• Home
  • Current congress
  • Public Website
  • My papers
  • root
  • browse
  • IAC-18
  • D5
  • 4
  • paper

    • What space missions can learn from cyber-security breaches (and counter-measures) in the Telecommunications industry

    Paper number

    IAC-18,D5,4,3,x46298

    Author

    Mr. Scott Millwood, The Netherlands

    Year

    2018

    Abstract
    As the internet evolved from a network of routers, Telecommunication companies became providers of our global infrastructure backbone. They also became the number one target of cyber-security attacks – attracting double the annual Distributed Denial of Service (DdoS) attacks of the number two target, financial institutions.

The author leverages two decades of experience working with Telcommunications infrastructure across the EU and APAC regions, to undertake original research with the Chief Security Officers (CSOs) of the world’s leading Telcos. 

In interviews with CSO’s of AT\&T, China Telecom, Megafon, Deutsche Telekom, Telstra Corporation, Telia Company, Orange and British Telecom, the author investigates the circumstances in which cyber-security breaches have penetrated core telecommunications infrastructure during the last decade and the counter-measures Telcos have taken in response to increasingly sophisticated attacks. 

This qualitative research forms the basis of a presentation of “insider insights” from the Telco industry made applicable to space. It highlights the technical vulnerabilities created by the rise of connectivity, cloud-based Infrastructure-as-a-Service (such as SaaS, StaaS, BaaS, BPOaaS) and IoT. It highlights the role of cost-cutting outsourcing which has seen major infrastructure build, management and support functions contracted to third parties who in turn sub-contract further, creating multiple layers of third-parties. The CSOs highlight the tendency of security breaches to occur in the supply-chain indicating the vulnerabilities that have arisen where Telcos lose line-of-sight and control over their own networks. For all the sophistication of the network, human error remains a major vulnerability in our systems.

The space industry faces convergence on a number of levels – between infrastructure supported by national space agencies and private players; between military and civil purposes; between space-based and terrestrial infrastructure. This paper represents an opportunity to share “lessons learned” in the Telco sector with the space industry.

The author proposes legal and technological solutions to mitigate risks of cyber-security attack, while outlining counter-measures the Telco industry has found successful.


(Note the author is the former Chief Privacy Officer and legal counsel of the Swedish-Finnish Telco Telia Company and former legal counsel at Australia’s Telstra Corporation. Currently studying Space Law, this subject is part of my larger thesis project that I am currently researching at Leiden University, Institute of Air and Space Law).
    Abstract document

    IAC-18,D5,4,3,x46298.brief.pdf

    Manuscript document

    (absent)