Abstract
Recent research shows that a side-channel attack on a 3D printing process can bypass encryption-based defenses to obtain proprietary design information. This result has critical implications for outsourced additive manufacturing (AM). Three complementary cyber-risk management guidance specifications can help point the way for customers of AM services in protecting against such attacks when the usual defenses are inadequate. This paper provides an overview of the three specifications, discussing what each provides. It then shows how the technology-agnostic specifications can be used in conjunction with attack taxonomies and threat classifications from the AM security research literature, and knowledge of AM technology, to determine which safeguards to implement to mitigate the risk of a side-channel attack scenario. The takeaway from this investigation is that there is more to AM security than encryption. A risk-based process, supplemented with AM-specific knowledge of the manufacturing process and its security risks, is also needed to help find appropriate alternatives when technical controls are not an option.
Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
