The space sector is transitioning towards an aggregation of independently owned and operated segments that create a space system, rather than the traditional approach where a single entity acquires, operates, and controls the space, ground, and user segments. To provide guidance to space stakeholders, NIST, in partnership with industry, is developing a Hybrid Satellites Network CSF. Throughout the project, NIST plans to engage with the public and private sectors on multiple occasions. This will include requests for information, participation in workshops, and comment and review of the drafts. This process will be iterative and aims to promote the risk-informed use of HSN.
The purpose of HSN is to provide practical guidance for organizations and stakeholders engaged in the design, acquisition, and operation of satellite ecosystems. The use of HSN profiles will help organizations:
- Identify systems, assets, data, and threats that pertain to HSN
- Protect HSN services by adhering to basic principles of resiliency
- Detect cybersecurity-related disturbances or corruption of HSN services and data
- Respond to HSN service or data anomalies in a timely, effective, and resilient manner
- Recover the HSN to proper working order at the conclusion of a cybersecurity incident
Through this process, organizations can make more informed decisions about cybersecurity activities. It is being considered as a starting point from which organizations can customize—based on business needs and risk assessment—to develop the most appropriate processes to manage cybersecurity risk.
Source: https://www.nccoe.nist.gov/projects/hybrid-satellite-networks-cybersecurity
Project Outline: https://nvlpubs.nist.gov/nistpubs/CSWP/NIST.CSWP.27.pdf