Create an ArticleUser Guide

A Cybersecurity Roadmap For Space

Jun 10, 2021

iCrowdMarketing powered by iCrowdNewswire



Just about every aspect surrounding cyber threats, cybercrime, and cybersecurity has been covered today by the news, blogs, front pages, IT reports, and other technology publications. That is, all of these aspects are rather well established currently in the IT and cybersecurity industries, except maybe for one exception - cybersecurity and space. This is probably the topic that is least talked about, as well as being the most dismissed topic due to it being a little bit ‘out there. Building a cybersecurity roadmap for space is something that is already in the works as we slingshot hardware and software into space little by little. For this reason, as a society, we have to also think about the flip side of space communications which is the safety of this concept. We have as a society been made aware of the threat of cybercrime, especially in the last 10 years or so with everything from the Snowden surveillance scandal to the most recent international cyber threats originating from Russia and China which have toppled American and European organizations and government systems.

Space and cybersecurity, you say? This tandem might make it read like a mistake in the text, however, this is being talked about. Not only that, but the discussion has already been open for years -although a solid framework doesn’t exist yet, as we shall see below. What future cybercrime will look like is a fundamental issue when sending any technology into space. The internet is going to increasingly depend on what is called ‘space-enabled communication and securing these technologies from cybercriminal attacks means securing our space-Earth communications bloodline -extremely important. As new organizations, companies, and government-funded activities start to look at space as a realistic new venture, it is a fact that both space policy and cybersecurity policy are far from prepared to facilitate this endeavor. In fact, we still have so many issues with cyber threats here on earth, having survived the worst attack in digital history last year, organizations and governments are still dealing with the repercussions.

Below we will look at which technologies we have up in space, and why they are vulnerable to cyber threats. Furthermore, we will look at what the industry is saying and planning in order to consolidate cybersecurity in the ‘final frontier.

What is Cyber Security?


Cybersecurity is the digital defense branch. Cybersecurity defines every and all hardware, software, tools, and education related to the protection of all computer systems, storage data, and data transmission that covers everything from the simplest devices to the most complex ones.

What is Cyber Crime?


Cybercrime is the digital version of the crime, which is conducted by cybercriminals. Cybercriminal ‘bad actors’ have a wide arsenal of methods and tools to infiltrate secured systems for the purposes of exfiltrating data, disrupting systems, or blackmailing the victim (s) in some shape or form. Cybercriminals often use phishing scams and ransomware attacks, among several other techniques, with the end goal of ROI or Return on Investment (essentially theft, blackmail, and ransom activities). On the other hand, some cybercriminal groups are specialized at toppling governments and are politically motivated, backed by national intelligence and foreign governments.

Why Do We Need to Secure The Final Frontier?


According to the Council on Foreign Relations (CFR) “In crafting needed legislation for commercial space activities, Congress should bolster industry efforts to strengthen cybersecurity. Private-sector actors should strengthen their adoption of cybersecurity best practices and collaborate with one another on improving the implementation of cybersecurity strategies. Internationally, the United States should pursue collaboration on space cybersecurity through the North Atlantic Treaty Organization (NATO), plurilateral space cooperation mechanisms, and bilateral forums.”. Geospatial World covered content about what they call “The NewSpace Revolution: The emerging commercial space industry and new technologies”. In essence, this confirms some cybersecurity problems right away, because the democratization of the space business means that innovation will happen quickly as this new race begins, which undoubtedly will lead to oversights in software and hardware security. Former Pentagon official and Air Force officer Josh Hartman noted: “most of the space community… has their heads in the sand”. Indeed, businesses and governments are rushing to conquer and benefit from space activity, but policies, governments, and the industry are lagging behind in security strategies for these same activities while cybercriminals are rubbing their hands in anticipation of ‘hacking space’.

At the moment, cybercriminals have expanded and greatly developed sophisticated new attack mechanisms that threaten even the most impenetrable defense walls. The problem is that companies like Elon Musk’s SpaceX, has launched a total of 60 internet-enabled satellites into space recently, are quickly expanding our capabilities into space. Funnily enough, Elon Musk has also launched a Tesla car that is currently orbiting Earth a few years ago. It isn’t only recent events, though. Let’s not forget that satellites have already been out there for decades, as have space assets and dozens of connected GPS systems that constantly communicate with the Earth from orbit. The CFR again states: “Cybersecurity has not been a priority in government and private-sector space endeavors”.

So, where does the trouble lie exactly? Let’s look at the following;

  • Existing and new GPS (Global Positioning System) activities will lead to vulnerabilities that include risks from hostile cyber operations

  • Geopolitical tension will lead to the militarization of space which means heightened cyber espionage, interference, and perhaps an all-out cyberwar in space

  • Government, military, and private satellite systems in space are vulnerable to kinetic and cyber attacks


What do industry experts, space treaties, legislation, and cybersecurity panels recommend to best mitigate space cyber incidents?

  • Expanding cybersecurity hygiene into the commercial space sector

  • Applying intra-sector collaboration, information sharing, risk management

  • Applying encryption, insider threat prevention, and supply chain protection

  • Instituting a cybersecurity framework for space activities e.g. satellite companies

  • According to CFR recommendations, the U.S. should form an agreement with NATO

  • Internationally, ‘spacefaring’ countries need to form bilateral agreements for space

  • NASA and the European Space Agency should form an MOU on cooperation as well


Forming holistic multilateral space cooperation and cybersecurity agreement is difficult and granular because space activities are extremely complex and politicized (the ISS, for example). It is important to build cybersecurity strategies with defense in mind from the ground up when launching connected satellites or systems into space. It is equally as important that awareness of these factors grows, policies are formed accordingly and industry practices consolidate the cooperative element. The Outer Space Treaty (OST) states that all space activities comply with international law to maintain peace and security and to promote cooperation. Whether this will be respected remains to be seen, as the military and geopolitical tension between the three bigs - the U.S, Russia, and China - has no end in sight, no matter if that is on land or even in space.