Ring of Fire Multi-Level Switching Security Solution

Ring of Fire Multi-Level Switching Animation

Advancing on-orbit capabilities

Ring of Fire is designed for satellite buses hosting diverse payloads (e.g., ESPA rings, rideshare platforms, multi-manifest payload hosts, etc.) with different security levels/ categories that need simpler solutions for integration, as well as those who need methods to reduce the SWaP-C associated with carrying multiple independent data-buses to address data segregation. Ring of Fire allows platforms to carry all the necessary data appropriately, securely, and simply on one data bus.

Purpose-built Software/Firmware for a Controlled, Data-Separation Bus

Enables a Means for Designing a Low SWaP-C Data-Separation Solution

Foundation of Policy-Driven Controls

Allows for Layering of Cryptographic Mechanisms with Data-Separation

Coupled with Mechanisms in Ground Systems and Mission Operations

Leverages Concepts of NCDSMO Raise-the-Bar Multi-Level Switch and Network Interface Card

Key Features

Permits data exchanges at various sensitivity levels and classification levels
Reduces lifecycle management challenges over SV and payload integrations, launch, LEOPs, and Mission
Enable Multiple Independent Levels of Security (MILS) with clear evolution paths to Multi-Category Security (MCS) and Multilevel Security (MLS)
Suitable for various orbits such as LEO, MEO, HEO, GEO, Cislunar and beyond
Enables pairwise encryption/decryption with Payload Operation Centers (allowing various combinations across Satellite Operations, Network Operations and Mission Operations)
Control configurations for data sharing per specific, program security-policies
Support for bus-unique interface-technologies, such as SpaceWire, 1553, Ethernet, etc.
Extensibility for Multi-Level Security (MLS) and “Flyaway Networking”

Enterprise Networking

Our solution provides a mechanism supporting an organization wanting to do a joint SV, P1, and P5 experiment. The SNAP Ring Network Module (SRNM) can be configured to deliver the separated traffic locally and the SNAP Ground Network Module (SGNM) will have traffic separated within the Ground Systems Network Access. Payloads on the Ring of Fire share a “Red network” with isolation and separation as multi-level switches and multi-level network interface cards. Mission data on the data bus is labeled and separated by the SRNM. The SRNM is built in a policy-driven scheme to allow for reprogrammability (even on-orbit) and reconfiguration of constraints on data sharing and data transmission in accordance with a program’s requirements.

Coupling with Ground Systems

The SRNM works in concert with the SGNM to allow transmission of mission data between payloads and ground operations. The solution supports data transmission of packets of IPv4 or IPv6 while employing the CIPSO (FIPS- 188), or CALISPSO (RFC 5570), Security Option and IP Authentication Header (RFC 4302). This allows for instantiation of a Trusted Security Engine (TSE) at each end of the mission communications path to verify and control transmissions/relays between the SGNM and SRNM.

Extensibility

The core capabilities of the Ring of Fire provide fundamental routing/switching techniques that can extend outward from the controlled data-bus:

Leveraging the IP-based switching, a Secure Mesh Network (SMN) solution can be coupled with wireless transmissions off the data-bus
MLS can be added though a Red Hat SELinux, or PitBull, network driver for each “virtual” NIC into different Security Levels
Unique ECUs can be implemented to support programs requiring more controls on the encrypted traffic running ‘over the air’ between the satellite and Ground Systems