Skip to main content
OSTI.GOVU.S. Department of Energy Office of Scientific and Technical Information
U.S. Department of Energy
Office of Scientific and Technical Information
 

Initial CTBT international monitoring system security findings and recommendations

Conference ·
OSTI ID:266876
;

An initial security evaluation of the proposed International Monitoring System (IMS) suggests safeguards at various points in the IMS to provide reliable information to the user community. Modeling the IMS as a network of information processing nodes provides a suitable architecture for assessing data surety needs of the system. The recommendations in this paper include the use of public-key authentication for data from monitoring stations and for commands issued to monitoring stations. Other monitoring station safeguards include tamper protection of sensor subsystems, preservation of data (i.e. short-term archival), and limiting the station`s network services. The recommendations for NDCs focus on the need to provide a backup to the IDC for data archival and data routing. Safeguards suggested for the IDC center on issues of reliability. The production of event bulletins should employ {open_quotes}two-man{close_quotes} procedures. As long as the data maintains its integrity, event bulletins can be produced by NDCs as well. The effective use of data authentication requires a sound key management system. Key management systems must be developed for the authentication of data, commands, and event bulletins if necessary. It is recommended that the trust placed in key management be distributed among multiple parties. The recommendations found in this paper offer safeguards for identified vulnerabilities in the IMS with regard to data surety. However, several outstanding security issues still exist. These issues include the need to formalize and obtain a consensus on a threat model and a trust model for the IMS. The final outstanding security issue that requires in-depth analysis concerns the IDC as a potential single point of failure in the current IMS design.

Research Organization:
Sandia National Labs., Albuquerque, NM (United States)
Sponsoring Organization:
USDOE, Washington, DC (United States)
DOE Contract Number:
AC04-94AL85000
OSTI ID:
266876
Report Number(s):
SAND--96-1902C; CONF-9609185--7; ON: DE96013182
Country of Publication:
United States
Language:
English

Similar Records

Data surety demonstrations
Conference · Sat Aug 01 00:00:00 EDT 1998 · OSTI ID:656738
Data Authentication Demonstration for Radionuclide Stations
Conference · Tue Aug 03 00:00:00 EDT 1999 · OSTI ID:9573
Authentication of data for monitoring a comprehensive test ban treaty
Technical Report · Wed May 01 00:00:00 EDT 1996 · OSTI ID:249279

Related Subjects

45 MILITARY TECHNOLOGY, WEAPONRY, AND NATIONAL DEFENSE
DATA ACQUISITION SYSTEMS
MONITORING
NUCLEAR EXPLOSION DETECTION
NUCLEAR EXPLOSIONS
PHYSICAL PROTECTION
RELIABILITY
SECURITY