research-article

Open access

Myths and Misconceptions in Additive Manufacturing Security: Deficiencies of the CIA Triad

Authors:

Mark Yampolskiy,

Jacob Gatlin,

Moti YungAuthors Info & Claims

AMSec '21: Proceedings of the 2021 Workshop on Additive Manufacturing (3D Printing) Security

Pages 3 - 9

https://doi.org/10.1145/3462223.3485618

Published: 15 November 2021 Publication History

PDF eReader

Abstract

It is natural, as the demand for Additive Manufacturing (AM) Security grows, to adopt established approaches from other security research areas. However, such "imports,'' if not done carefully, can be misleading, and sometimes even counterproductive, and thus may negatively affect actual security of AM. We argue that this is the case for the CIA triad (Confidentiality, Integrity, Availability), a fundamental model of data security. To this end, we present arguments showing that the CIA triad cannot substitute concrete threat categories already established in AM. AM is an area which is not "pure data," but rather an area involving software, data files, and transforming data into physical artifacts, where established threats in this ecosystem include: Technical Data Theft, Sabotage, and Illegal Part Manufacturing.

Supplementary Material

MP4 File (AMSec21_Yampolskiy_Deficiencies.mp4)

It is natural, as the demand for Additive Manufacturing (AM) Security grows, to adopt established approaches from other security research areas. However, such "imports,"' if not done carefully, can be misleading, and sometimes even counterproductive, and thus may negatively affect actual security of AM. We argue that this is the case for the CIA triad (Confidentiality, Integrity, Availability), a fundamental model of data security. To this end, we present arguments showing that the CIA triad cannot substitute concrete threat categories already established in AM. AM is an area which is not "pure data,"' but rather an area involving software, data files, and transforming data into physical artifacts, where established threats in this ecosystem include: Technical Data Theft, Sabotage, and Illegal Part Manufacturing.

Download
280.49 MB

References

[1]

Mohammad Abdullah Al Faruque, Sujit Rokka Chhetri, Arquimedes Canedo, and Jiang Wan. Acoustic side-channel attacks on additive manufacturing systems. In 2016 ACM/IEEE 7th international conference on Cyber-Physical Systems (ICCPS), pages 1--10. IEEE, 2016.

Abstract

Supplementary Material

References

Cited By

Index Terms

Recommendations

Internet of Things security

AMSec'22: ACM CCS Workshop on Additive Manufacturing (3D Printing) Security

MitM attacks on intellectual property and integrity of additive manufacturing systems: A security analysis

Comments

Information

Published In

Sponsors

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Funding Sources

Conference

Upcoming Conference

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

PDF

eReader

Login options

Full Access

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations