Module sdls 

Space Data Link Security (CCSDS 355.0-B-2). Space Data Link Security (SDLS) Protocol (CCSDS 355.0-B-2).

Provides authentication, encryption, and authenticated encryption services for CCSDS data link frames (TM, TC, AOS, USLP).

The protocol inserts a Security Header after the transfer frame header and an optional Security Trailer before the frame trailer. All field lengths are determined by the Security Association (SA), which is identified by the Security Parameter Index (SPI) in the Security Header.

Modules

ep

Extended Procedures PDU format (CCSDS 355.1-B-1). SDLS Extended Procedures PDU format (CCSDS 355.1-B-1).

key

Key management: OTAR, activation, verification, destruction. Key management for SDLS Extended Procedures (CCSDS 355.1-B-1).

sa_mgmt

Security Association lifecycle management. Security Association lifecycle management (CCSDS 355.1-B-1).

Structs

AesGcmCrypto

AES-GCM authenticated encryption provider.

ClearModeCrypto

A no-op crypto provider for “clear mode” testing.

SecurityAssociation

Configuration for a Security Association (SA).

SecurityHeader

A parsed view over a Security Header in a byte buffer.

SecurityTrailer

A parsed view over a Security Trailer in a byte buffer.

Enums

Error

Errors from SDLS processing.

ServiceType

The cryptographic service type of a Security Association.

Constants

MAX_IV_SIZE

Maximum IV size in bytes (per Table 6-1).

MAX_MAC_SIZE

Maximum MAC size in bytes (per Table 6-1).

MAX_PL_SIZE

Maximum Pad Length field size in bytes (per Table 6-1).

MAX_SECURITY_HEADER_SIZE

Maximum Security Header size in bytes (per CCSDS 355.0-B-2 4.1.1.1.4).

MAX_SN_SIZE

Maximum Sequence Number size in bytes (per Table 6-1).

Traits

CryptoProvider

Trait for pluggable cryptographic backends.

Functions

apply_security

Apply security processing to a frame (sending side).

parse_security_header

Extract fields from a security header given the SA configuration.

process_security

Process security on a received frame (receiving side).

read_spi

Read the SPI from the first 2 bytes of a security header.

write_security_header

Write a Security Header into the given buffer.