GB2574584A - Satellite TT&C - Google Patents
Satellite TT&C Download PDFInfo
- Publication number
- GB2574584A GB2574584A GB1809133.0A GB201809133A GB2574584A GB 2574584 A GB2574584 A GB 2574584A GB 201809133 A GB201809133 A GB 201809133A GB 2574584 A GB2574584 A GB 2574584A
- Authority
- GB
- United Kingdom
- Prior art keywords
- satellite
- link
- qkd
- key
- cryptographic key
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Withdrawn
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04B—TRANSMISSION
- H04B10/00—Transmission systems employing electromagnetic waves other than radio-waves, e.g. infrared, visible or ultraviolet light, or employing corpuscular radiation, e.g. quantum communication
- H04B10/11—Arrangements specific to free-space transmission, i.e. transmission through air or vacuum
- H04B10/118—Arrangements specific to free-space transmission, i.e. transmission through air or vacuum specially adapted for satellite communication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04B—TRANSMISSION
- H04B10/00—Transmission systems employing electromagnetic waves other than radio-waves, e.g. infrared, visible or ultraviolet light, or employing corpuscular radiation, e.g. quantum communication
- H04B10/70—Photonic quantum communication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04B—TRANSMISSION
- H04B7/00—Radio transmission systems, i.e. using radiation field
- H04B7/14—Relay systems
- H04B7/15—Active relay systems
- H04B7/185—Space-based or airborne stations; Stations for satellite systems
- H04B7/1853—Satellite systems for providing telephony service to a mobile station, i.e. mobile satellite service
- H04B7/18565—Arrangements for preventing unauthorised access or for providing user protection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0852—Quantum cryptography
Landscapes
- Engineering & Computer Science (AREA)
- Physics & Mathematics (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Electromagnetism (AREA)
- Computer Security & Cryptography (AREA)
- Astronomy & Astrophysics (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Optics & Photonics (AREA)
- Aviation & Aerospace Engineering (AREA)
- Radio Relay Systems (AREA)
Abstract
A cryptographic key is shared between a satellite 4 and a ground-based satellite access station 2 using QKD. The key is used to encrypt commands or/and data sent over a telemetry, tracking and telecommand (TT&C) link 9 between the access station and the satellite. The cryptographic key may be sent over an optical QKD link 8, and the TT&C link 9 may be a classical RF link. The key may be shared using a “prepare and measure” QKD protocol such as BB84 or an entanglement protocol such as E91. The key may be output either by the satellite or the access station. The cryptographic key may be periodically updated and may replace an initial key stored before launch. The cryptographic key may be partially set-up using QKD before launch and subsequently resolved using the QKD link. If the satellite includes a hosted payload a further QKD link may be set up for use by the owner of the hosted payload.
Description
FIELD OF THE INVENTION [0001] The present invention relates to a method and apparatus for satellite TT&C (telemetry, tracking and telecommand).
BACKGROUND OF THE INVENTION [0002] Satellite TT&C may involve one or more of:
• The sending of command signals in an uplink to a satellite from an earth station, in order to control the operation and configuration of the satellite and/or its payload.
• A downlink from the satellite to the earth station carrying mission status and command handling data, for example to confirm both that the command signals have been received and that the commands have been executed.
• An uplink and downlink communication between the satellite and an earth station used in order to establish the range/position of the satellite.
[0003] It is important that TT&C links are protected so that the satellite only responds to authorised commands and its data is only read by authorised parties. Operational satellite TT&C is usually performed via encrypted RF links between the satellite and satellite control centre (SCC), via a satellite access station (SAS). Generally, a series of encryption keys are preloaded on the satellite prior to launch. During operation, a key is selected and synchronised with the SCC to encrypt the TT&C link. The keys are cycled through the set during the lifetime of the satellite.
[0004] In order to serve customers who themselves control and command their own hosted payloads on the satellite, current procedure involves the transfer of a subset of the aforementioned keys to such customers allowing them direct encrypted satellite command generation, opaque to the primary satellite operators.
[0005] US-A-4688250 (General Electric) discloses a satellite telecommand method in which a key change command from an earth station causes a satellite authenticator to generate a new operating key based on a secret master key, a supplemental private code, and a publicly available initialization vector.
[0006] US-A-5293576 (Motorola) discloses a satellite telecommand method in which a satellite and a ground control station have identical one-time random pads that are used to encrypt and decrypt critical commands. The pads are generated by the satellite, encrypted by an asymmetric encryption process and sent to the ground control station.
SUMMARY OF THE INVENTION [0007] According to one aspect of the present invention, there is provided a satellite TT&C method using Quantum Key Distribution (QKD) for the encryption process of the TT&C link. Rather than pre-loading keys on the satellite, which is a security-intense and restrictive technique, keys are generated and exchanged between the SCC and satellite during in-orbit operation via QKD.
[0008] According to another aspect of the invention, there is provided a satellite TT&C system arranged to carry out the method.
BRIEF DESCRIPTION OF THE DRAWINGS [0009] Specific embodiments of the present invention will now be described with reference to the accompanying drawings, in which:
Figure 1 is a schematic diagram of a satellite system according to an embodiment of the present invention; and
Figure 2 is a flowchart of a method of operation of the satellite system according to the embodiment.
DETAILED DESCRIPTION OF EMBODIMENTS [0010] As shown in Figure 1, a satellite system in an embodiment of the invention comprises a satellite control centre (SCC) 1 connected (e.g. via a terrestrial link 5) to a satellite access station (SAS) 2. The SAS 2 interacts via a communication link 6 to the satellite 4, which may provide the telecommunications services to user terminals 3 via user links 7. The communication link 6 may be radio frequency (RF) or optical. The SAS 2 may be connected for communications via a ground telecommunications network (not shown). The satellite 4 may have additional links to either ground or space.
[0011] The SAS 2 also provides a wireless TT&C link 9 to the satellite 4, for providing satellite status and operational commands between the SCC 1 and the satellite 4. The TT&C link 9 may be bidirectional. Commands and other data carried over the TT&C link 9 are encrypted using an encryption key, to prevent unauthorised interception. The TT&C link 9 may use RF or optical frequencies.
[0012] Additionally, a QKD link 8 is provided between the satellite 4 and the SAS 2. The QKD link 8 may be an optical link, which may comprise an optical transmitter on the satellite 4 and a corresponding optical receiver at the SAS 2. The QKD link 8 is used for key exchange using QKD, as described in more detail in the method below, with reference to Figure 2.
[0013] First, an initial key is set up (step SI) for use in encryption of data over the TT&C link 9 prior to establishment of a quantum key exchange over the QKD link 8 (step S2). The initial key may be loaded on the satellite 4 prior to launch, and a corresponding initial key provided to the SCC 1 and/or the SAS 2. The corresponding initial key may be shared by a QKD process, for example via optical fibre or a wireless link, or by another secure process. The initial key is used to initiate the TT&C link 9 once the satellite 4 is launched.
[0014] Under normal satellite operations, the SCC 1 may command the satellite 4 to begin a new QKD process (i.e. key exchange) via the QKD link 8. The satellite 4 may generate a new key that is communicated to the SAS 2 via the QKD link 8 using a QKD process (step S3), for example by means of a 'prepare and measure' (e.g. BB84) or entanglement (e.g. E91) protocol. The new shared key is then used to encrypt data over the TT&C link 9 (step S4).
[0015] In the case of an entanglement protocol, one of the entangled photon pair may be withheld and measured onboard the satellite 4, to establish the key.
[0016] Under normal satellite operations, the key is periodically (e.g. dependent on weather conditions and power resources) or continuously regenerated (step S5) during the lifetime of the satellite 4 in order to ensure high level cryptographic protection for TT&C; the key here may be referred to as an 'evolving' key.
[0017] In a secondary procedure similar to and operating alternately/in parallel with the normal key generation process described above, one or more keys may be generated for storage over an extended period of time, to be employed in the event of interruption to the normal key generation process, for example if the QKD link 8 is not available; the process here may be referred to as failsafe key generation and the key(s) as 'fall back' key(s). This secondary procedure provides for secure and reliable TT&C operations in the event of interruptions to the QKD system.
[0018] The shared key may be communicated to the SCC 1 over the terrestrial link 5, and be used for end-to-end encryption and decryption of commands and data between the SCC 1 and the satellite 4. Alternatively, the commands and data may be received from the SCC 1 by the SAS 2 and encrypted by the SAS 2 using the shared key.
[0019] The shared keys may be generated randomly (e.g. via quantum random generators) or pseudo-randomly, or selected from a predetermined set of keys.
[0020] The satellite 4 may be a geostationary, geosynchronous or non-geosynchronous satellite.
ALTERNATIVE EMBODIMENTS [0021] The QKD link 8 is described above as a unidirectional downlink from the satellite. Additionally or alternatively, an optical uplink (i.e. with the photon source on ground) could be used for the QKD protocol. Furthermore the QKD link 8 could be bidirectional and not distinct from the communication link 6.
[0022] For customers who control and command their hosted payloads on the satellite, the QKD protocol can be applied so that the customer establishes their own keys. This may be done for example via the customer's own QKD link with the satellite from the customer's satellite access station, bypassing the primary operator's SCC 1 and/or SAS 2, or from a separate secure facility within the primary operator's SAS 2. In this way, customers may securely command their hosted payloads on the satellite.
[0023] Alternatively to loading an initial key as described above, whilst the satellite 4 is onground (e.g. during the Assembly, Integration and Testing (AIT) phase of manufacture) the key could be partially established, for example with the QKD protocol measurements made. The key may then be resolved via the post-process communications between the two parties (e.g. satellite 4 & SCC 1) over the QKD link 8. For example, in the case of a QKD entanglement protocol, the post-process communications may involve generating the key by comparing bases between the two parties. This will allow for the initial key to be secured as the measurements of both parties would need to be compromised to establish the initial key in contrast to the case where the key is stored on the satellite pre-launch.
[0024] The QKD link 8 is preferably an optical link but could use electromagnetic radiation of another frequency such as in the RF or microwave range.
[0025] Alternative embodiments of the invention may be envisaged, which may nevertheless fall within the scope of the accompanying claims.
Claims (16)
1. A satellite telemetry, tracking & telecommand (TT&C) method, comprising:
a. establishing a QKD link between a satellite and a satellite access station;
b. sharing a cryptographic key over the QKD link by means of a QKD protocol; and
c. sending and/or receiving TT&C commands and/or data, encrypted using the cryptographic key, to and/or from the satellite.
2. The method of claim 1, wherein the cryptographic key is output from the satellite over the QKD link.
3. The method of claim 1, wherein the cryptographic key is output to the satellite over the QKD link.
4. The method of any preceding claim, wherein the QKD protocol comprises a 'prepare and measure' protocol.
5. The method of any one of claims 1 to 3, wherein the QKD protocol comprises an entanglement protocol.
6. The method of any preceding claim, wherein the cryptographic key is generated randomly or pseudo-randomly.
7. The method of any preceding claim, wherein the step of sharing the key is initiated by a command from the satellite access station.
8. The method of any preceding claim, wherein the QKD link comprises an optical link.
9. The method of any preceding claim, wherein TT&C is performed with the satellite over an RF link.
10. The method of any preceding claim, wherein said cryptographic key is periodically or continuously updated over the QKD link.
11. The method of claim 10, wherein one or more additional cryptographic keys are shared over the QKD link and stored for subsequent use as said cryptographic key in the event that the current key cannot be updated.
12. The method of any preceding claim, wherein an initial key is at least partially set up between the satellite and the satellite access station prior to the establishment of the Q.KD link.
13. The method of claim 12, wherein the initial key is at least partially set up by means of a
5 Q.KD protocol.
14. The method of claim 12 or 13, wherein the initial key is partially set up prior to the establishment of the Q.KD link, and is subsequently resolved over the Q.KD link.
15. The method of any preceding claim, wherein the satellite includes a hosted payload, and a discrete further Q.KD link is set up with the satellite for sharing a further
10 cryptographic key for sending and/or receiving commands and/or data, encrypted using the further cryptographic key, to the hosted payload.
16. A satellite telemetry, tracking and telecommand (TT&C) system, comprising:
a. a satellite; and
b. a satellite access station having an Q.KD link with the satellite;
15 wherein the satellite and the satellite access station are arranged to share a cryptographic key over the Q.KD link by means of a Q.KD protocol; and wherein a terrestrial node is arranged perform TT&C, encrypted using the cryptographic key, with the satellite.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| GB1809133.0A GB2574584A (en) | 2018-06-04 | 2018-06-04 | Satellite TT&C |
| PCT/GB2019/051537 WO2019234406A1 (en) | 2018-06-04 | 2019-06-03 | Satellite tt&c |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| GB1809133.0A GB2574584A (en) | 2018-06-04 | 2018-06-04 | Satellite TT&C |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| GB201809133D0 GB201809133D0 (en) | 2018-07-18 |
| GB2574584A true GB2574584A (en) | 2019-12-18 |
Family
ID=62872778
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| GB1809133.0A Withdrawn GB2574584A (en) | 2018-06-04 | 2018-06-04 | Satellite TT&C |
Country Status (2)
| Country | Link |
|---|---|
| GB (1) | GB2574584A (en) |
| WO (1) | WO2019234406A1 (en) |
Families Citing this family (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111400965B (en) * | 2020-04-10 | 2024-05-28 | 中国人民解放军国防科技大学 | Satellite-ground quantum key distribution simulation system based on STK and MATLAB |
| CN111555866B (en) * | 2020-04-10 | 2023-05-12 | 中国人民解放军国防科技大学 | Free space quantum key distribution parameter optimization method based on machine learning |
| CN111934784A (en) * | 2020-06-22 | 2020-11-13 | 南京南瑞信息通信科技有限公司 | Satellite-ground integrated quantum key distribution system suitable for power system |
| FR3115954B1 (en) * | 2020-10-29 | 2023-12-01 | Thales Sa | METHOD FOR SECURING SATELLITE DATA TRANSMISSION AND ASSOCIATED TRANSMISSION SYSTEM |
| EP4315738A1 (en) * | 2021-03-30 | 2024-02-07 | Speqtral Pte. Ltd. | Secure symmetric key distribution |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US5966224A (en) * | 1997-05-20 | 1999-10-12 | The Regents Of The University Of California | Secure communications with low-orbit spacecraft using quantum cryptography |
| CN107856888A (en) * | 2017-10-11 | 2018-03-30 | 上海微小卫星工程中心 | Star double light path to Barebone |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US4688250A (en) | 1986-01-29 | 1987-08-18 | Rca Corporation | Apparatus and method for effecting a key change via a cryptographically protected link |
| US5293576A (en) | 1991-11-21 | 1994-03-08 | Motorola, Inc. | Command authentication process |
| AU2001282852A1 (en) * | 2000-04-28 | 2001-11-20 | The Regents Of The University Of California | Method and apparatus for free-space quantum key distribution in daylight |
-
2018
- 2018-06-04 GB GB1809133.0A patent/GB2574584A/en not_active Withdrawn
-
2019
- 2019-06-03 WO PCT/GB2019/051537 patent/WO2019234406A1/en active Application Filing
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US5966224A (en) * | 1997-05-20 | 1999-10-12 | The Regents Of The University Of California | Secure communications with low-orbit spacecraft using quantum cryptography |
| CN107856888A (en) * | 2017-10-11 | 2018-03-30 | 上海微小卫星工程中心 | Star double light path to Barebone |
Non-Patent Citations (5)
| Title |
|---|
| Armengol, J M P et al, "Quantum communications at ESA: Towards a space experiment on the ISS", Acta Astronautica, vol 63 (2008) pp165-178. * |
| Hughes, R J et al, "Quantum cryptography for secure satellite communications", IEEE Aerospace Conference Proceedings, pp191-200, 2000 * |
| Juliato et al, "Cryptographic key infrastructure for security services protecting TT&C and payload links of space missions", ESA Technical Report. * |
| M. Toyoshima et al., "Current status of research and development on space laser communications technologies and future plans in NICT," 2015 IEEE International Conference on Space Optical Systems and Applications (ICSOS), New Orleans, LA, 2015, pp. 1-5 * |
| Oi, D K L, "CubeSat quantum communications mission". EPJ Quantum Technol (2017) 4:6; arXiv:1704.08707 [quant-ph], 27 April 2017. * |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2019234406A1 (en) | 2019-12-12 |
| GB201809133D0 (en) | 2018-07-18 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| WO2019234406A1 (en) | Satellite tt&c | |
| US11496451B2 (en) | Systems and methods for encrypted vehicle data service exchanges | |
| US20200396067A1 (en) | Quantum protection of telemetry tracking and command links | |
| WO2023082600A1 (en) | Quantum key-based blockchain network and data secure transmission method | |
| JP2013539324A (en) | Secure multi-party communication with quantum key distribution managed by a communication trust | |
| US20160056957A1 (en) | Autonomous and seamless key distribution mechanism | |
| JP6544519B2 (en) | Mobile control system | |
| CN108270553B (en) | Trusted repeater, and secret key encryption method, device and system of quantum communication network | |
| CA3206803A1 (en) | Key exchange protocol for satellite based quantum network | |
| GB2604665A (en) | Key exchange using a quantum key distribution protocol | |
| US20240097794A1 (en) | Quantum key distribution systems and associated methods | |
| US20240178994A1 (en) | Secure symmetric key distribution | |
| JP7120607B2 (en) | Secret key sharing system and secret key sharing method | |
| JP7486168B2 (en) | System and method for securely sharing encryption keys between two points via flying object | |
| GB2617907A (en) | Method and system for secure distribution of symmetric encryption keys using quantum key distribution (QKD) | |
| Orsucci et al. | Assessment of practical satellite quantum key distribution architectures for current and near-future missions | |
| EP4285543A1 (en) | Key exchange protocol for satellite based quantum network | |
| Hong et al. | Design of Command Security Mechanism for the Satellite Using Message Authentication Code | |
| Tortosa et al. | Opening Satellite Operations to End Users | |
| CN117156433A (en) | Satellite internet key management distribution method, device and deployment architecture | |
| Huckell | User friendly security solutions for the MUSO common air interface (CAI) | |
| Abad et al. | QUANTUM KEY DISTRIBUTION FROM A GEO SATELLITE | |
| SANCHEZ | CRYPTOGRAPHIC KEY INFRASTRUCTURE FOR SECURITY SERVICES PROTECTING TT&C AND PAYLOAD LINKS OF SPACE MISSIONS |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| WAP | Application withdrawn, taken to be withdrawn or refused ** after publication under section 16(1) |