CERT-In Framework for Space Cyber Security | 27 Feb 2026

Source: PIB

The Indian Computer Emergency Response Team (CERT-In), in collaboration with SatCom Industry Association (SIA-India), has released a comprehensive advisory framework for Space Cyber Security to protect India's space assets from evolving cyber threats.

  • The framework aims to foster a culture of resilience, accountability, and proactive risk management, promoting "secure-by-design" architectures in India's expanding space ecosystem.
  • The guidelines are advisory in nature and apply to all stakeholders, including government agencies, satellite service providers, ground station operators, vendors, and private space enterprises.

Key Provisions of the Framework

  • Threat Assessment: Identifies specific risks to space systems, such as signal jamming, spoofing, unauthorized command uplink, ground station compromise, and firmware manipulation.
  • Segment-wise Security Controls: Mandates security measures across the space segment, ground infrastructure, communication links, and user terminals, covering authentication, encryption, access control, and intrusion detection.
  • Incident Response: Outlines mandates for incident detection, response, and reporting in alignment with CERT-In Directions.
  • Governance: Emphasizes the appointment of a Chief Information Security Officer (CISO) within organizations operating SatCom systems.
  • Supply Chain Security: Includes provisions for risk assessment, supply chain security, and equipment certification.
  • Alignment with Global Standards: The framework aligns with international cybersecurity frameworks, including those from the International Telecommunication Union (ITU), Consultative Committee for Space Data Systems (CCSDS), National Institute of Standards and Technology (NIST), SPACE-Shield, TREKS (Targeting, Reconnaissance, & Exploitation Kill Chain for Space) and SPARTA (Space Attack Research and Tactic Analysis).

CERT-In

  • Designated under Section 70B of the Information Technology Act, 2000, CERT-In is India's national agency for responding to cyber threats like hacking and phishing. 
  • Operating under the Ministry of Electronics and Information Technology since 2004, it runs a 24×7 help desk to handle cyber incidents and provides prevention and security management services.
Read More: Indian Computer Emergency Response Team (CERT-In)