1. Home
  2. Techniques
  3. Space
  4. Retrieve TT&C master/session keys
  5. Interception of Key Management Communication

Retrieve TT&C master/session keys: Interception of Key Management Communication

ID Name
T2015.001 Compromise of Key Management Facility
T2015.002 Cryptographic Key Corruption
T2015.003 Interception of Key Management Communication

The attacker can intercept messages that are being transmitted as part of the Key Management Services with the intention either to obtain knowledge of a specific key or to interfere with the Key Management Service. [1]

Standard/references: [2] [1]

ID: T2015.003
Sub-technique of:  T2015
Tactic: Credential Access
Platforms: Space-link communication
Version: 2.0
Created: 25 August 2022
Last Modified: 21 April 2023

Mitigations

This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.

References

  1. CCSDS. (2022, February). DRAFT CCSDS RECOMMENDED PRACTICE FOR SYMMETRIC KEY MANAGEMENT, CCSDS 354.0-R-2. Retrieved September 29, 2022.
  1. CCSDS. (2019, July). RECOMMENDED STANDARD FOR AUTHENTICATION SECURITY CREDENTIALS, CCSDS 357.0-B-1. Retrieved September 29, 2022.