Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Protecting Additive Manufacturing Information when Encryption is Insufficient

Published

Author(s)

Joshua Lubell

Abstract

Recent research shows how a side-channel attack on a material extrusion-based 3D printing process can bypass encryption-based defenses to obtain proprietary design information. This result has critical implications for outsourced additive manufacturing (AM). Three complementary cyber-risk management guidance specifications can help point the way for customers of AM services in protecting against such attacks – when the usual defenses are inadequate. This paper provides an overview of the three specifications, discussing what each provides. It then shows how the specifications can be used together to determine the appropriate security measures to implement for protection against the side-channel attack scenario. The takeaway from this investigation is that there is more to AM security than technical protection measures. A risk-based process is also needed to help find appropriate alternatives when technical controls such as encryption are not an option.
Citation
Progress in Additive Manufacturing 2021
Publisher Info
ASTM International, West Conshohocken, PA

Keywords

Additive Manufacturing, Cybersecurity, Risk Management, Security Controls, Side-Channel Attack, Technical Data Theft, Outsourced Additive Manufacturing

Citation

Lubell, J. (2022), Protecting Additive Manufacturing Information when Encryption is Insufficient, Progress in Additive Manufacturing 2021, ASTM International, West Conshohocken, PA, [online], https://doi.org/10.1520/STP164420210125, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=933896 (Accessed December 26, 2024)

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created December 1, 2022, Updated January 26, 2023