LOCKSAT
Final Meeting
Locksat - Final meeting
ESTEC 04/06/2007
Slide
1
ver A2
www.pxl.it
Meeting Agenda
•
•
•
•
•
•
•
•
•
•
•
•
Project Description
Partners
Project Activites and Scheduling
Output Documents
Locksat concept description
Selection of application scenarios for Proof of
Concept
Proof of Concept Activities
Result Analysis
Conclusions
Implementation Implications
Intellectual Property
Future Work
Locksat - Final meeting
ESTEC 04/06/2007
Slide
2
ver A2
www.pxl.it
Project Description
ITI “Innovation Triangle Initiative” Project
Proof of Concept - Type A proposal
“Validate an innovative idea that could be used by the
space industry to solve an identified space problem”
“This new idea can be based on a completely new concept
or on a concept that has not yet been applied to space”
“Validation of new ideas and demonstration of its advantages,
possibly up to Technology Readiness Level 3 - TRL 3”
Locksat - Final meeting
ESTEC 04/06/2007
Slide
3
ver A2
www.pxl.it
Partners (1/2)
PXL was founded in 2001. The mission of the
company is to provide highly specialized
competences in design and development of solutions
for telecommunication and industrial embedded
systems.
PXL has increased its abilities in fulfilling strategies aimed to
communication and data security (COMSEC, TRANSEC) and in applying
advanced software engineering methods (i.e. "software radio") for the
development of radio equipments.
PXL uses Voice over IP (VOIP) technology in industrial and military
contexts, where the same technology has to be tailored around the
specific needs of these fields.
Role in the Project:
Primary Contractor
Locksat - Final meeting
ESTEC 04/06/2007
Other ESA projects we are involved in:
• ITT-5148. Multinational Satellite Adaptor
• ITT-5149. Satellite IP services for Civil
Protection Agencies
Slide
4
ver A2
www.pxl.it
Partners (2/2)
RadioLabs stands for “Consorsium
University-Industry – Radiocommunication Laboratories”.
It is a recently established (2001) no-profit consortium among the
University of Rome “Tor Vergata”, “Roma Tre”, University of L’Aquila and
industrial partners like Telespazio and Selex Communications
(Finmeccanica Companies) and Si-ies.
RadioLabs team gathers a wide range of expertise on the fields of
analogue and digital microelectronics and in different areas on information
technology.
RadioLabs is capable to test service and products with real users, in
particular:
•
•
•
•
large scale evaluation of prototypes;
identification of usability requirements;
concept and user needs analysis;
scenario development and testing
Locksat - Final meeting
ESTEC 04/06/2007
Slide
5
ver A2
www.pxl.it
Project WPs
Line WP
1000
1100
1200
1300
2000
2100
2200
2300
3000
3100
3200
4000
4000
TITLE
Description
Literature survey on state-ofart key distribution systems and
local key generation and synchronization techniques
Analysis of key management systems identified in WP1100
focusing the attention on those based on ocal key generation
Design description
and synchronization. Performance comparison at conceptual
level. Conceptual design of LOCKSAT.
Identification of realistic satellite communication scenarios in
Scenario definition
terms of applications, system architectures… Define realistic
study cases.
Identification of simulator characteristics and performance
Simulation design
requirements. Design of software modules needed to evaluate
performance of LOCKSAT.
Planning of the set of simulations to be performed,
identification of parameters to analyse and data to collect from
Simulation plan
simulation runs, schedule definition for the simulation
campaign.
Test of performance of
Implementation of the simulator. Validation of the simulator.
identified solution through Definition of simulator inputs parameters on the basis of
computer simulation
scenarios. Simulation campaign.
Identification of issues related to implementation of LOCKSAT
Implementation implication
in real operational systems.
Comparative analysis of performance of LOCKSAT and other
Performance and result
selected key management systems. Identification of strengths
analysis
and weaknesses.
Management
Literature Survey
Locksat - Final meeting
ESTEC 04/06/2007
Slide
6
ver A2
www.pxl.it
Start
Stop
Ko+0
Ko+2
Ko+1
Ko+9
Ko+0
Ko+3
Ko+3
Ko+5
Ko+4
Ko+5
Ko+5
Ko+8
Ko+7
Ko+9
Ko+7
Ko+9
Ko+0
Ko+9
Project Gantt
KO
01/09/2006
Line WP
1000
1100
1200
1300
2000
2100
2200
3000
BMR1
31/10/2006
BMR2
31/10/2006
TITLE
BMR3
28/02/2007
MTR
09/03/2007
Literature Survey
Design description
Scenario definition
3100
Implementation implication
3200 Performance and result analysis
4000
Management
Locksat - Final meeting
ESTEC 04/06/2007
FP
04/06/2007
KO+1 KO+2 KO+3 KO+4 KO+5 KO+6 KO+7 KO+8 KO+9
Simulation design
Simulation plan
Test of performance of identified
solution through computer
2300
simulation
4000
BMR4
30/04/2007
Slide
7
ver A2
www.pxl.it
Project Documents
Line
WP
TITLE
Output Names
Date
Type
Ver
1100
1200
1300
Literature Survey
Design description
Scenario definition
Locksat_TER1_ver_A4.pdf
Locksat_TER3_ver_D1.pdf
Locksat_TER2_ver_B1.pdf
30/10/2006
27/04/2007
15/12/2006
Final
Final
Final
A4
D1
B1
2100
2200
Simulation design
Simulation plan
Test of performance of
identified solution through
computer simulation
Locksat_TER4_ver_B2.pdf
Locksat_TER5_ver_A1.pdf
24/01/2007
31/01/2007
Final
Final
B2
A1
Simulator SW
01/06/2007
Final
Implementation implication
Performance and result
analysis
Locksat_TER6_ver_B3.pdf
01/06/2007
Final
B3
Locksat_TER7_ver_B3.pdf
01/06/2007
Final
B3
Locksat_BMR1_verA1.pdf
Locksat_BMR2_verA1.pdf
Locksat_BMR3_verA1.pdf
Locksat_BMR4_verA1.pdf
Locksat_BMR5_verA1.pdf
LOCKSAT_MTR_ver_A3.pdf
Locksat_MoM_1_v3.pdf
Locksat_MoM_9_v2.pdf
30/10/2006
30/12/2006
27/02/2007
04/05/2007
01/06/2007
05/03/2007
24/04/2006
02/04/2007
Final
Final
Final
Final
Final
Final
Final
Final
A1
A1
A1
A1
A1
A3
Ver3
Ver2
1000
2000
2300
3000
3100
3200
4000
4000
Management
Locksat - Final meeting
ESTEC 04/06/2007
Slide
8
ver A2
www.pxl.it
Locksat Concept Description (1/6)
What does Locksat mean?
LOCKSAT is the acronym of LOCal Key Synchronization and generation for
data security in sATellite communications.
What Locksat is?
Locksat is a security key renewal algorithm that allows frequent key renewal
(re-keying) without exchanging of data messages over the un-secure
channel
Where Locksat idea comes from?
In satellite environment propagation delay strongly impact re-keying
performance because each re-keying phase requires at least one or two
round-trip time to be executed.
Locksat Background
• Spread Spectrum Frequency Hopping Systems
• Networks of Simple Distributed Systems
Locksat - Final meeting
ESTEC 04/06/2007
Slide
9
ver A2
www.pxl.it
Locksat Concept Description (2/6)
Locksat Basic Concepts (1/3)
• Generation of symmetric encryption keys at both sides of the
communication channel
• Encrypt and decrypt data using an encryption key extracted from a shared
sequence of keys
No Key Transfer
Receiver and Transmitter must agree upon the usage of
a known Ordered Set of Keys (OSK)
Service
#i Seed
OSN Generator
PRNG
OSN
Store#i
Locksat - Final meeting
ESTEC 04/06/2007
Slide
10
ver A2
OSN#i
TRSF
Service#i WOD
www.pxl.it
Service#i
OSK
Locksat Concept Description (3/6)
Locksat Basic Concepts (2/3)
• Key renewal planned on time basis and synchronized between the two
communication parties
Receiver and Transmitter must agree upon key renewal time
Key Hop Period
t
Receiver and Transmitter
use their Local Time Source
tick_time
Local Time Source is referenced to a Global
Time Source with a LASTER (Local Accurate
Stable Time External Reference)
Locksat - Final meeting
ESTEC 04/06/2007
Slide
11
ver A2
www.pxl.it
T = 5 x tick_time
K[i]=OSK(i)
Key Hop #i
Locksat Concept Description (4/6)
Locksat Basic Concepts (3/3)
• Key renewal planned on time basis and synchronized between the two
communication parties
Receiver compensates network delay and clock drifts using a key window
Key Hop Period
t_0
n=0
K[0]
n=1
K[1]
n=2
K[2]
n=3
K[3]
n=4
K[4]
n=5
K[5]
KW[1] =
K[0],K[1],K[2]
KW[2] =
K[1],K[2],K[3]
Locksat - Final meeting
ESTEC 04/06/2007
Slide
12
ver A2
www.pxl.it
n=6
K[6]
t
Locksat Concept Description (5/6)
Application Scenario
Locksat can be used to supply key management for security services
implemented at various layers of the OSI stack (e.g. IP layer, Application
Layer, Link layer etc.) for various configuration scenarios (unicast or
multicast) even in non satellite environment.
Satellite systems emphasize Locksat performance.
Suitable Application Scenario has to be selected for
Proof of Concept
Selection Criteria for Proof of Concept
• Most promising applications (diffusion and market penetration)
• Integration in standard architecture/protocols
Satellite TV-Broadcasting
IP data over Satellite
DVB-CA
DVB-RCS-IP
Locksat - Final meeting
ESTEC 04/06/2007
Slide
13
ver A2
www.pxl.it
Locksat Concept Description (6/6)
Adaptation to selected scenarios
Peculiarities of the selected scenarios led to two different design.
DVB-RCS-IP
DVB-CA
• Secure Audio/Video Broadcasting
• Based on standard DVB and DVBCA
• Frequent CW renewal
• No Key Window at receiver
• No Laster at receiver
• Secure IP VPN over satellite
• Secure IP End-to-End channel over
satellite
• Use of a Laster
• Key Window at receiver
• SA renewal time less then RTT
• No channel bandwidth used for key • No channel bandwidth used for key
renewal
renewal
• Speed up CW renewal (i.e. mitigate • No Delay in Data transfer during key
card-sharing issues)
renewal (SA expiration)
Locksat - Final meeting
ESTEC 04/06/2007
Slide
14
ver A2
www.pxl.it
Approach
Locksat Proof of Concept (1/8)
• DVB-RCS-IP:
• Implementation of a simulation platform
• DVB-CA:
• Analysis of real traffic traces
• Comparison with other key management:
• Theoretical analysis
• Analysis of real traffic traces
Tools
• DVB-RCS-IP:
• The Ns-2 network simulator platform
• DVB-RCS DAMA add-on module
• Locksat add-on module
• DVB-CA:
• Linux Based STB to capture and analyze real traffic
• Comparison with other key management:
• Windows OS IPSec implementation
• Ehtereal to capture and analyze real traffic
• Iperf to generate tcp real traffic
• NIST IPSec implementation reference documentation
Locksat - Final meeting
ESTEC 04/06/2007
Slide
15
ver A2
www.pxl.it
Locksat Proof of Concept (2/8)
DVB-RCS-IP
Simulation
description
• Secure IP
VPN over
satellite
• Secure IP
End-to-End
channel
over
satellite
Locksat - Final meeting
ESTEC 04/06/2007
Slide
16
ver A2
www.pxl.it
Locksat Proof of Concept (3/8)
DVB-RCS-IP Terms of Comparative Evaluation
Evaluation Parameters:
• Efficiency
• Extra overhaead. The amount of extra-information to transfer
along the network for exchanging the new key.
• Throughput decrease. The key renewal process could lead to a
reduction in the in-band data rate for
• data transmission interruption during renewal
• temporary missynchronization of tx and rx keys at SA
expiration.
• Key renewal delay
• Key renewal frequency
Locksat - Final meeting
ESTEC 04/06/2007
Slide
17
ver A2
www.pxl.it
Locksat Proof of Concept (4/8)
DVB-RCS -IP
DAMA profiles
Profile Name
P1
P2
P3
Return Link
256 kbit/s CRA
64 kbit/s CRA+192
kbit VBDC
256 kbit/s RBDC
Forward Link
2 Mbit/s
2 Mbit/s
2 Mbit/s
DAMA profile combinations
Profile ST1
Profile ST2
P1
P2
P3
P1
P2
P3
Simulation scenario
CBR ST1
(kbit/s)
256
64
-
CBR ST2
(kbit/s)
256
64
-
VBR ST1
(kbit/s)
192
256
Traffic sources
Source/Sink Name
SRC1/SINK1
SRC2/SINK2
SRC3/SINK3
Locksat - Final meeting
ESTEC 04/06/2007
Transport Protocol
udp
tcp
tcp
Slide
18
ver A2
BW requirements
128 kbit/s
Max allowed
Max allowed
Description
5/6 VoIP comm..
ftp transfer
Web browsing
www.pxl.it
VBR ST2
(kbit/s)
192
256
TOT uplink
BW
512
320
256
Locksat Proof of Concept (5/8)
• Traffic has been scheduled
in order to stress Locksat
mechanisms.
• Specifically, entries and
exits of heterogeneous
data flows, from both ST1
and ST2, in combination to
the DAMA allocation loops
maximize delay variations.
• Scheduled traffic of ST1
(ftp, web), used to analyse
performance,always
exceeds maximum link
bandwidth (congestion).
• ST1 modem buffer is
considered infinite (no
dropping).
DVB-RCS -IP
Traffic scheduling
Locksat - Final meeting
ESTEC 04/06/2007
Slide
19
ver A2
www.pxl.it
Locksat Proof of Concept (6/8)
DVB-CA
Simulation
description
• Secure
Audio/Video
Broadcasting
Locksat - Final meeting
ESTEC 04/06/2007
Slide
20
ver A2
www.pxl.it
Locksat Proof of Concept (7/8)
DVB-CA Terms of Comparative Evaluation
Evaluation Parameters:
• Efficiency. The amount of extra-information to transfer along the
network for exchanging the new key (number and the size of
ECM messages)
• Key renewal frequency. Time elapsing between two subsequent
key renewals
Comparative evaluation based on analysis of recorded traffic patterns
coming from satellite TV services
• Typical ECM messages size
• Typical ECM messages frequency
• Typical CW update frequency
Locksat - Final meeting
ESTEC 04/06/2007
Slide
21
ver A2
www.pxl.it
Locksat Proof of Concept (8/8)
DVB-CA
• To evaluate potential benefits of the Locksat system (internal sync
mode) in the DVB-CA scenario, traces of the following transponder have
been stored and analyzed:
Hotbird Transponder 63
Provider: Sky Italia
Freq: 11977H
SR: 27500
FEC: 2/3
Channels: 10 (all scrambled)
Encryption: 0919h, 093bh (Videoguard News Datacom NDS)
• 10 scrambled channels are multiplexed, and for each channel ECM,
Video and Audio PIDs are monitored. To opposite, an unique EMM PID is
active for all the channel.
Locksat - Final meeting
ESTEC 04/06/2007
Slide
22
ver A2
www.pxl.it
Locksat Result Analysis (1/4)
DVB-RCS -IP
DAMA P2 -- Key Hop=0,25 ms
TX side
TX source scheduling
Locksat - Final meeting
ESTEC 04/06/2007
Slide
23
ver A2
RTT perceived by FTP source
www.pxl.it
Locksat Result Analysis (2/4)
DVB-RCS -IP
DAMA P2 -- Key Hop=0,25 ms
Packets discarded by
Locksat
Locksat window threshold
Keys out of window
Distance from Key Window center
Locksat - Final meeting
ESTEC 04/06/2007
Slide
24
ver A2
Current key compared to RX key
window boundaries
www.pxl.it
Locksat Result Analysis (3/4)
DVB-RCS -IP vs IPSec/IKE
DAMA PROFILE: 1
Locksat (KH=0,1)
Locksat (KH=0,25)
Locksat (KH=0,5)
IPsec (default)
Key renewal time
Key lifetime
Extra overhead per key
exchange
Bandwidth needed for
key renewal
Amount of dropped
packet
0,1 s
0,5 s
0,25 s
1,25 s
0,5 s
2,5 s
300 s
>300 s
Theoretical
Ipsec
[1-1.5] s
[2-3] s
-
-
-
900 bytes*
900 bytes*
-
-
-
negligible
[4.8-7.2] kbit/s*
medium
low
negligible
not estimated
not estimated
DAMA PROFILE: 2
Locksat (KH=0,1)
Locksat (KH=0,25)
Locksat (KH=0,5)
IPsec (default)
Theoreticl Ipsec
Key renewal time
Key lifetime
Extra overhead per key
exchange
Bandwidth needed for
key renewal
Amount of dropped
packet
0,1 s
0,5 s
0,25 s
1,25 s
0,5 s
2,5 s
300 s
>300 s
[1.4-2.1] s
[2.8-4.2] s
-
-
-
900 bytes*
900 bytes*
-
-
-
negligible
[3.4-5,1] kbit/s*
high
medium
negligible
not estimated
not estimated
DAMA PROFILE: 3
Locksat (KH=0,1)
Locksat (KH=0,25)
Locksat (KH=0,5)
IPsec (default)
Key renewal time
Key lifetime
Extra overhead per key
exchange
Bandwidth needed for
key renewal
Amount of dropped
packet
0,1 s
0,5 s
0,25 s
1,25 s
0,5 s
2,5 s
300 s
>300 s
Theoretical
Ipsec
[1.4-2.1] s
[2.8-4.2] s
-
-
-
900 bytes*
900 bytes*
-
-
-
negligible
[3.4-5,1] kbit/s*
high
low
negligible
not estimated
not estimated
Locksat - Final meeting
ESTEC 04/06/2007
Slide
25
ver A2
www.pxl.it
Locksat Result Analysis (4/4)
DVB-CA
Performance comparison
Key renewal
frequency
Overhead for ECM
(per transponder)
DVB-CA
10 seconds
150 kbit/s
Locksat DVB
internal sync
~25 milliseconds
-
Locksat - Final meeting
ESTEC 04/06/2007
Slide
26
ver A2
www.pxl.it
DVB-RCS -IP
Conclusions (1/3)
• Locksat concept has been proven in this scenario through simulation
• Locksat achieved good perfomance compared to IPSec/IKE
• In high stress conditions (ST is congested) a key lifetime of 2,5 sec
guarantee good throughput performance
• Key life time of 0,5 sec allows good performance in normal conditions
(ST buffers not always congested)
• Stress points
• Working at IP level large delay variations makes rx/tx synchronization
challenging (i.e. network congestion)
• Mitigating stress points
• Security constraints (key lifetime) can be balanced with network delay
variations in order to maintain service availability
• Countermeasures could be taken to limit congestion at ST
Locksat - Final meeting
ESTEC 04/06/2007
Slide
27
ver A2
www.pxl.it
Conclusions (2/3)
DVB-CA
• Locksat concept has been proven in this scenario
• Locksat improves performance of the current DVB-CA
• A key lifetime of approximately 25 msec
• No external Laster needed (current STB may be used)
• No data transferred to renew CWs
Locksat - Final meeting
ESTEC 04/06/2007
Slide
28
ver A2
www.pxl.it
Conclusions (3/3)
Same concept could be applied and tailored to
different application scenarios
Why and Where use Locksat?
• In links with high RTT (Round Trip Time)
• When frequent key renewal is needed
• When bandwidth is a precious resource and security is needed
(no data exchange for key renewal)
• In links with limited delay variations (i.e. OSI level 2) keys
may be frequently renewed
• When time reference is transported with data
Locksat - Final meeting
ESTEC 04/06/2007
Slide
29
ver A2
www.pxl.it
Implemetation Implications (1/1)
DVB-CA
DVB-RCS-IP
• A preliminary scheme for
Locksat implementation in
DVB-CA architecture has
been developed
• A preliminary architecture
for Locksat implementation
in a VPN termination
appliance has been
developed
• Simulcrypt or Multicrypt CA
module with Smart Card for
STB
• Proposal for integration in a
Simulcrypt environment
Locksat - Final meeting
ESTEC 04/06/2007
Slide
30
ver A2
• A preliminary block function
architecture for integration
in IPSec framework
www.pxl.it
Intellectual Property (1/1)
A preliminary patent research has been
realized during the work for both general
concepts and their adaptation to the
described scenarios
We currently checking the opportunity to
patent Locksat
Locksat - Final meeting
ESTEC 04/06/2007
Slide
31
ver A2
www.pxl.it
Future Work (1/1)
We are going to prepare a new proposal for next step of ITI
projects
“Demonstration of Feasibility and Use”
Type B
component and/or breadboard development possibly up to
validation in laboratory
Locksat - Final meeting
ESTEC 04/06/2007
Slide
32
ver A2
www.pxl.it
Thanks for attention
Questions ?
Locksat - Final meeting
ESTEC 04/06/2007
Slide
33
ver A2
www.pxl.it