Community Research and Development Information Service - CORDIS

FP7

PROGRESS Report Summary

Project ID: 607679
Funded under: FP7-SECURITY
Country: France

Periodic Report Summary 1 - PROGRESS (Protection and Resilience Of Ground based infRastructures for European Space Systems)

Project Context and Objectives:
Global Navigation Satellite Systems’ (GNSS) Positioning, Navigation and Timing (PNT) products are used in almost all important sectors and this trend will continue.
These products’ performances are characterised by accuracy, availability, continuity and integrity parameters as well as the confidentiality of data in motion and at rest.
PROGRESS focuses on the detection and mitigation of intrusions to GNSS from highly educated attackers whose numbers may increase in the near future. The ultimate goal is to enable expanded intelligence in GNSS architectures so as to ensure uninterrupted performance of services. The potential impact of attacks will be reduced through protective solutions, attacks will be detected and analysed for impact and where necessary affected elements of the GNSS will be reconfigured.

The specific project objectives are:

1) Development or risk assessment methodology and tool to assess threats on generic GNSS ground based infrastructure and assets operating space systems and their secure communication links to satellites and a prioritisation of the threats for which detection, protection and mitigation solutions should be developed

2) Development of detection solutions for: cyber attacks (Denial of Service (DOS) attacks and spoofing); Radio Frequency (RF) interference (jamming and spoofing) detection and localization and physical attacks (explosive, and High Powered Microwave (HPM); These detectors will be integrated in an Integrated Ground Station Security Monitoring System (IGSSMS).

3) Development of threat protection and mitigation solutions for the cyber, RF interference and physical attacks: guidelines and proposed best practices, architecture solutions and specific countermeasures and procedures to be implemented once an attack(s) is identified.

4) Development of a Security Control Centre (SCC) to analyse the impact of detected threats and to propose mitigation procedures, incl. system reconfiguration.

5) Development and integration of a prototype to prove the PROGRESS innovative security concepts, including the IGSSMS and SCC. This aspect includes the development of tools to generate the attack scenario addressed in the project.

6) Testing and evaluation of the prototype Security Management Solution through the PROGRESS prototype testbeds.

7) Further development of strategies to exploit the results of the project in commercial products and services.

Project Results:
The first period started with the definition of a generic GNSS architecture as a basis for the future developments in the project, specifically as input for the work on risk assessment and the definition of detection and protection solutions. In parallel to this work the socio-economic context of the project was detailed. This work provided continual input into the development of the PROGRESS risk assessment methodology which includes risks with low probability but high impact and also the possibility to integrate quantitative data (when available) on social and economic impact.
The risk assessment methodology was applied to the generic architecture focussed particularly on Radio Frequency (RF), cyber and physical attacks to GNSS as already identified in the project’s Description of Work (DoW). This enabled a prioritisation of threats and accompanying scenarios to be defined as input into the design and development of the PROGRESS target solution and the PROGRESS prototype to be actually developed in the project. The high level design was developed in an iterative process considering both the requirements on the detection and protection solutions as well as possible detection and protection methods and solutions which could be applied in the project. In addition, the methods to be able to test and evaluate the solutions were also considered as input into the overall PROGRESS prototype design.
The work packages focussed on developing the detection and protection solutions added further detail to the overall PROGRESS solution requirements and defined the actual detection and protection solutions to be investigated and developed in the project. The work to develop the actual solutions, including test and evaluation tools/infrastructure then also commenced and progressed. In this period, work was also carried out to detail the design and specifications of the Security Control Center (SCC), one further element of PROGRESS, which analyses the impact of attacks and proposes mitigation/reconfiguration measures; and to define the requirements on the attack generation tools to be used to test and evaluate the PROGRESS prototype. This work is on-going at the time of writing, although some elements of the SCC and the attack generation tools are already in development. The work to analyse the social and economic impact of the PROGRESS overall solution also commenced.
A project website further communication material was established and updated and the project’s objectives, approaches and initial results have been presented at a number of communication events, primarily with specialist audiences. Seventeen expected results from the project suitable for commercial exploitation were mapped and initial plans for their use after the project supported by Business Canvas Models (BMCs) developed, together with the main questions/issues to be considered in this connection in the second period. Project management and co-ordination supported all of the above and followed-up the project plan and agreed actions. This included driving forwards the development, review and closure of project deliverables and reporting to the European Commission.

Results achieved so far:

• Establishment of international project team with effective communication system
• European socio-economic context of this project specifically in connection with GNSS described
• Generic GNSS architecture as input to risk assessment and detection and protection solutions defined
• PROGRESS target solution high level design and architecture V1 provided
• PROGRESS prototype detailed design, specifications and interfaces provided
• Risk assessment methodology at system level determined
• Potential threats identified
• Consequences of the threats on ground-station and control centres analysed
• Threats prioritised with definition of threat scenarios
• Societal and economic impact of threats and attacks evaluated
• Requirements for the threat detection system defined
• Detection methods and solutions defined
• Integrated Ground Station Security Monitoring System (IGSSMS) defined
• Architectures of the Interference Detection and Localization System (IDLS), the Cyber Attack Detection System (CADS) and Physical Attacks Detection System (PADS) defined
• Protection requirements defined
• Protection methods and solutions defined
• Project website on-line and continuously updated
• Over 30 dissemination and communication activities, reaching an estimated potential of 100s to 1000s within our target audiences
• Identification of 17 “foreground” results which can be exploited in combination and/or individually and determining of initial plans supported by Business Canvas Models (BMCs) for their use after the project and the questions/issues to be considered in this connection in the second period.
• Quality procedures defined

Potential Impact:
The main results are expected to be:

• Risk assessment methodology
A holistic methodology enabling assessment of threat scenarios on GNSS, including the potential impact on society.

• Security Management Solution (SMS)
Centralized solution which is able to automatically detect attacks, analyse their impact and propose mitigation actions, including reconfiguration to ensure overall GNSS quality of service. The SMS will consist of:
o Integrated Ground Station Security Monitoring System (IGSSMS) with integrated detectors for Cyber-attacks (e.g. Denial of Service (DoS) attacks); RF interference (e.g. jamming and spoofing); and physical attacks (e.g. explosive and high power microwaves).
o Security Control Center (SCC) to analyse the impact of events reported by IGSSMS and to trigger protection and/or mitigation procedures, including recommendations for system reconfiguration.

The main benefits are expected to be:

• GNSS risk assessment methodology which includes risks with low probability but high impact

• Detection, identification, localisation and impact analysis of advanced and emerging RF interference, physical and cyber attacks

• Protective and mitigating solutions, including reconfiguration recommendations for RF interference, physical and cyber attacks

• Advanced security of information and data transmission

• Enabling of increased GNSS architecture intelligence reducing need for future additional redundancy

List of Websites:
http://www.progress-satellite.eu/

Reported by

COMMISSARIAT A L ENERGIE ATOMIQUE ET AUX ENERGIES ALTERNATIVES
France

Subjects

Safety
Follow us on: RSS Facebook Twitter YouTube Managed by the EU Publications Office Top