“A malicious firmware update is invisible until you compare measured behavior against expected behavior.”
Detect anomalous transponder reconfiguration on an active communications relay payload, isolate the affected system, and execute a recovery procedure.
60 MINUTES · 10 min instruction · 40 min simulation · 10 min review
| LABS Component | Type | Statement |
|---|---|---|
| (L)EARN | Knowledge | Knowledge of communications payload operations including transponder management, beam shaping, power allocation, link margins, and bit error rates (BER). |
| (L)EARN | Knowledge | Knowledge of how malicious firmware updates cause anomalous transponder reconfiguration in a space operations context. |
| (A)PPLY | Skill | Skill in monitoring payload health metrics to detect performance degradation across transponder channels. |
| (A)PPLY | Skill | Skill in detecting unauthorized configuration changes, commanding payload safe mode, and verifying system state against a known-good baseline. |
| (B)UILD | Ability | Ability to distinguish payload anomalies caused by malicious firmware from those caused by physical damage or environmental radiation effects. |
| (S)IMULATE | Task | Detect anomalous transponder behavior from a malicious firmware update, command payload safe mode, assess configuration state, and initiate firmware reload within the 40-minute exercise window. |
Students operate the 3-satellite constellation with an active communications relay payload. This exercise focuses on the Cyber exposure domain through a malicious firmware update that targets the payload processor, causing anomalous transponder reconfiguration. Students must detect the anomaly through payload telemetry, isolate the affected system, and initiate recovery procedures.
Students configure transponders, monitor link margins, manage the power budget, and track user traffic across the communications relay payload. This phase builds familiarity with payload telemetry and establishes the baseline against which anomalies will be detected.
A firmware update causes anomalous transponder reconfiguration: unexpected frequency changes and power level modifications appear across multiple channels. Students must detect the anomaly through link margin and power telemetry, then execute the response sequence.
This exercise introduces the Cyber domain. Instructors should:
The following questions will help finalize this exercise design. We welcome any additional recommendations.
Cyber threats exploit software, firmware, and network vulnerabilities to gain unauthorized access, modify configurations, exfiltrate data, or deny services. In the space domain: command injection through compromised ground systems, malicious firmware updates to flight software or payload processors, data exfiltration from mission systems, and denial of service through network flooding or protocol exploitation. Cyber attacks can be persistent, stealthy, and difficult to attribute.
Students completing this exercise will have practiced payload operations and responded to a Cyber domain threat. Three single-domain exercises are now complete. Module 9 introduces the first multi-domain exercise: Contested Space Operations combining Kinetic and Electronic Warfare.
| Phase | Duration | Focus | Domain |
|---|---|---|---|
| Phase 1 | ~15 min | Nominal payload operations and transponder configuration | Baseline |
| Phase 2 | ~25 min | Malicious firmware detection, safe mode, and recovery | Cyber |