25, August 2021

ESA Open Invitation to Tender: 1-10778
Open Date: 10/08/2021 16:06 CEST
Closing Date: 21/09/2021 13:00 CEST

ObjectivesDevelop a representative testbed of a Bundle Protocol Security (BPSec) to validate standardisation activities and de-risk future developments of BPSec-compliant systems.DescriptionThe CCSDS (Consultative Committee for Space Data Systems) Bundle Protocol (BP) is one component to realise next-generation Delay Tolerant Networking (DTN) / store-and-forward capabilities in space networks.It is part of the protocol stack foreseen for next generation exploration missions (e.g. Gateway). The SIS(Space Internetworking Systems-Delay)-DTN Bundle Security Book, is currently defined within CCSDS.The IETF (Internet Engineering Task Force) is also working on dedicated DTN security publications. This activity aims at implementing and validating a BPSec protocol (on a virtualised testbed), addressing alsooperational concerns and challenges.Securing a DTN requires to consider network physical properties, multiple topologies, policies at each node,and various security requirements. There are numerous challenges associated to such protocol: node authentication, anti-replay mechanisms, key management, security association management and overallmonitoring and control in adistributed network of nodes scenario, integrity checks across waypoints, protocol data overheads and associated trade-offs, etc.The activity encompasses the following tasks:- Analyse existing standards and publications, derive associated test case scenarios andtestbed system requirements,- Adapt an existing BP implementation to realise a prototype BPSec implementation,- Design the testbed architecture including identification of all components and relevant off-the-shelf solutions (e.g. for virtualisation layer management, network simulation, security libraries),- Implement the testbed in an iterative and agile manner: testing scenarios, identifying issues, proposing solutions, re-testing,- Produce findings and lessons learned including recommendations for the standards andfor future systems implementing them.Procurement Policy: C(1) = Activity restricted to non-prime contractors (incl. SMEs). For additional information please go to EMITS news “Industrial Policy measures for non-primes, SMEs and RD entities in ESA programmes”.

Directorate: Directorate of Operations
Estabilishment: ESOC
ECOS Required: No
Classified: No
Price Range: 200-500 KEURO
Authorised Contact Person: Nathalie Schwarz
Initiating Service: OPS-GDA
IP Measure: C1
Prog. Reference: E/0901-01 – Technology Developme
Tender Type: Open Competition
Technology Keywords: 9-C-I-Mission Control System, Automation, Mission Planning, Simulators and Station M&C and Data Centre Architecture and Technologies
Products Keywords: 4-A-4-Other

If you wish to access the documents related to the Invitation to Tender, you have to log in to the ESA Portal.