Yaoying Zhang,Qian Wu,Zeqi Lai,Yangtao Deng,Hewu Li,Yuanjie Li,Jun Liu

DOI: https://doi.org/10.1109/IWQoS57198.2023.10188709

2023-01-01

Abstract:Entering the “NewSpace” era, satellite Internet constellation (SIC) is expanding rapidly. However, while operating a large number of broadband satellites in free space enables great opportunities for ubiquitous and low-latency Internet services, it also involves new threats that were previously ignored to the energy-limited satellite systems. In this paper, we investigate the feasibility and impact of a new class of real risk in emerging SICs: energy drain attack. To this end, we play the role of an attacker and propose Starmelt,an energy drain attack mechanism that persistently injects malicious traffic that goes through the victim satellite from various geo-distributed locations, preventing the victim from hibernating and overusing the satellite battery to cut its lifetime. Further, we design a series of techniques to: (i) handle the path ambiguity challenge caused by various access selection and routing schemes to guarantee that the deliberately crafted traffic can precisely pass through the victim; (ii) leverage the tail energy consumption characteristics to reduce the detectability as well as the traffic cost of an attack. Extensive simulations based on real constellation knowledge demonstrate that Starmeltcan substantially increase on-board energy consumption, reducing up to 76% lifetime of the victim satellite under various power models and traffic patterns.

Wei Liu,Yuanjie Li,Hewu Li,Yimei Chen,Yufeng Wang,Jingyi Lan,Jianping Wu,Qian Wu,Jun Liu,Zeqi Lai

DOI: https://doi.org/10.1109/sp54263.2024.00149

2024-01-01

Abstract:The emergent direct-to-cell Low-Earth Orbit (LEO) satellite mega-constellations promise ubiquitous LTE/5G access for our commodity phones and IoTs without terrestrial base stations. While their extreme scale and mobility help tolerate diverse attacks, we show that both new features are exploitable to amplify signaling protocol vulnerabilities inherited from LTE/5G and obfuscate attacks to threaten satellite services. We showcase this with SatOver, a control-plane cross-layer attack that lets a greedy terrestrial operator or a man-in-the-middle attacker block all direct-to-cell satellites in urban areas. SatOver can reuse terrestrial LTE/5G base stations or deploy commodity software-defined radios as false satellites, stealthily hijack victim devices, delay their satellite access, stop them from probing other satellites, and block the entire mega-constellation. Our real-world satellite tests, lab tests with commodity 3GPP NR/IoT-NTN stacks, and operational trace-driven emulation validate SatOver’s viability for attacking COTS and upcoming NTN phones/IoTs. We discuss potential defenses against SatOver’s attack amplification/obfuscation.

Frederick Rawlins,Richard Baker,Ivan Martinovic

DOI: https://doi.org/10.48550/arXiv.2204.13514

2022-04-28

Abstract:Satellites in Geostationary Orbit (GEO) provide a number of commercial, government, and military services around the world, offering everything from surveillance and monitoring to video calls and internet access. However a dramatic lowering of the cost-per-kilogram to space has led to a recent explosion in real and planned constellations in Low Earth Orbit (LEO) of smaller satellites. These constellations are managed remotely and it is important to consider a scenario in which an attacker gains control over the constituent satellites. In this paper we aim to understand what damage this attacker could cause, using the satellites to generate interference. To ground our analysis, we simulate a number of existing and planned LEO constellations against an example GEO constellation, and evaluate the relative effectiveness of each. Our model shows that with conservative power estimates, both current and planned constellations could disrupt GEO satellite services at every groundstation considered, with effectiveness varying considerably between locations. We analyse different patterns of interference, how they reflect the structures of the constellations creating them, and how effective they might be against a number of legitimate services. We found that real-time usage (e.g. calls, streaming) would be most affected, with 3 constellation designs able to generate thousands of outages of 30 seconds or longer over the course of the day across all groundstations.

Cryptography and Security

Shuaijie Li,Chaojie Zhang,Chengli Zhao,Chengyi Xia

DOI: https://doi.org/10.1063/5.0194027

2024-03-01

Abstract:Low earth orbit (LEO) satellite constellations have emerged as a promising architecture integrated with ground networks, which can offer high-speed Internet services to global users. However, the security challenges faced by satellite networks are increasing, with the potential for a few satellite failures to trigger cascading failures and network outages. Therefore, enhancing the robustness of the network in the face of cascading failures is of utmost importance. This paper aims to explore the robustness of LEO satellite networks when encountering cascading failures and then proposes a modeling method based on virtual nodes and load capacity. In addition, considering that the ground station layout and the number of connected satellites together determine the structure of the final LEO satellite network, we here propose an improved ground station establishment method that is more suitable for the current network model. Finally, the robustness of the LEO satellite networks is deeply studied under two different attacks and cost constraints. Simulations of LEO satellite networks with different topologies show that the maximum load attacks have a destructive impact on the network, which can be mitigated by adjusting the topology and parameters to ensure normal network operation. The current model and related results provide practical insights into the protection of LEO satellite networks, which can mitigate cascading risks and enhance the robustness of LEO systems.

Karwan Mustafa Kareem

2024-05-12

Abstract:Satellite internet networks have emerged as indispensable components of the modern digital landscape, promising to extend connectivity to even the most remote corners of the globe. Among these networks, Starlink, pioneered by SpaceX, has garnered significant attention for its ambitious mission to provide high-speed internet access on a global scale. However, the proliferation of satellite infrastructure also brings to the forefront a myriad of cybersecurity challenges, as these networks become increasingly vital for critical communication and data exchange. This research endeavours to conduct a comprehensive analysis of the cybersecurity landscape surrounding Starlink, with a focus on identifying potential threats, assessing associated risks, and proposing mitigation strategies to bolster the resilience of the network. Through an exploration of existing literature, an examination of the system architecture of Starlink, and an analysis of the current cyber threat landscape facing satellite internet networks, this study aims to provide valuable insights into the cybersecurity challenges inherent in the operation of global satellite internet infrastructure. By prioritizing risks and proposing effective mitigation strategies, this research seeks to contribute to the ongoing efforts to safeguard the integrity and accessibility of satellite-based internet connectivity.

Cryptography and Security,Networking and Internet Architecture

Zeqi Lai,Hewu Li,Jihao Li

DOI: https://doi.org/10.1109/ICNP49622.2020.9259357

2020-01-01

Abstract:"Newspace" mega-constellations, such as Starlink and OneWeb are gaining tremendous popularity, with the promising potential to provide high-capacity and low-latency communication globally. However, very little is known about the architecture and performance of such emerging systems, the workload they have to face, as well as the impact of topological options on the attainable network performance. This paper presents StarPerf, a mega-constellation performance simulation platform that enables constellation manufacturers and content providers to estimate and understand the achievable performance under a variety of constellation options. The proposed platform integrates two key techniques: (1) performance simulation for mega-constellation, which captures the impact of the inherent high mobility in satellite networks and profiles the area-to-area attainable network performance; (2) constellation scaling, which synthesizes various topological options by scaling the space resource and enables exploration on multiple operating conditions that can not be easily reproduced. To demonstrate the effectiveness of StarPerf on understanding and optimizing satellite networks, we leverage StarPerf to evaluate and compare the performance of several state-of-the-art low earth orbit (LEO) constellations and obtain insights on optimizing the architectural design to improve area-to-area network performance. Finally, to further show how applications can benefit from the proposed simulator, we propose an adaptive relay selection algorithm that can intelligently choose the optimal relay on cloud platforms and LEO satellites to achieve reduced latency. Evaluation results show that by properly selecting a relay in the satellite-cloud integrated infrastructure, end-to-end communication latency can be reduced by up to 62% for typical interactive traffic.

Quan Chen,Giovanni Giambene,Lei Yang,Chengguang Fan,Xiaoqian Chen

DOI: https://doi.org/10.1109/tvt.2021.3058126

IF: 6.8

2021-03-01

IEEE Transactions on Vehicular Technology

Abstract:Mega-constellation networks (MCNs) based on low earth orbit (LEO) satellites have become increasingly important with many projects in the design or implementation phase. For those MCN systems with inter-satellite links (ISLs), the large number of satellites increases the routing complexity and the required hop-count of ISL paths. This paper aims to provide insights into the topology and routing design in MCNs through the analysis of ISL paths. We propose a theoretical model to explicitly estimate the ISL hop-count between ground users in MCNs with inclined orbits. The spatial distribution properties of hop-count are derived based on the proposed method. Based on an exemplary constellation, that is Starlink, the global distribution patterns of hop-count and the path difference caused by different access satellites are illustrated for the first time. In Starlink, the difference of the paths from different starting satellites can be up to 45 hops. The numerical results show that optimizing the constellation phasing factor can effectively reduce the average hop-count, for both the whole network and specific regional users.

telecommunications,engineering, electrical & electronic,transportation science & technology

Wen Wang,Wanli Ni,Hui Tian,Zhaohui Yang,Chongwen Huang,Kai-Kit Wong

DOI: https://doi.org/10.1109/iccworkshops53468.2022.9814697

2022-01-01

Abstract:This paper investigates the secure and efficient e-health data transmission problem in a simultaneously transmitting and reflecting (STAR) reconfigurable intelligent surface (RIS) assisted Internet of Medical Things (IoMT) network. The STAR-RIS is employed to safeguard the patients' telemedicine against eavesdroppers in the whole space. The joint active and passive beamforming is developed to maximize the secrecy energy efficiency (SEE), taking into account the imperfect channel state information (CSI) of all channels. By approximating the semi-infinite inequality constraints with $S$ -procedure and general sign-definiteness, the reformulated problem is solved by an alternating optimization framework. Simulation results reveal that: 1) STAR-RIS can achieve more noteworthy SEE gain for IoMT networks than conventional reflecting-only RIS; 2) The equal time splitting mode of STAR-RIS is preferable for low power domain, while the energy splitting mode achieves the best performance when the downlink power is sufficient; 3) The accuracy of CSI estimation and the bit resolution power consumption are crucial to reap the SEE benefits offered by STAR-RIS.

Tianyu Zhang,Hewu Li,Jun Liu,Lu,Qian Wu,Shaowen Zheng,Zeqi Lai,Yuanjie Li

DOI: https://doi.org/10.23919/jcc.fa.2023-0077.202307

2023-01-01

China Communications

Abstract:The gradual deployment of Low-Earth Orbit (LEO) mega constellations with inter-satellite links (ISLs) promises ubiquitous, low-latency, and high-throughput satellite network services. However, networked LEO satellites with ISLs are also at risk of routing attacks such as hijacking. Existing defenses against route hijacking in terrestrial networks can hardly work for the LEO satellite network due to its high spatiotemporal dynamics. To deal with it, we propose RPD, a high-risk routing path detection method for LEO mega-constellation networks. RPD detects abnormal high-risk LEO network paths by checking the consistency between the path delay and the geographical distance. This is efficiently achieved by combining in-band measurements and out-of-band statistical processing to detect the anomaly of the clustering feature in the reference delay matrix. RPD avoids the recalculation of the header cryptographic marks when the handover occurs, thus greatly reducing the cost and improving the performance of high-risk path detection. Experiments showed that the proposed RPD mechanism achieves an average detection accuracy of 91.64% under normal network conditions, and maintain about 89% even when congestion occurs in multiple areas of the network and measurement noise is considered. In addition, RPD does not require any cryptographic operation on the intermediate node, only minimal communication cost with excellent scalability and deployability.

Yimei Chen,Yuanjie Li,Hewu Li,Lixin Liu,Li Ouyang,Jiabo Yang,Junyi Li,Jianping Wu,Qian Wu,Jun Liu,Zeqi Lai

2024-06-10

Abstract:Low Earth Orbit (LEO) satellite mega-constellations aim to enable high-speed Internet for numerous users anywhere on Earth. To safeguard their network infrastructure in congested outer space, they perform automatic orbital maneuvers to avoid collisions with external debris and satellites. However, our control-theoretic analysis and empirical validation using Starlink's space situational awareness datasets discover that, these safety-oriented maneuvers themselves can threaten safety and networking via cascaded collision avoidance inside the mega-constellation. This domino effect forces a dilemma between long-term LEO network lifetime and short-term LEO network capacity. Its root cause is that, the decades-old local pairwise maneuver paradigm for standalone satellites is inherently unstable if scaled out to recent mega-constellation networks. We thus propose an alternative bilateral maneuver control that stabilizes self-driving mega-constellations for concurrent network lifetime and capacity boosts. Our operational trace-driven emulation shows a 8$\times$ network lifetime extension in Starlink without limiting its network capacity.

Networking and Internet Architecture

Zeqi Lai,Yibo Wang,Hewu Li,Qian Wu,Qi Zhang,Yunan Hou,Jun Liu,Yuanjie Li

2024-07-04

Abstract:In this paper, we investigate an important research problem facing the upcoming satellite Internet: from a network perspective, how many satellites exactly do we need to construct a survivable and performant LSN? To answer this question, we first formulate the survivable and performant LSN design (SPLD) problem, which aims to find the minimum number of needed satellites to construct an LSN that can provide sufficient amount of redundant paths, required link capacity and acceptable latency for traffic carried by the LSN. Second, to efficiently solve the tricky SPLD problem, we propose MEGAREDUCE, a requirement-driven constellation optimization mechanism, which can calculate feasible solutions for SPLD in polynomial time. Finally, we conduct extensive trace-driven simulations to verify MEGAREDUCE's cost-effectiveness in constructing survivable and performant LSNs on demand, and showcase how MEGAREDUCE can help optimize the incremental deployment and long-term maintenance of future satellite Internet.

Networking and Internet Architecture

Hai Yang,Bingli Guo,Kuan Yan,Xinyuan Deng,Xinbin Cui,Huilin Ren,Shanguo Huang

DOI: https://doi.org/10.1109/acp55869.2022.10088572

2022-01-01

Abstract:A new space race for low earth orbit (LEO) mega-constellation enabled internet services is imminent, with several commercial companies, e.g., SpaceX, Amazon, OneWeb, working forward to high speed LEO constellation with optical inter-satellite link (ISL). Grid-mesh topology is commonly utilized for LEO constellation, even if it is not the best topology. But constellation structure design, as a more fundamental work than topology design, has not been investigated thoroughly. For a given LEO mega-constellation with a fixed amount of satellite, this paper explores the impact of constellation structure on network performance by adjusting the number of orbital planes. Simulation results show that under the inclined walker-delta model, the optimal network performance in terms of average/maximum hops is achieved while the difference value between the number of orbital plane and satellites per orbital plane is minimal. In addition, link congestion under shortest path routing scheme is also optimized with the proposed mega-constellation structure.

Le Zhang,Ye Du,Zhengyang Sun

DOI: https://doi.org/10.1109/tnse.2023.3308610

IF: 6.6

2023-01-01

IEEE Transactions on Network Science and Engineering

Abstract:LEO satellite networks are prone to trigger cascading failures and cause global network outage after being cyber attacked. This paper introduces the cascading failure theory into the field of LEO satellite network for the first time, which provides a new perspective for enhancing the network invulnerability in the future. In the proposed model, satellites and gateways have different working and failure states, and jointly determine the operating state of the network. The buffer capacity and maximum processing ability of nodes are dependent on the initial load present in hotspots. The real-time load is affected by the actual routing scheme. Too much unprocessed load will cause the degradation of processing ability. A cascading algorithm to implement the model is proposed and the feasibility is analyzed. Case constellation analysis reveals that satellites in hotspots are more susceptible to triggering cascading failures. The congestion-sensitive routing can enhance network invulnerability. The false routing information attacks will cause more serious cascading processes than black hole attacks.

engineering, multidisciplinary,mathematics, interdisciplinary applications

Yunfan Zhang,Chi Han,Feihuang Chu,Wei Xiong,Luliang Jia

DOI: https://doi.org/10.3390/electronics13122330

IF: 2.9

2024-06-15

Electronics

Abstract:Due to the openness of inter-satellite links (ISLs) in mega-constellations, the threat posed by jamming from non-cooperative constellations is becoming increasingly significant. Most of the existing approaches focus on the up/down link capacity between satellites and ground stations, which differs greatly from the situation whereby ISLs are subjected to non-cooperative jamming. Therefore, this work investigates the transmission rates of ISLs under jamming from non-cooperative mega-constellations. Based on this, a novel satellite network capacity calculation method is proposed to evaluate the mega-constellation network capacity when the transmission rates change dynamically. The simulation results show that the satellite number, jamming power and inclination of non-cooperative constellations have a significant influence on the network capacity. The optimal jamming efficiency occurs when the constellation inclinations are close.

engineering, electrical & electronic,computer science, information systems,physics, applied

Roy Peled,Eran Aizikovich,Edan Habler,Yuval Elovici,Asaf Shabtai

2023-12-03

Abstract:Satellite systems are facing an ever-increasing amount of cybersecurity threats as their role in communications, navigation, and other services expands. Recent papers have examined attacks targeting satellites and space systems; however, they did not comprehensively analyze the threats to satellites and systematically identify adversarial techniques across the attack lifecycle. This paper presents a comprehensive taxonomy of adversarial tactics, techniques, and procedures explicitly targeting LEO satellites. First, we analyze the space ecosystem including the ground, space, Communication, and user segments, highlighting their architectures, functions, and vulnerabilities. Then, we examine the threat landscape, including adversary types, and capabilities, and survey historical and recent attacks such as jamming, spoofing, and supply chain. Finally, we propose a novel extension of the MITRE ATT&CK framework to categorize satellite attack techniques across the adversary lifecycle from reconnaissance to impact. The taxonomy is demonstrated by modeling high-profile incidents, including the Viasat attack that disrupted Ukraine's communications. The taxonomy provides the foundation for the development of defenses against emerging cyber risks to space assets. The proposed threat model will advance research in the space domain and contribute to the security of the space domain against sophisticated attacks.

Cryptography and Security

Zeqi Lai,Yangtao Deng,Hewu Li,Qian Wu,Qi Zhang

DOI: https://doi.org/10.1109/mnet.2023.3337141

IF: 10.294

2024-01-01

IEEE Network

Abstract:As an innovative paradigm for the next-generation 6G communication, integrated space and terrestrial networks (ISTNs) synthesize emerging satellite mega-constellations and existing terrestrial network infrastructures, promising to provide ubiquitous and high-speed Internet services for global users. However, as satellites are operated in the open and uncontrolled space environment, future ISTNs are vulnerable to various attacks. Towards a secure and reliable ISTN for pervasive Internet services globally, we carry out our study in three steps. First, we conduct an in-depth analysis of the unique characteristics and new vulnerabilities of emerging ISTNs. Second, we envision space digital twin (SDT), a novel technology that can facilitate secure and reliable satellite Internet with the ability to conduct multi-dimensional security assessment, identify various vulnerabilities, and evaluate the effectiveness of countermeasures accordingly. With SDT techniques, an ISTN operator/researcher can flexibly build a virtual ISTN environment (VIE), which duplicates the network architecture, protocols, behaviors as well as security threats and vulnerabilities of a real ISTN, for security assessment and countermeasures evaluation. Finally, we conclude the key challenges of realizing the full capability of SDT, and accordingly outline a list of corresponding new directions for future research.

Guojie Fan,Hewu Li,Jun Liu,Zeqi Lai,Wu Qian,Lu,Zheng Shaowen

DOI: https://doi.org/10.1109/iwcmc58020.2023.10182841

2023-01-01

Abstract:The emerging satellite internet constellation aims to deploy hundreds of low-orbit satellites to provide high-speed broadband internet services to global ground terminals. However, this poses a significant challenge for large-scale and highly dynamic satellite networking due to the traditional satellite constellations' uniform structure. This structure is limited by four laser links per low-orbit satellite, using default connections of two intra-orbit links and two inter-orbit links, and is difficult to match with the uneven population distribution and user traffic on the ground, resulting in unnecessary overheads in propagation delay and transmission hops. In recent years, researchers have developed methods for matching structure and traffic distribution that overcome the limitations of traditional connection methods, reducing transmission delay and hops. Despite this progress, these methods still maintain the characteristics of uniform configuration. To address this issue, a new link connection design for large-scale low-orbit satellite network driven by user distribution has been proposed. This mechanism enables the dynamic matching of satellite structure and users, facilitating elastic networking under dynamic topology conditions, improving the overall capacity and utilization of satellite networks. Through simulation, this user-driven link connection design has been verified to reduce the average hop count by at least 41% in many scenarios, demonstrating its effectiveness for a variety of new large-scale low-orbit satellite networks.

Jun Liu,Tianyu Zhang,Hewu Li,Qian Wu,Shaowen Zheng,Lu

DOI: https://doi.org/10.1109/nana60121.2023.00012

2023-01-01

Abstract:The broad coverage, high bandwidth, and low latency characteristics of low-orbit mega-constellations have inspired extensive research on content delivery in conjunction with low-orbit satellite constellations and the collaboration between cloud service providers. This environment presents a potential opportunity for attackers who may attempt to launch various attacks, such as route hijacking, on satellites along the content delivery path. This paper explores the Risk Path Detection based Trusted Delivery Mechanism(RPD-TDM) to the scenario of content delivery in Integrated Satellite-Terrestrial Internet (ISTI), which enhances the security of delivery scheduling in the content delivery network architecture. It uses risk path detection to drive secure scheduling of edge servers, avoiding risk areas and ensuring the trustworthiness of delivery paths for high-value data. The experimental results demonstrate the effectiveness of the mechanism.

Tianyu Zhang,Hewu Li,Jun Liu,Qian Wu,Yuanjie Li,Yaoying Zhang

DOI: https://doi.org/10.1109/icc45855.2022.9838991

2022-01-01

Abstract:The emergence of mega-constellations is the most promising satellite network trend in recent years, which brings new security challenges to the network layer and higher layers, such as DDoS, worm, and DNS pollution. Source address validation is one of the effective solutions in terrestrial networks, by filtering the invalid address and resisting the source address spoofing. Because of the time-vary topology in mega-constellations, the source address validation mechanism faces the severe problem of the anchor mobility, which leads to a sharp decline in SAVI (Source Address Validation Improvements) performance and increases the cost to maintain the user status. In this paper, we develop a source address spoofing avoidance mechanism under high movement (SASA) for mega-constellations. Specifically, we propose that the user and the satellite both maintain the user status. After the satellite signed the binding information by the private key, it forms the mapping between the authenticity of the user address and the initial access satellite on the user side. Moreover, when the handover occurs, the user safely transmits the authentication information to the new access satellite through asymmetric encryption to complete rebinding. Simulation results show that SASA can greatly reduce the rebinding cost of mega-constellations by 95.04% in Starlink and 81.84% in Kuiper.

Yuanjie Li,Hewu Li,Lixin Liu,Wei Liu,Jiayi Liu,Jianping Wu,Qian Wu,Jun Liu,Zeqi Lai

DOI: https://doi.org/10.1145/3484266.3487375

2021-01-01

Abstract:We study a new design objective for "Internet in space" for terrestrial users: To align logical network topology, address, and route in the virtual cyberspace with movements of satellite mega-constellations and earth's rotations in the real physical world. We explain why this is particularly desirable by the recent low-earth-orbit (LEO) mega-constellations, and how it welcomes mobility to streamline the network design for stability, efficiency, and scalability in an unstable space-ground environment. We showcase its feasibility with the common fixed satellite sub-point trajectory in mega-constellations. We describe how it permits stable recursive topology, unifies cyber-physical locations in the address, and naturally embeds the geographical routing into the topological routing.