Web Enabled Spacecraft

gilgsn writes "Yahoo has an article from space.com about a satellite which will be operated by FTP over TCP/IP on the Internet! The CHIP (Cosmic Hot Interstellar Plasma Spectrometer) spacecraft will examine the stuff between stars, the so-called void of space that is actually rich with hot gas. The choice of protocol was dictated by economics. I wonder what OS it will run and if communications will be encrypted?"

Pity about no www server

[garbs]

Though they may have anticpated the slashdot effect.

Re:Pity about no www server

[arvindn]

It should be obvious why there is no www server. www is world wide web: So you can't use from space :)

did you say FTP?

Watch out: the RIAA will shut down the first Mp3 pirate server in space!

Microsoft announces...

[SmurfButcher+Bob]

Windows SPACE! Service Pack 12.

In other news, a satellite was taken over by a 5 year old...

I guess our company isn't too far off the mark...

[los+furtive]

We were asked to come up with a fast cheap solution for getting two servers to keep in touch, and not have to change the company's firewall setup. Our solution was to use SOAP and JAXM, but our backup plan was to do everything via FTP...who knew we were in the same league as NASA?

Why FTP?

[drunkmonk]

Maybe it's just me, but doesn't it seem strange that it would be operated by FTP? I mean, one would think that being able to SSH to it and having a command prompt would be a lot more useful...

Unless it's actually a cover and NASA is creating the first orbiting pr0n server :)

Re:Why FTP?

[Bostik]

one would think that being able to SSH to it and having a command prompt

Did you give that thought any consideration whatsoever? SSH2, while secure and neat protocol, is not the leanest you could do. Try to think about it. We're talking about control channel to a moving, non-terrestrial body with probably not too much CPU cycles to spare.

To establish an SSH connection, both the client and server need to exchange public keys. After that, they need to negotiate the session key(s) over public-key cryptography. This alone is slow. Then, to have any kind of real control, the latency between SSH endpoints needs to be rather small. The symmetric encryption wouldn't take that much cycles, so I'm leaving that out of the equation.

So while FTP sounds like a really weird and unortohodox solution, it is after all a trivial protocol to transfer sets of batch commands.

USER control
PASS *********
PUT batch
QUIT

Just a thought...

Re:Why FTP?

[medcalf]

That would be really bad. Leaving aside the practical implications of attempting an interactive encrypted session with the kind of lag that comes from the physical distance, there is the simple matter of mistakes. You don't want someone to make a mistake typing an interactive command, which could leave the satellite useless and nonresponsive. Instead, you create and test the heck out of your control files, and once they are perfect, just transfer them.

What actually surprises me is that they are using TCP/IP, rather than UUCP, which seems more appropriate to this kind of latency and simple file transfer need.

Re:Why FTP?

[sketerpot]

Perhaps FTP over an encrypted connection with symmetric keys exchanged before the thing goes into space? There are even special purpose chips to do such things if you want negligible CPU time expended. Check out OpenCores

Re:Why FTP?

[Cujo]

They don't just use FTP. That's just one port for getting data to and from the spacecraft in batches (which is usually a perfectly acceptable way to get data in and out). See their whitepaper. They can also telnet to the 750, and hve other services as well.

FTP?

[praedor]

It wont take long for someone to crack the satellite. They will download images thinking to collect nice data about deep space but instead will find that some h@X0R has redirected their satellite to take a good close look at Natalie Portman.

Or...the first DDoS initiated from space will soon be in the headlines.

FTP? C'mon!

FTP!?

[autopr0n]

Wow, I've never heard of FTP being used as a control protocol. Sure, HTTP might have been a bit much (although I doubt it. people have run webservers computers the size of matchheads. Even HTTP over a serial connection on an apple2). Why not use straight telnet with no options?

And I wonder how this control works, do you CD into a spesifc cordinate of space to examine? Can you DIR the stars it can see to find which ones to look more closely at, and then GET the acual data?

Hrm, actualy that would be kind of cool.

Re:FTP!?

[AaronLuz]

FTP is used as a control protocol in plenty of environments. It's really quite simple. You upload one or more files with instructions in it. Then you upload a semaphore file to say your message is complete. The receiving end reads the directory every 10 seconds or so and starts processing when it sees the last file. I imagine that the satellite would return data instead of instructions, and then the process would repeat. The FTP protocol per se has nothing to do with controlling the satellite; it's all about using files as messages.

I've seen credit card authorizations go through this way. UNIX and mainframe machines often exchange data this way when turn-around time is not important. I would assume NASA doesn't need to control the satellite second-by-second.

Re:FTP!?

[macshit]

Wow, I've never heard of FTP being used as a control protocol.

When I worked in the MIT AI lab, the coke machine used FTP as a `control protocol'.

You'd ftp to the machine, log in (you had to have a coke account), and type:

get coke

... and a can of coke would drop, deducting coke-money from your coke account.

The thing is, most people just use a normal FTP client, and the above command will actually transfer a file called `coke,' so I suppose it's better to type "get coke -".

But I always forgot about that, and as it happens, I usually drank Dr. Pepper, so to this day, in random directories on that system, I'll find little files called `drpepper'...

FTP and TCP/IP????

[amithv]

Couldn't they have picked better protocols? It seems to be me for reliability and performance that isn't the best of choices. There are alot of other protocols (XTP for example) that the government could have used instead. Although TCP/IP is so commonplace I wouldn't want my 15 million dollar satellite to depend on it.

Re:FTP and TCP/IP????

[sploxx]

There'is actually a proposal for a "space internet" where long ping times, high data loss etc. occur.

It is called "Interplanetary Internet SIG":
http://www.ipnsig.org/home.htm

So... they do not use the common TCP/IP things, but their networking principle is closely related to IP.

Re:FTP and TCP/IP????

[g4dget]

Couldn't they have picked better protocols? It seems to be me for reliability and performance that isn't the best of choices.

And what, specifically, do you think is wrong with TCP/IP? It's pretty minimal and simple.

Although TCP/IP is so commonplace I wouldn't want my 15 million dollar satellite to depend on it.

Even if TCP/IP had some technical drawbacks relative to some alternative protocol, software implementation errors and engineering mistakes are likely much bigger risks than some theoretical limitations of the protocol.

In different words, I'd much rather bet $15 million on a proven, debugged, mature TCP/IP implementation than on some implementation nobody has ever used for a protocol nobody has ever heard of.

Got r00t?

[RAMMS+EIN]

What? No security through obscurity? I can hear the 5kr1p7 k1dd13z rejoicing...

J. |_337 H4x0r: D00d$$$ I took control of da satelite man! See hoe |337 I am!!!
J. |_3373r H4x0r: L00se, sux0r! I can make her spin round! Wheee! Wheeee!
J. |_337 H4x0r: What are you doing idiot you're taking her down!!!
J. |_3373r H4x0r: No way man. I'm much to |337 for that!! DAMMIT Windows crashed again! sux0rzzz!!!###

[Sattelite falls down to Earth]

Windows

[m00nun1t]

Ok, satellite running windows, yada yada, service pack yada yada, hacked by 12 year old, yada yada, Microsoft Windows for Space yada yada.

Ok, now I've gotten all the blindingly predictable jokes out of the way, can we move to something more interesting?

PING

[del_ctrl_alt]

Hope it has an IP address, It would be cool to ping something not on earth.

Re:PING

[Lumpy]

amateur radio operatros can do this daily.

I have "pinged" the dove sattelite at least 20 times in my life, Pinged and sent email to MIR, had a kind-of IRC chat with 2 different Space shuttle missions and have listened to my ping come back from the moon.

ham radio, you get to do things that other only wish they could do.

all of this was done at 144-148mhz with standard radio equipment and radio modem called a TNC. MIR was the easiest to contact.... moonbounce requires a friend with no wife and lots of money.

Don't worry...

[Pac]

In the first week after it goes online some kid will manage get a root shell, install Apache and leave a page stating that "IN SOVIET RUSSIA, DEEP SPACE PROBES YOU"...

Engineering Issues with Space Design

[Effugas]

Serious kudos to these guys for the work they're doing! From what it sounds like, they're using FTP inside of either a IPSec or custom layer 2 encrypted tunnel -- once you've been wrapped by that, you're mostly OK (though FTP servers in general have had some pretty nasty growing pains).

Some may be wondering why the use of FTP, instead of HTTP. Indeed, HTTP is a unified protocol capable of elegantly handling both (moderately) interactive command exchange and bulk data transfer. The problem is latency -- if this beast is going anywhere, there's going to be some significant (5-10 second, minimum) lag between issuing commands and receiving responses. In such an environment, you don't *want* interactive access; you want an elegant way of providing a series of commands and receiving a series of responses. FTP provides that -- among other things, while HTTP's capacity for downloading files is quite mature, anything more is asking a bit more of HTTP than it was designed.

FTP has specific commands for machine interaction w/ the file server -- NLST provides a standard formatted directory of files, independent of the underlying implementation. By contrast, Apache dumps some HTML.

WebDAV ("Web Folders) was meant to address complex file system operations under the rubrick of HTTP. Thus far, it hasn't been much of a success. It most likely never will be. Thus, FTP is used.

But FTP is built on TCP, and this introduces a problem: The affects of latency upon the underlying TCP error handling protocol. TCP implementations are notoriously untuned for the case of high bandwidth, high latency. They're built to assume the lack of a response implies either congestion on the line or packets being dropped; either way, implementations tend to scale back. Significant work has been done to address this case, mostly on the behalf of Satellite systems (the ultimate in high latency, high bandwidth access). Mostly, the idea is to expand window size (the amount of data that each side is allowed to send before it must receive an acknowledgement) to match the amount of data that's literally hanging amidst space and time on its way to its receiver. But this is a very hard problem, one of the few that the architecture of TCP has quite a bit of trouble scaling to handle.

NASA went to a bulk transfer protocol, partially because interactive performance across large distances is problematic. But the bulk transfer protocol itself is based upon an interactive error management protocol. It'd be interesting to repurpose an established protocol for error-handled bulk transfers for just this use...I'm certain one of the "reliable multicast" architectures out there would be an astonishingly elegant solution.

That's not to say they made the wrong choice with FTP -- particularly if they tuned their stacks well, and encapsulated themselves amidst lower layer security, great job! Just that there's lots of work in this arena left to do.

If I remember right, Vint Cerf and a couple of his colleagues were working on IP protocols suited for communication between Earth and Mars. We're talking *minutes* of latency! Now that'll be a hell of a hack :-)

Yours Truly,

Dan Kaminsky
DoxPara Research
http://www.doxpara.com

Simplification for the general public

[Goonie]

I think the point is that they're going to use TCP/IP as the basic communication protocol between the satellite and the ground. I think FTP was basically a "for-instance" they were using to describethe type of thing they would use - but, then again, there's no reason why they couldn't run an FTP server on the satellite for retrieving data (though I'd run SCP methinks...)

Conceivably, you could even control the satellite by ssh'ing into it and running various command-line apps. If you wanted to be really cute, run a web server on the satellite and make it controllable with web forms... but that strikes me as just a little over-elaborate :)

For security purposes, they mention using "standard commercial applications" to encrypt the link. Presumably that means they're running a VPN of some description. As an additional security measure, you'd presumably want to hide the thing behind a firewall and give it a non-global IP address (somewhere in the 192.168.*.*'s, presumably) so that it simply can't be reached from the wider internet, and then (if it was *really* necessary) set the firewall up so that the appropriate people can tunnel through.

Actually, it would be interesting if we could get a /. interview with one of the people behind this satellite (and grill them about their security measures). Roblimo, are you listening?

Protocol choice

[tigress]

Personally, I find it very intriguing that they've chosen FTP as the protocol, though it does make a lot of sense. Most of what the sattelite is intended to do will be done in a pre-determined manner. Very little will be done in real-time. As a result, most instructions will be able to be scripted, and FTP is an excellent way of uploading scripted instructions to the sattelite. TFTP would've been even better, had it not been for the lack of access controls.

Now, that much said, when do you think we'll see the first DDoS of zombie spaceprobes? =)

TCP/IP is TERRIBLE in space

[cheesedog]

There is a reason satellites don't commonly use TCP/IP: it performs HORRIBLY over high latency, high BER links. This is because TCP makes the assumption that ALL data corruption is due to congestion, and thus its backoff algorithm throttles way back when errors are actually caused by a noisy link. Likewise, the high latency of a satellite link (rougly around 500 ms RTT) causes TCP to send unneccessary retransmits, etc.

And, this isn't the first satellite to use TCP/IP, by the way. TCP/IP has been run over satellite links numerous times, most often to demonstrate TCP's shortcomings in relation to better methods.

note: that's not to say that TCP/IP isn't a fine protocol -- it's a perfectly reasonable way to do things on a low BER, low latency network (i.e., the majority of networks we commonly use). I'd have the same criticisms of someone trying to run, for example, SCPS on a terrestrial network. It's the wrong tool for the wrong job.

According to Airplane II

[TheConfusedOne]

SSH is the protocol they kept using to open and close the doors on the moon base. :-D

You missed a few...

[TheConfusedOne]

They'll need the 30+ mile long poles to hit Ctrl+Alt+Del...

On the Unix side -
That "No route to host" error becomes more meaningful.

"Uptime" will relate to orbit, not system.

Re:Bad ping times

[arvindn]

High latency is not a problem specific to the use of TCP. If you've got a high latency, you're stuck with it whatever mechanism you use because it's dictated by the speed of light.

OTOH, doesn't TCP use alot of SYN, ACK etc. to establish/close a connection? This could be a problem because it multiplies the round trip time which could have been avoided by using a special purpose protocol.

I'm also wondering if there would be a high error rate because of atmospheric disturbances and such. If so, TCP would be really useful because you get error correction for free.

The International Space Station Already Has This

[cybrpnk2]

The Ground Systems Department at NASA Marshall Space Flight Center has a "new" system called Telescience Resource Kit (TReK) that allows experimenters to hook personal computers in their home labs up to experiments they are running aboard the International Space Station. The main entrance page is here, but most of the links are password protected...

Re:MIPS computer with several OSs

[fdisk3hs]

Not sure why I'm not being modded up, but the link details all of the technical specs of OS and hardware, as well as the code and networking info. Shines quite a bit of light on the story... Surprised the original poster didn't look this far...

LR

but they do have ssh on it

[smartfart]

...And I have a shell account, haha! Email me and I'll ask the admin about getting you one, too: spacejunk@satellite.nasa.gov

Re:Wacky brit!

[wackybrit]

Hmm, did I hear my name called? :-)

~~

By the way, this story is a dupe, and I don't think anyone else has called on it yet. It was posted several months ago under a topic of something like '.mars is coming.' and talked about how satellites around Mars would use TCP/IP.. just like, er, this article.

Re:I wonder what the firewall rules will be?

[Russ+Steffen]

Don't be silly. You can't run Cat5 into space, it's too long of a run. This is definitely a job for single-mode fiber

Astrophysics Programming

[VoidEngineer]

So, in college, I worked with some astrophysicists at the Enrico Fermi Institute, which is where they build nuclear powered satellites, and took some classes from professors at at The Laboratory for Advanced Space Research, which is responsible for building such satellites/spacecraft as Ulysses, Pioneer 10 & 11, Cassini, StarDust, and Argos.

Anyhow, from talking with folks at the EFI and LASR, the general answer to everybody's questions is: latency and noise. Remember, this is a Cosmic Hot Interstellar Plasma Spectrometer, which means that it's going to be sent away from the earth, and eventually be millions and billions and trillions + miles away. The longer that it works, the more latency is going to build up... So, the programming needs a very non-interactive protocol. If this thing goes interstellar, it could take days and weeks for packets to travel from Earth to CHIPS and back.

Remember, it takes 4 minutes for light from our closest neighboring star to reach earth, traveling at, well, the speed of light. In all probability, this CHIPS will be using radio frequencies which are much, much slower. (I could be wrong, but I would be surprised if they had hacked some type of interstellar laser guidance system... )

Anyhow, they write scripts for this kind of mission, and generally operate with a big time lag, to the extent that it's sort of like typing with your computer monitor turned 'off'. That is, they'll figure out what they want the satellite to do for the next week or next month, type up a script, and 'submit' it to CHIPS. A couple of hours/days/weeks later, CHIPS will receive the script and start working. This kind of astrophysics programming generally involves being able to project into the future (temporally), and to know that in {x} days, the satellite will be past Mars, in {x+a} days, it'll be past the asteroid belt, in (x+a+b} days, past Jupiter, in {x+a+b+c} days, past Saturn, and so forth. It also requires good file keeping and record keeping, so that you know how many days {n} into the project you are, so you can calculate {n-x}, which gives you the time window for submiting an FTP control sequence.

Other than that, yeah... they can dir things and get thing. Depends on the exact implementation, but you have the concept.