Session
Technical Poster Session I
Location
Utah State University, Logan, UT
Abstract
Multi-national commercial space offerings continue to flourish in a domain once singularly dominated by governments. The same governments are now seeking methods to leverage commercial space in a bid to realize cost savings, leverage additional capacity, and augment missions. The outcome is a hybrid environment of commercial, civil, defense industrial base, and other government space vehicles, networks, ground segments, and data. Within this digitally reliant, hybrid-space environment, cybersecurity remains a key focal point of systems-of-systems design and implementation. Owners and stakeholders seek assurance in the command and control of their assets while customers desire a level of trust in the data or service being provided. We present a method to quantitatively evaluate the overall trust of space-based services as related to the core cybersecurity principles of confidentiality, availability, and integrity. This method considers both qualitative and quantitative assessments generated through phases categorized as Compliance Assessment, Performance of day to day cybersecurity operations (cyber-hygiene), and Incident Response. The inputs of these phases are used to generate a quantitative metric that indicates an organization’s ability to securely deliver data and services. This metric is referred to as the Architecture Score Index.
Scoring Trust Across Hybrid-Space: A Quantitative Framework Designed to Calculate Cybersecurity Ratings, Measures, and Metrics to Inform a Trust Score
Utah State University, Logan, UT
Multi-national commercial space offerings continue to flourish in a domain once singularly dominated by governments. The same governments are now seeking methods to leverage commercial space in a bid to realize cost savings, leverage additional capacity, and augment missions. The outcome is a hybrid environment of commercial, civil, defense industrial base, and other government space vehicles, networks, ground segments, and data. Within this digitally reliant, hybrid-space environment, cybersecurity remains a key focal point of systems-of-systems design and implementation. Owners and stakeholders seek assurance in the command and control of their assets while customers desire a level of trust in the data or service being provided. We present a method to quantitatively evaluate the overall trust of space-based services as related to the core cybersecurity principles of confidentiality, availability, and integrity. This method considers both qualitative and quantitative assessments generated through phases categorized as Compliance Assessment, Performance of day to day cybersecurity operations (cyber-hygiene), and Incident Response. The inputs of these phases are used to generate a quantitative metric that indicates an organization’s ability to securely deliver data and services. This metric is referred to as the Architecture Score Index.