Tactics
Techniques
Countermeasures
Countermeasures
Space Segment Cybersecurity Profile
NIST References
ISO IEC 27001
NASA Best Practice Guide
D3FEND
Tactics
Technqiues
Artifacts
Resources
General Information
Getting Started
FAQ
Working with SPARTA
Updates
SPARTA Versions
Contribute
Related Work
Spacecraft Functional Decomposition
Defense-in-Depth Space Systems
Threat Levels
Threats
Risk Assessment
Cybersecurity Protections for
Spacecraft: A Threat Based
Approach (pdf)
Tools
Navigator
Countermeasure Mapper
Control Mapper
Spacecraft Mapper
JSON Creator
Notional Risk Scores
Search
Updates
v2.0
v1.6
v1.5
v1.5.1
v1.4
v1.3
v1.3.2
v1.3.1
v1.3.1.1
v1.2
v1.1
v1.0
Home
Resources
Updates
v1.5.1
Update - v1.5.1
Start Date
End Date
November 29 2023
February 29 2024
Below highlights the changes to the website, techniques, sub-techniques, and/or countermeasures.
Website Updates
Cleaned up NIST 800-53 rev 5 control mappings
Added VOSS presentation to General Information
Added backend API call for latest SPARTA STIX files
Techniques
New Techniques
Modified Techniques
EX-0014:
Spoofing
Sub-Techniques
New Sub-Techniques
Modified Sub-Techniques
EX-0014.04:
Position, Navigation, and Timing (PNT)
Countermeasures
New Countermeasures
CM0088:
Organizational Policy
CM0089:
Assessment & Authorization
CM0090:
Continuous Monitoring
Modified Countermeasures
CM0001:
Protect Sensitive Information
CM0008:
Security Testing Results
CM0009:
Threat Intelligence Program
CM0020:
Threat modeling
CM0022:
Criticality Analysis
CM0024:
Anti-counterfeit Hardware
CM0025:
Supplier Review
CM0027:
ASIC/FPGA Manufacturing
CM0028:
Tamper Protection
CM0041:
User Training
CM0054:
Two-Person Rule
CM0077:
Space Domain Awareness
CM0085:
Electromagnetic Shielding
CM0086:
Filtering and Shuttering
CM0087:
Defensive Dazzling/Blinding
CM0002:
COMSEC
CM0030:
Crypto Key Management
CM0031:
Authentication
CM0033:
Relay Protection
CM0040:
Shared Resource Leakage
CM0050:
On-board Message Encryption
CM0004:
Development Environment Security
CM0007:
Software Version Numbers
CM0010:
Update Software
CM0011:
Vulnerability Scanning
CM0012:
Software Bill of Materials
CM0013:
Dependency Confusion
CM0015:
Software Source Control
CM0016:
CWE List
CM0017:
Coding Standard
CM0018:
Dynamic Analysis
CM0019:
Static Analysis
CM0021:
Software Digital Signature
CM0023:
Configuration Management
CM0036:
Session Termination
CM0039:
Least Privilege
CM0046:
Long Duration Testing
CM0047:
Operating System Security
CM0055:
Secure Command Mode(s)
CM0005:
Ground-based Countermeasures
CM0034:
Monitor Critical Telemetry Points
CM0035:
Protect Authenticators
CM0053:
Physical Security Controls
CM0056:
Data Backup
CM0070:
Alternate Communications Paths
CM0032:
On-board Intrusion Detection & Prevention
CM0042:
Robust Fault Management
CM0044:
Cyber-safe Mode
CM0051:
Fault Injection Redundancy
CM0067:
Smart Contracts
CM0014:
Secure boot
CM0038:
Segmentation
CM0057:
Tamper Resistant Body
CM0029:
TRANSEC
×