ISO 20215-2015 PDF

Full title and description

ISO 20215:2015 — Space data and information transfer systems — CCSDS cryptographic algorithms. This International Standard adopts and formalizes the CCSDS recommendations for cryptographic algorithms to protect confidentiality, authentication and authenticated confidentiality of space mission information (telemetry, telecommand, science data, voice, video and stored data) across space links and ground data networks.

Abstract

The algorithms contained in ISO 20215:2015 are recommended for use on space missions that require confidentiality, authentication, or authenticated confidentiality. The document recommends a symmetric encryption algorithm and defined modes of operation for use on forward and return space links as well as ground networks; it does not cover key distribution or key-management mechanisms (those are addressed in separate CCSDS/ISO guidance).

General information

• Status: Published (International Standard; confirmed at review stage).
• Publication date: August 2015 (published 11 August 2015 / edition 2015-08).
• Publisher: International Organization for Standardization (ISO).
• ICS / categories: 49.140 — Space systems and operations.
• Edition / version: Edition 1 (2015).
• Number of pages: 19 pages (official ISO publication length).

Metadata above taken from the ISO catalogue entry for ISO 20215:2015.

Scope

ISO 20215:2015 provides recommendations for cryptographic algorithms and modes of operation for CCSDS-based space communications. Its scope covers algorithm selection and operational modes intended to provide confidentiality, integrity/authentication and authenticated encryption services for mission data on the forward (telecommand), return (telemetry, science data) and ground-data-network links, and for protecting stored mission data. The standard adopts the CCSDS recommended-standard material (CCSDS 352.x) and leaves key distribution and key-management procedures to other CCSDS/ISO guidance documents.

Key topics and requirements

• Adoption of CCSDS cryptographic algorithm recommendations for use in space missions (CCSDS 352 series adopted by ISO 20215).
• Recommendation of a single symmetric block cipher family (Advanced Encryption Standard — AES) as the baseline algorithm for CCSDS missions, with specified modes of operation to achieve confidentiality and authenticated confidentiality.
• Specification of algorithm modes of operation (e.g., counter-mode for confidentiality and authenticated-encryption modes where authenticated confidentiality is required) and guidance on key sizes and usage constraints.
• Coverage of authentication/integrity mechanisms (hash-based MACs, cipher-based authentication and guidance on digital-signature usage where applicable).
• Applicability to multiple mission links and data flows (telecommand uplink, telemetry/science downlink, ground segment networks, and stored mission data).
• Normative and informative references to related CCSDS documents (for example CCSDS cryptographic algorithms Blue Book and other CCSDS security documents); conformance and implementation notes are given at a level appropriate to the short ISO adoption.

Typical use and users

Intended users are space agencies, satellite and spacecraft manufacturers, mission system integrators, ground-segment vendors, security architects and engineers working on spacecraft communications and ground data systems. Typical uses include specifying mission crypto capabilities in requirements and designs, selecting algorithms and modes for encryptors/authenticators used in telemetry/telecommand and for protecting archived mission data, and aligning implementations with CCSDS interoperability expectations.

Related standards

Closely related documents and standards include the CCSDS Cryptographic Algorithms recommended standard (CCSDS 352.x series, original Blue Book), CCSDS Space Data Link Security Protocol (CCSDS 355.x) and ISO adoptions or companion ISO documents that address protocol-level security for CCSDS missions (for example ISO 21324 and other ISO/CCSDS cross-references). Implementers should consult the CCSDS Blue Books for full algorithm, parameter and conformance detail.

Keywords

ISO 20215, CCSDS, cryptographic algorithms, space data security, AES, authenticated encryption, telemetry, telecommand, space communications, space mission cybersecurity, ISO/TC 20/SC 13.

FAQ

Q: What is this standard?

A: ISO 20215:2015 is the ISO adoption of the CCSDS recommendations for cryptographic algorithms used in space data and information transfer systems, providing guidance on algorithm choices and modes for confidentiality and authentication on space missions.

Q: What does it cover?

A: It recommends symmetric cryptographic algorithms and modes of operation for mission communications links (forward and return links) and ground networks to support confidentiality, authentication and authenticated confidentiality. It does not define key-distribution or key-management procedures, which are addressed by other CCSDS/ISO documents.

Q: Who typically uses it?

A: Space agencies, spacecraft manufacturers, ground segment vendors, mission system engineers and security architects use this standard when specifying or implementing cryptographic protection for telemetry, telecommand, science data and archived mission data.

Q: Is it current or superseded?

A: ISO 20215:2015 is the published ISO adoption (2015). The ISO catalogue entry shows the published (confirmed) International Standard status. CCSDS itself has a maintained/revised Blue Book line (CCSDS 352.x) and later CCSDS updates (e.g., issue updates in 2019 and onward) that implement newer revisions; implementers should check the latest CCSDS Blue Book versions for updates and compatibility notes.

Q: Is it part of a series?

A: Yes — ISO 20215 is an ISO adoption of the CCSDS cryptographic algorithms material and is part of the broader set of CCSDS/ISO work on space data security (the CCSDS 350–359 family and related CCSDS Blue Books and ISO adoptions). It is intended to be used alongside complementary CCSDS/ISO documents that cover key management, protocol-level security and data link security.

Q: What are the key keywords?

A: CCSDS, AES, cryptographic algorithms, authenticated encryption, confidentiality, telemetry, telecommand, space data security, ISO 20215:2015.