Satellites play a critical role in many dimensions of modern life, from navigation and weather forecasting to communications and national defense. Our global society could not function effectively without them. Yet even while our dependence grows, proliferating satellite infrastructure faces serious threats from bad actors, particularly those at the nation-state level with the capability to reach into space.Whether traditional jamming for broadcast interference, injecting malicious data to alter a satellite’s performance and reliability, or penetrating terrestrial infrastructure that supports orbiting satellites, it’s important to address accelerating sophisticated threats to prevent a disruptive or potentially disastrous event.Even with these kinds of rigorous defenses, attackers can still succeed, threats can get through and disruption remains a real possibility. Consequently, we need to take a community approach to security.Many national governments now maintain cyber guidance and advisory agencies to engage their citizens on cybersecurity frameworks and best practices. For instance, the U.S. Cybersecurity and Infrastructure Security Agency (CISA), the Canadian Center for Cybersecurity (CCCS), the European Union Agency for Cybersecurity (ENISA), the Asian ASEAN Cyber Capacity Programme (ACCP) and others are working to protect organizations and citizens within their boundaries.Every satellite operator should stay involved in their own country’s initiative and share detailed and timely information about cyber disruptions their organization may experience. That will let others learn from a disruption and better prepare themselves by proactively addressing the vulnerabilities that a specific attack mechanism leveraged. It’s especially important given the increasing number of critical infrastructure environments governments rely on. There’s a duty to protect national well-being that exceeds protecting one’s own company.
Cybersecurity in satellite design
Satellite operators that serve enterprise and defense applications should consider a wide range of protections in their cybersecurity posture. There are requirements to address around both communications security (COMSEC) for protecting data in motion or at rest, and transmission security (TRANSEC) for limiting observation of satellite transmissions.Depending on the end customer and the sensitivity of their mission or business, teams can integrate multiple layers of defense into the satellite system architecture. Those include basic cybersecurity measures such as monitoring and alerting, anti-malware, patch management, confidentiality management, and all of the practices that contribute to good cyber hygiene. Beyond those, there are elevated steps that operators supporting highly sensitive customer requirements should seriously consider for hardening their constellations. For example:- Adopt military-grade network security: U.S. Space Force cybersecurity requirements referred to as IA-Pre (Infrastructure Asset Pre-Approval), and higher-level DoD CMMC 2.0 compliance.
- Integrate advanced encryption: U.S. National Security Agency (NSA)-approved encryption for space vehicle telemetry, tracking and command (TT&C).
- Closely adhere to best-in-class standards: Set cybersecurity policies based on NIST SP 800-171 and SP 800-53.
- Advanced jamming protection: While signal jamming has been a long-standing threat, new technologies such as phased array antennas and adaptive bandwidth, and coding and modulation bolster protection against unintentional or malicious interference.
- Ensure high resiliency: Redundant spacecraft bus functions to sustain long-term operations and avoid degraded performance and failures.
- Incorporate low probability of intercept (LPI) and low probability of detection (LPD) capabilities: Techniques such as terminal location obfuscation, beam hopping with short dwell times, and shifting carrier frequencies limit the risk of user terminal transmissions being intercepted or detected.




