top of page
Satellite and binary.png

eClypse: Bus-Integrated Hardware Intrusion Detection for Satellites

Onboard cybersecurity requirements are moving from guidance to procurement reality. eClypse is the hardware solution designed from the ground up for the space segment, not adapted from it.

Partnering with Top Space Innovators

carleton_university_logo
ohb_se_logo.jpeg
Magellan.jpg
IDEAS.png

The Problem

 

Most satellites have no cyber security monitoring on the platform itself.
Ground station security has been the industry default for decades. The assumption was simple: secure the perimeter, and the satellite is protected.

​

That assumption no longer holds. Nation-state attacks, software-defined payloads, inter-satellite links, and shared-use constellations have expanded the attack surface well beyond the ground segment. When the perimeter is breached, there is nothing watching what happens inside the satellite.

​

Onboard intrusion detection is now a procurement requirement for operators supporting US national security missions under CNSSP 12. The EU, Australia, New Zealand and Canada are moving in the same direction. eClypse was built to fill this gap.

How eClypse Works

Hardware-based. Bus-integrated. Independent of what it monitors.

 

Funded by the Canadian Department of National Defense through the IDEaS program, eClypse was developed to address satellite security gaps on the ground and in orbit.

Airbus_Challenge_2024_Winner.jpg

​

 

eClypse integrates directly into the satellite bus as a hardware module, providing visibility into the core platform infrastructure that payload-hosted software cannot access. Because it is hardware-based rather than software-based, it operates independently of the system it monitors. An attacker who has already penetrated the satellite’s onboard software cannot access, disable, or deceive eClypse.The hardware module generates telemetry purpose-built to surface security events, not repurposed operational data. That telemetry is delivered to ground operators via a secure out-of-band connection independent of the satellite’s primary communications infrastructure.

 

Because eClypse integrates at the bus rather than the payload, it preserves full payload capacity for mission objectives.

 

Four-feature summary panel:

 

  • Tamper-proof hardware: Integrated directly into the satellite bus. Invisible to an attacker who has penetrated the onboard software.

  • Purpose-built security telemetry: Generates security-specific event data, not repurposed operational telemetry.

  • Secure out-of-band delivery: Security data reaches ground operators through a connection independent of primary comms infrastructure.

  • Payload-neutral integration: Bus-integrated architecture preserves payload capacity for mission use.

One Platform to Monitor & Protect Your Satellite Data

_satellite squarish (1).png

What eClypse Detects

Continuous monitoring across the platform.

Once integrated, eClypse monitors the satellite platform for:

 

  • Alteration of onboard software

  • Hijacking of processors

  • Installation of covert software or command and control mechanisms

  • Changes to critical firmware

  • Adversary tactics and techniques mapped to the SPARTA framework and ESA Space Shield

 

Ground operators receive near-real-time alerts with actionable forensic data to identify the origin and classification of any detected event.

Regulatory Context


Onboard IDS is now a procurement requirement, not a future consideration.

​

CNSSP 12, In Effect Now

The updated US National Space Policy requires onboard intrusion detection for commercial operators whose products or services support US national security or intelligence missions. Operators working with US government customers need a documented IDS solution in today's procurement conversations.

 

EU Space Law, In Review
The proposed EU regulation, currently progressing through the EU legislative process, would require continuous monitoring, active anomaly detection, and prompt detection of cyberattacks throughout the operational lifecycle of all spacecraft.

 

Five Eyes Joint Guidance, March 2026
Canada, the United States, Australia, and New Zealand issued joint guidance on securing LEO satellite communications, calling out continuous monitoring and comprehensive audit log trails with IDS specifically referenced.

Spacecraft Scientist
satellite 2 (3).png

Development Status

eClypse is on a defined path to flight heritage.

Current TRL roadmap:

​

  • TRL 6: Completed. Prototype demonstrated in a Magellan development lab under Canadian Department of National Defence IDEaS funding.

  • TRL 7: Stratospheric qualification flight with Stratotegic Inc., targeting August 2026.

  • TRL 8: In-orbit demonstration aboard EnduroSat’s FRAME S platform, targeting late 2027 and early 2028, under a detailed design agreement signed May 2026.

  • TRL 9: Operational flight heritage and procurement readiness for satellite operators.

Nicholas Scheurkogel, CEO of Dominant Information Solutions Canada (DISC) Inc. 

“Satellite operators should be able to answer the question of ‘Is my satellite compromised’, although most cannot. This gap in onboard cyber security monitoring and detection was DISC's rationale for developing eClypse, to follow security by design principles enabling satellites to reach a Zero Trust security standard. When a satellite's existing security is defeated, eClypse is the missing onboard satellite intrusion detection tool to alert ground station operators of a hack that could easily go unnoticed. This knowledge then informs what actions are needed to quickly remove the threat and restore the operation of the satellite, minimizing the impact (cost) on the operator."

Space


Whether you are responding to CNSSP 12, preparing for EU Space Law, or specifying security architecture for a new mission, DISC can help you understand what eClypse means for your program

Ready to address your onboard IDS requirements?

Get in touch 

bottom of page