As the militarization and commercialization of space accelerate, the need for robust satellite cybersecurity has become critical. In response to growing threats targeting orbiting assets, U.S.-based Anvil Secure and Italy’s D-Orbit have announced a strategic partnership aimed at embedding end-to-end cybersecurity across the full lifecycle of satellite missions—from design and launch to in-orbit operations and decommissioning.
Strategic Partnership Targets Full-Spectrum Satellite Cyber Defense
Announced in early May 2024, the collaboration between Anvil Secure—a U.S. firm specializing in secure-by-design cyber architectures—and D-Orbit—a European leader in orbital transportation and satellite servicing—seeks to address long-standing vulnerabilities in space systems. Their joint effort aims to integrate advanced cybersecurity protocols into every phase of satellite mission planning and execution.
The initiative is particularly timely as both commercial operators and defense agencies face increasing risks from state-sponsored actors capable of targeting satellites via jamming, spoofing, malware injection through ground stations, or exploiting insecure software supply chains. The U.S. Space Force has repeatedly emphasized that cyber is the most likely domain through which adversaries will attempt to disrupt American space-based capabilities.
“We’re seeing a convergence of commercial innovation with national security imperatives,” said Anvil Secure CEO Matthew Thompson. “This partnership ensures that as new payloads go up into orbit—whether for Earth observation or communications—they do so with embedded resilience against cyber threats.”
Zero Trust Architecture Applied to Space Missions
A core component of the Anvil-D-Orbit initiative is the implementation of zero trust architecture (ZTA) within satellite command-and-control (C2) frameworks. Traditionally used in terrestrial enterprise networks, ZTA assumes no implicit trust between components—every device or user must continuously verify identity and authorization before accessing resources.
By adapting these principles for orbital environments, Anvil aims to eliminate common attack vectors such as lateral movement within spacecraft networks or unauthorized firmware updates via compromised ground stations. This includes:
- Secure boot processes with cryptographic validation
- Encrypted telemetry links using post-quantum-resistant algorithms
- Continuous authentication for uplink/downlink commands
- Real-time anomaly detection using onboard AI/ML models
D-Orbit’s ION Satellite Carrier platform—used for deploying small satellites and hosting payloads—is expected to serve as a testbed for these technologies during upcoming missions in late 2024. The company’s modular spacecraft buses are well-suited for integrating novel cyber defense layers without major redesigns.
Tackling Software Supply Chain Risks in Orbital Systems
A major focus area is securing the software supply chain—a known weak point exploited in high-profile terrestrial attacks like SolarWinds. In space systems, third-party code libraries used in flight software or mission planning tools can introduce hidden backdoors if not properly vetted.
Anvil Secure brings its expertise from critical infrastructure sectors such as energy and aerospace to implement rigorous software bill-of-materials (SBOM) tracking for all mission-critical code running on satellites or ground control systems. This includes:
- Static/dynamic code analysis during development cycles
- Secure DevSecOps pipelines with artifact signing
- Automated patch management integrated into ground segment operations
This approach aligns with recent U.S. government mandates such as Executive Order 14028 on improving national cybersecurity and NIST SP 800-53 Rev5 guidelines applicable to federal space programs.
Civil-Military Dual Use Implications for NATO Space Posture
The implications of this partnership extend beyond commercial markets into NATO-aligned defense ecosystems. With rising interest among European governments in sovereign launch capabilities and responsive space assets—such as Germany’s Responsive Space Command or France’s AsterX exercises—the ability to deploy hardened COTS-based platforms becomes strategically valuable.
D-Orbit’s European footprint positions it well for integration into EU-funded programs like IRIS² (Infrastructure for Resilience, Interconnectivity & Security by Satellite), while Anvil provides a conduit into U.S.-based defense primes seeking secure payload hosting options on trusted platforms.
This dual-use potential mirrors broader trends where commercial innovations are rapidly adopted by militaries seeking low-cost but resilient alternatives to legacy space architectures vulnerable to asymmetric disruption tactics like cyberattack or kinetic ASAT strikes.
Pilot Missions Planned; Long-Term Vision Includes Autonomous Threat Response
The first demonstration missions under this partnership are expected by Q4 2024 using D-Orbit’s ION platform equipped with security-enhanced payload interfaces developed by Anvil engineers. These will test real-time intrusion detection capabilities onboard satellites operating in LEO (Low Earth Orbit).
Looking ahead, both companies envision incorporating autonomous threat response mechanisms—akin to endpoint detection-and-response (EDR) systems used on Earth—that can isolate compromised subsystems mid-mission without requiring human intervention from ground control centers.
This vision aligns with emerging doctrines around resilient-by-design space architectures capable of surviving contested environments where communications may be degraded or denied altogether due to jamming or kinetic interference.
A Model for Future Space Cybersecurity Standards?
The Anvil-D-Orbit collaboration may serve as a blueprint for how future commercial constellations—and even government-owned platforms—approach cybersecurity from inception rather than retrofitting defenses post-launch. As more nations invest in proliferated LEO architectures involving hundreds of small satellites per constellation (e.g., SDA’s Transport Layer), scalable cyber hygiene becomes essential not optional.
If successful, this model could inform standards bodies like CCSDS (Consultative Committee for Space Data Systems) or ISO TC20/SC14 on best practices for secure spacecraft design lifecycles—including secure provisioning at manufacturing stages through end-of-life sanitization protocols before deorbiting hardware back into Earth’s atmosphere.
