FCC, EchoStar Disagreeing Over Satellite Terminal Security Issues

The FCC Public Safety Bureau and EchoStar are in a disagreement over security issues for satellite communications terminals. The bureau, in a filing Tuesday in RM-11664, said it was supplementing a previous EchoStar ex parte filing on a meeting between EchoStar and FCC staff over proposed uses of the 28 GHz and 38 GHz bands. At the meeting, FCC staff questioned fixed satellite service security readiness and provided an IOActive presentation describing numerous security vulnerabilities in terminals, such as back doors, hard-coded credentials, insecure protocols and weak password resets. According to the FCC, EchoStar "stated that it was familiar with the IOActive research paper but indicated it contained some inaccuracies, without elaborating." The FCC, in a footnote in Monday's filing, said its staff "is not aware of any inaccuracies associated with this research."