
• DHCP assigns requested address•DHCP from Earth takes ~112ms•DHCP from TDRS takes ~56ms
• 50% time savings
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
182017-Nov-11th
DHCP (cont.)• Offer (predicted)
• DHCP offers only one address• Request
• Spacecraft requests the address offered• Acknowledge (pipelined)
• DHCP pre-empts the acknowledgement•Traditional DHCP takes ~112ms•Pipelined DHCP takes ~28ms
• 75% time savings
• Pipeline DHCP from TDRS takes ~12ms• 87.5% time savings
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
202017-Nov-11th
Project Management•Agile methodologies• Iterative Testing
•GitHub•Slack•Additional paperwork•Status Reports• Implementation Plan•Test Plan•Maintenance Plan•User Guide
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
212017-Nov-11th
Project Management (cont.)
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
222017-Nov-11th
Adequate Complexity
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
232017-Nov-11th
Adequate Complexity
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
242017-Nov-11th
0
50
100
150
1494115200 1494201600 1494288000 1494374400 1494460800 1494547200 1494633600 1494720000
DH
CP
Han
dsh
ak
e D
ura
tio
n (
mil
li s
eco
nd
s)
Epoch Time (seconds)
ISS & HST with TDRS5, TDRS7, & TDRS9 from 2017 May 07th to 13th
Traditional DHCP from Earth Pipelined DHCP from TDRS
Prerequisites
TDRSs must have compute power onboard
To act as DHCP Server
To calculate orbital mechanics
We launch a new one every year or so
#NTTXISSACSC5 Abusing Protocols for Dynamic Addressing in Spaces
262017-Nov-11th
NTXISSA Cyber Security Conference – November 10-11, 2017 @NTXISSA #NTXISSACSC5
32
Thank you