Article 85
This article is inactive.
This article has been deemed outside of scope for the debate and exists only for reference.
Cryptography and encryption
1. Based on the risk assessment referred to in Article 78(2), Union space operators, and respectively entities applying a simplified risk management, as regards the critical assets and critical functions referred to in Article 79(1), first subparagraph, shall comply with the following:
(a) they shall define a cryptographic concept to ensure the cybersecurity of the space missions, by duly considering all the relevant criteria, such as the objective of the space mission, the features of the payload, any functional requirement and any relevant threat scenarios;
(b) they shall select cryptographic mechanisms in accordance with the relevant standards and recommendations of competent authorities;
(c) they shall implement policies and procedures for the use of cryptography and encryption for their space missions.
2. Union space operators shall establish a lifecycle management policy for the cryptographic keys which shall set out rules for the protection and management of cryptographic key to ensure the secure generation, use, storage, distribution, and disposal thereof.
3. For the purposes of paragraph 1, first subparagraph, Union space operators shall implement at least the following requirements:
(a) end-to-end authentication of the links between the satellite control centres and the space segment, by using cryptographic mechanisms between the ground segment and the satellite;
(b) ensure the encryption of telecommands considering the risk assessments referred to in Article 78(2), and following recommendations from supervisory reviews;
(c) ensuring the availability of cryptographic keys and parameters that are necessary to ensure the implementation of the response and recovery plans referred to in Article 87, through redundant cryptographic equipment, or by implementing key escrowing.
4. The Commission is empowered, in accordance with Article 113, to adopt delegated acts to further supplement the use by Union space operators of cryptographic products and related key management products or services certified under the European cybersecurity certification schemes adopted pursuant to Article 49 of Regulation (EU) 2019/881, to ensure the protection of the telemetry and telecommands.
Warning: Cannot modify header information - headers already sent by (output started at /var/www/html/article.php:8) in /var/www/html/script/loginauth.php on line 163