Framework for Identifying Cybersecurity Risks in Manufacturing
- Sandia National Lab. (SNL-CA), Livermore, CA (United States)
- Univ. of California, Berkeley, CA (United States)
- Purdue Univ., West Lafayette, IN (United States)
Increasing connectivity, use of digital computation, and off-site data storage provide potential for dramatic improvements in manufacturing productivity, quality, and cost. However, there are also risks associated with the increased volume and pervasiveness of data that are generated and potentially accessible to competitors or adversaries. Enterprises have experienced cyber attacks that exfiltrate confidential and/or proprietary data, alter information to cause an unexpected or unwanted effect, and destroy capital assets. Manufacturers need tools to incorporate these risks into their existing risk management processes. This article establishes a framework that considers the data flows within a manufacturing enterprise and throughout its supply chain. The framework provides several mechanisms for identifying generic and manufacturing-specific vulnerabilities and is illustrated with details pertinent to an automotive manufacturer. Finally, in addition to providing manufacturers with insights into their potential data risks, this framework addresses an outcome identified by the NIST Cybersecurity Framework.
- Research Organization:
- Sandia National Lab. (SNL-CA), Livermore, CA (United States)
- Sponsoring Organization:
- USDOE National Nuclear Security Administration (NNSA)
- Grant/Contract Number:
- AC04-94AL85000
- OSTI ID:
- 1340252
- Report Number(s):
- SAND-2014-19551J; PII: S2351978915010604
- Journal Information:
- Procedia Manufacturing, Vol. 1, Issue C; Conference: 43. North American Manufacturing Research Conference, NAMRC 43, UNC Charlotte, NC (United States), 8-12 Jun 2015; ISSN 2351-9789
- Publisher:
- ElsevierCopyright Statement
- Country of Publication:
- United States
- Language:
- English
Web of Science
An intelligent machine monitoring system for energy prediction using a Gaussian Process regression
|
conference | October 2014 |
Guidelines for Failure Mode and Effects Analysis (FMEA), for Automotive, Aerospace, and General Manufacturing Industries | reference-book | March 2003 |
Security and Privacy Controls for Federal Information Systems and Organizations | report | April 2013 |
A Security Framework for Cloud Manufacturing
|
conference | October 2014 |
Similar Records
Cybersecurity Resiliency of Marine Renewable Energy Systems Part 2: Cybersecurity Best Practices and Risk Management
Dragonstone Strategy – State of Cybersecurity in the Oil & Natural Gas Sector