Secure Command, Control and Communications Systems (C3) for Army UxVs
T. Rebolo, A. Grilo, C. Ribeiro
TL;DR
<3-5 sentence high-level summary>NC2S tackles the security gaps in command and control for unmanned vehicles by marrying a zero-trust, certificate-based identity model with mission-scoped, capacity-aware credentials. The architecture uses mTLS with ECC (ECDSA/ECDH) and lightweight protocols for credential management, renewal, and secure handover, enabling authenticated delegation between GCSs and UxVs even over bandwidth-constrained links. The authors validate a working prototype over Wi‑Fi and tactical HR-5000H radios, demonstrating robust security properties and acceptable performance trade-offs, especially highlighting the need to reserve narrowband radios for secure control while keeping telemetry on higher-bandwidth channels. They also outline a pathway toward scalability, interoperability with existing C4I systems, and enhancements like distributed trust and 5G integration for future field deployments.
Abstract
Unmanned Vehicles (UxVs) are increasingly used in modern military operations for reconnaissance, surveillance, and strike missions, enhancing situational awareness while reducing risk to personnel. Their affordability and rapid deployment have encouraged the adoption of commercial solutions. However, many rely on insecure protocols such as MAVLink, which lack authentication and encryption mechanisms. This paper designed, implemented, and evaluated a new secure command-and-control architecture that ensures confidentiality, integrity, and authentication (CIA) while supporting real-time control delegation between Ground Control Stations (GCSs). The proposed solution, named New Command and Control System (NC2S), enforces a zero-trust model integrating hierarchical credential-based privileges to regulate access and control among Tactical Commanders (TC), GCSs, and UxVs. It employs mutual Transport Layer Security (mTLS) with Elliptic Curve Digital Signature Algorithm (ECDSA) certificates and Elliptic Curve Diffie-Hellman (ECDH) key exchange, while message integrity is ensured through Hash-based Message Authentication Codes (HMAC). Multiple lightweight protocols were developed for credential management, key renewal, and control handover. The NC2S prototype was experimentally validated over Wi-Fi and Rohde&Schwarz HR-5000H tactical radios. Results showed that HR-5000H links introduce latencies roughly two orders of magnitude higher than broadband technologies (e.g., Wi-Fi or 5G&Beyond technologies) but are still able to maintain stable communication with minimal message loss, making them suitable for the NC2S links among TC terminals and GCSs.