Agenda

Welcome to CyberSat 2024, our 8th annual event dedicated to advancing space cybersecurity. This year, we’re delivering our most technical content yet with dual tracks on Space Infrastructure and Space Data & Technology. Join us for three days of CSIO-level discussions, visionary keynotes delivered by leading military, intelligence, and government officials, and cutting-edge tech, in both Classified and Unclassified settings.

This year’s Classified Program (expanded to 1.5 days) offers government and industry a secure forum for important space cybersecurity discussions. We’re also excited to introduce the Space ISAC Crisis Simulation Tabletop Exercise, a limited attendance event designed to enhance the incident response skills of the global space community.


Explore the Program

You can filter sessions by track or by session type with the options on the left. The sessions displayed will be a part of at least one option, so the more you select, the more you will see.

Monday, November 18

8:00 am - 8:30 am
Room: Grand Ballroom Foyer
Sponsored by:
   
8:30 am - 9:00 am
Room: Grand Ballroom A-D
David Luber
Director, Cybersecurity Directorate and Deputy, National Manager for National Security Systems
NSA
9:15 am - 9:45 am
Room: Grand Ballroom A-D
Donna Dulo
Chief of Cyber and Software Testing & Test Director
US Air Force Air Mobility Command Test & Evaluation Squadron
The development of international cyber law presents significant challenges, with many nations hesitant to engage in global cyber agreements. This issue extends to space law, which must contend with the increasing number of space assets managed by global entities. As the development of anti-satellite weapons and space-based espionage continues, establishing legal protections is imperative. This session delves into the cybersecurity challenges inherent in satellite operations and examines how space law can evolve to incorporate cybersecurity measures. Solutions to address the deficiencies will be presented.
Brandon Bailey
Cybersecurity Sr. Project Leader
The Aerospace Corporation

Demonstrating the vulnerabilities within telemetry, tracking, and control (TT&C) when proper data link encryption is not leveraged. The presentation will launch man-in-the-middle attacks on the ground infrastructure prior to the in-line bulk encryptors to demonstrate the necessity for security solutions like Space Data Link Security (SDLS). The attacks will be launched using digital twin technology where we can toggle between enabling / disabling SDLS to demonstrate the benefits of data link encryption in addition to in-line hardware based bulk encryption.

10:00 am - 10:50 am
Room: Grand Ballroom A-D
Moderator
Bob Gourley
Co-Founder and CTO
OODA LLC
As the threat landscape for satellite operators intensifies, ongoing incidents and geopolitical uncertainties increasingly position satellites as prime targets for advanced cyber-attacks. With generative AI influencing these threats, securing satellite infrastructure demands proactive and strategic measures. This session examines the emerging threats, current industry responses, and discusses strategies to enhance the security and resilience of critical space assets in a complex and volatile environment.
10:00 am - 10:25 am
Room: Regency Ballroom
Dr. Theresa Suloway
Chief Engineer
MITRE
Ernest Wong
Technical Lead
U.S. Department of Homeland Security (DHS) Science and Technology Directorate (S&T)
As AI-enabled cyberattacks become more advanced and cost-effective, traditional cybersecurity methods will no longer suffice for space systems. Future systems must not only be secure but also inherently resilient, capable of quickly recovering from breaches. The DHS Science and Technology Directorate's research, via HSSEDI, has explored new resilience techniques. The research identified four gap areas: Substantiated Integrity, Diversity, Adaptive Response, and Non-Persistence. This session will present these findings and mitigation strategies to guide the design of future commercial space systems.
Matt Erickson
Dir. of Client Services and Technology
SpiderOak
With massively interconnected and hybrid systems - think JADC2 and Hybrid Space Architectures, you cannot rely on link-level security across a limited number of highly-trusted nodes for mission security. The compromise of any node within the system can result in malware spreading across links before detect & remediate cybersecurity systems are able to isolate and remove it, resulting in a potential cascade of failures and the collapse of the total architecture. Applying zero-trust security at the application level with principles of least privilege can make sure that your mission stays resilient even with active, malicious actors operating on your network.
10:50 am - 11:30 am
Room: Grand Ballroom Foyer
With government agencies increasing their investment in commercial satellite assets, cloud technologies, and data and analytics services, the scope of their partnership with commercial companies is evolving rapidly. This collaboration is crucial for enhancing national security, improving operational efficiency, and fostering innovation. As we approach the latter half of the decade, we'll explore how these strategic partnerships are working to improve the security and resiliency of space operations, covering advancements in satellite technology, cloud migration, ground infrastructure and more.
11:30 am - 12:15 pm
Room: Regency Ballroom
Moderator
Kim Crider
Founding Partner
Elara Nova
Dr. Kimberly Sablon
Principal Director for Trusted Artificial Intelligence and Autonomy
Office of the Assistant Secretary of Defense for Critical Technologies (OASD - CT)
Explore the application of AI technologies to detect threats, protect data, support spoofing, and provide resiliency in space systems and the data those systems create, process, receive and transmit. We'll review the application and intersection of various AI and cybersecurity technologies and techniques, including generative AI, generative adversarial networks, deep learning, zero trust technologies, and optimization approaches to foster resilient space cyber capabilities. We'll discuss the challenges in applying advanced cybersecurity capabilities to protect government and commercial space data and services, and the implications of those challenges on design, testing, integration, operations and policy.
12:15 pm - 1:30 pm
Room: Grand Ballroom A-D
Sponsored by:
   
1:30 pm - 2:00 pm
Room: Grand Ballroom Foyer
2:00 pm - 2:30 pm
Room: Grand Ballroom A-D
Sarah Olsen
Senior Associate
Booz Allen Hamilton
The space segment inherits many pitfalls from the broader cybersecurity community, including attempting to attach security on at the end of development, relegating cybersecurity to a glorified paper drill, or relying on boundary defenses without consideration for defense-in-depth. Meanwhile, cybersecurity practitioners struggle to translate cybersecurity concepts to the unique development and operating environments that space vehicles are beholden to. This can lead to poor requirements, increased cost, schedule slips, and the illusion of achieving security objectives. Explore how to think critically and holistically to avoid making preventable mistakes.
Bryan Stoker
Automation & AI Strategist
NSA
How can you ensure your mission's security even if your network is compromised? Explore a groundbreaking solution that integrates with existing comms channels to enable secure, high-speed, quantum-resistant data transport. This technology dynamically distributes data across available channels, ensuring mission continuity even if multiple channels fail. Discover how this solution can be combined with an advanced endpoint security technique that lets you use your system securely and not be denied, while automatically disabling compromises that you may not even know are there. Learn how these capabilities can be combined with zero-trust to safeguard critical mission operations.
2:45 pm - 3:35 pm
Room: Grand Ballroom A-D
As satellite end customers deploy increasingly complex networks spanning GEO, LEO, and terrestrial orbits, supply chain security becomes a paramount concern, especially for government stakeholders. With multi-orbit networks becoming the norm, we examine critical supply chain vulnerabilities and the evolving security challenges faced by these cross-constellation and intricate networks. We'll discuss how these factors influence government decision-making when engaging with the satellite industry and the transformative impact of multi-orbit on security considerations.
2:45 pm - 3:10 pm
Room: Regency Ballroom
Patrick Saenz
Southwest Research Institute
With the growing complexity and connectivity of space systems, robust cybersecurity for spacecraft networks is crucial. This research assesses the feasibility of implementing Zero-Trust (ZT) architecture, ensuring no implicit trust based on network location and using multi-layered authentication. By simulating a lunar network environment, we test ZT elements like secure boot, message authentication, and intrusion detection, addressing real-time operational demands and limited bandwidth. Results show ZT's potential to enhance spacecraft network security against sophisticated threats, offering a paradigm shift for future lunar and space missions, providing actionable insights for secure, reliable space communication networks.
3:10 pm - 3:35 pm
Room: Regency Ballroom
3:35 pm - 4:00 pm
Room: Grand Ballroom Foyer
4:00 pm - 4:45 pm
Room: Grand Ballroom A-D
The evolving 'New Space' environment has brought new life to standards and frameworks, yet space cybersecurity remains at the intersection of multiple disciplines, posing challenges for standards bodies like IEEE, CCSDS, and NIST. This dynamic has spurred the development of new standards and the refinement of existing ones. While some standards are better suited to civil space and others are better suited to commercial space, no single standard addresses everything required for space system security. This panel examines the latest developments and offers practical guidance on effectively navigating these evolving standards.
Tim Sills
Lead Security Solutions Architect, Americas
Amazon Web Services
Generative AI is transforming content creation, data generation, and solution development. Aerospace and satellite companies are utilizing its capabilities for easier data retrieval but are concerned about maintaining the privacy and security of these workloads. In this rapid-fire session, learn about the attack vectors on generative AI workloads and solutions to mitigate threats, ensuring compliance with privacy standards.
4:09 pm - 4:16 pm
Room: Regency Ballroom
Chris Hudson
Global Technical Lead for Space Security
Accenture
As the space industry grows, the risk of malicious actors in critical communication paths increases, worsened by cheaper satellite development and LEO satellite complexities. State-sponsored APTs exploit third-party ground systems to disrupt communications. Zero Trust architectures aim to address these risks by requiring continuous authentication, but applying this to space systems poses unique challenges. This rapid-fire talk will highlight space system attacks, future concerns, and Zero Trust solutions.
Henry Haswell
Research Engineer
Southwest Research Institute
Space systems increasingly use OTA updates to enhance capabilities and fix defects. However, securing these updates is crucial due to rising cyber incidents and shared infrastructure. While frameworks like UPTANE are effective for ground vehicles, secure OTA updates for space are underdeveloped. This rapid-fire talk explores secure OTA frameworks tailored for space, highlighting methodologies, encryption, and authentication to ensure system resilience against cyber threats.
5:00 pm - 5:30 pm
Room: Grand Ballroom A-D
Michael O'Donnell
Deputy Associate Administrator, Commercial Space Transportation
Federal Aviation Administration (FAA)
5:30 pm - 7:00 pm
Room: The Conservatory
Sponsored by:
   

Tuesday, November 19

8:00 am - 8:30 am
Room: Grand Ballroom Foyer
8:30 am - 9:00 am
Room: Grand Ballroom A-D
(Invited) Iranga Kahangama
Assistant Secretary for Cyber, Infrastructure, Risk, and Resilience
U.S. Department of Homeland Security
9:00 am - 12:00 pm
Room: Lake Anne

This limited attendance event, facilitated by the Space ISAC, provides an opportunity to navigate through a simulated space-based crisis scenario. The objective of this exercise is to provide participants with an experience in incident response while managing the geopolitical dynamics, increased economic investment and growth interest, and cyber and physical threats to space systems.


About Space ISAC – Collaborating to Protect Our Space Assets

The Space ISAC serves to facilitate collaboration across the global space industry to enhance our ability to prepare for and respond to vulnerabilities, incidents, and threats; to disseminate timely and actionable information among member entities; and to serve as the primary communications channel for the sector with respect to this information.



Space ISAC is the only all-threats security information source for the public and private space sector. It will be the most comprehensive, single point source for data, facts and analysis on space security and threats to space assets. Space ISAC will also provide analysis and resources to support response, mitigation and resilience initiatives.

9:15 am - 9:45 am
Room: Grand Ballroom A-D
Jacob Oakley
SIXGEN
The hacker sees you differently than you see yourself, and this distinction matters more than you may realize. With the space domain designated as critical infrastructure, commercial and government sectors are experiencing exponential growth. Space is becoming cheaper and more accessible and spacecraft are becoming more digitized and standardized. The good guy's job is getting easier. Meanwhile, space-based services are now available in every corner of the globe, through increasingly diverse offerings. What must not be ignored amongst this emergence is how all these wonderful developments impact the attack surface.
9:15 am - 9:45 am
Room: Regency Ballroom
Andrew Weber
Cyber Mission Specialist
Booz Allen Hamilton
The DoD has long overseen material supply chains, but securing the software supply chain is a newer challenge. The space segment introduces unique complexities: software is sourced from a limited pool capable of running on rad-hardened and SWaP-constrained components. Vulnerabilities in common suppliers could impact the entire space community. Satellite developers often reuse outdated code, and reliance on open source or COTS products poses risks. This panel will delve into these challenges and strategies for enhancing the security of space software supply chains.
10:00 am - 10:50 am
Room: Grand Ballroom A-D
Quantum could be ready to hit prime time. Recently, the UK successfully tested an advanced quantum-powered navigation system immune to foreign jamming--a potential game-changer. Quantum technologies are also showing promise in satellite-based applications, such as secure communications through Quantum Key Distribution (QKD) and advanced sensing capabilities. More milestones could soon follow, including the launch of quantum satellites, which aim to enhance cybersecurity and satellite operations. In this panel we examine the latest developments and discuss how these emerging technologies are poised to disrupt the space sector in the coming years.
Trent Teyema
Loomis Council Member / Doctoral Candidate and President
CSG Strategies, Inc.
Exploring the nexus of cybersecurity and commercial space operations, this study aims to enhance resilience against evolving cyber threats. It reviews existing frameworks, identifies vulnerabilities, and proposes advanced measures tailored for space assets and ground infrastructures. Through a Delphi study involving cybersecurity experts and industry leaders, it anticipates future challenges and recommends innovative countermeasures. The findings aim to bolster cybersecurity frameworks, ensuring the integrity of commercial space operations amidst growing threats. Recommendations target policymakers and industry stakeholders to foster a secure environment for the expanding commercial space sector.
10:25 am - 10:50 am
Room: Regency Ballroom
10:50 am - 11:15 am
Room: Grand Ballroom Foyer
11:15 am - 12:05 pm
Room: Grand Ballroom A-D
In less than two years, Artificial Intelligence (AI) and Machine Learning (ML) have evolved from industry buzzwords to indispensable pillars of space cybersecurity. The emergence of Generative AI is transforming space security dynamics, offering advanced capabilities and posing new challenges if satellite companies' AI systems are compromised. This panel will delve into these transformative technologies with leading experts, exploring how AI and ML are reshaping the landscape of space cybersecurity.
Nicholas Goddard
Director of Operations
Navy Cyber Defense Operations Command
The Navy's cyber defense strategy spans across MILSATCOM and COMSAT, addressing vulnerabilities from seafloor to space. Emphasizing proactive cybersecurity and resilience in SATCOM, we prioritize defense across traditional, co-opted, and leased transport networks, focusing on RF and TCP/IP perspectives. Emerging technologies like blockchain, quantum networking, and Generative AI offer new tools against nation-state threats. As we integrate these technologies into our battlespace, collaboration with industry is essential to develop secure communication ecosystems in complex, multi-domain, and contested environments. Join us to explore current cyber challenges and future goals for the Navy in the maritime and space domains.
11:40 am - 12:05 pm
Room: Regency Ballroom
12:00 pm - 1:15 pm
Room: Grand Ballroom A-D
Lt. Gen. Philip A. Garrant
Commander
Space Systems Command
Sponsored by:
   
1:15 pm - 1:45 pm
Room: Grand Ballroom Foyer

Following Tuesday’s events, CyberSat’s Classified Sessions will continue on Wednesday, November 20, from 8:30 AM – 5:15 PM.


(All attendees must possess an active TS/SCI clearance. Prior registration and approval required.)