Featured Video
This Week in Quality Digest Live
Innovation Features
Shaun Wissner
Enabling industrial manufacturers to harness the untapped potential of data
Laurel Thoennes @ Quality Digest
‘It would be the first time we as scientists can put our hands on this problem of consciousness.’
Scott Gottlieb
A plan for digital health devices
Jason Furness
Getting to productive and profitable
Ryan E. Day
Choosing measurement solutions that match needs is key

More Features

Innovation News
Drip irrigation targets the plant and not the soil
New approach uses light instead of electricity
If you want to understand a system, try and change it
Components will be designed from the onset to inhabit multiple configurations during service
More than seven billion lives may depend on it
New interface allows more efficient, faster technique to remotely operate robots
Scientists use a novel instrument to make an X-ray spectroscopic 'movie’ of electrons
System allocates data center bandwidth more fairly, so no part of a web page lags behind others
Data can be used across domains with limitations removed

More News

Pat Toth

Innovation

Protecting Manufacturing Technology and Innovation

Advances in connectivity require advances in cybersecurity

Published: Tuesday, July 11, 2017 - 12:01

Recently a segment on my favorite morning news program stopped me in my tracks. The young and attractive hosts (why are they always so young and attractive?) were demonstrating new appliances, among them a smart refrigerator. The fridge was equipped with all kinds of high-tech features including touchscreen displays, a camera inside that allows you to see the contents, and wi-fi connectivity. You can see inside your fridge while grocery shopping, how convenient! But I must ask, how secure is it?

The internet of things (IoT) is revolutionizing everything from home appliances, nanotechnology, and cloud computing, to manufacturing. Advancements are enabling manufacturers to become more innovative, productive, efficient, and globally competitive. Computers, the internet, and digital devices are positively affecting communication, operations, product developments, and more. But as we increase our connectivity, we must also be aware of the importance of cybersecurity for manufacturers.

Jared Newman recently wrote for Fast Company, “Smart homes and other connected products won’t just be aimed at home life. They’ll also have a major impact on business. And just like any company that blissfully ignored the internet at the turn of the century, the ones that dismiss the internet of things risk getting left behind.”

The importance of cybersecurity for manufacturers

Technology has evolved and empowered manufacturers in a variety of ways, and companies have become increasingly reliant on computer systems and IT. Because of this, cybersecurity has emerged as such a critical topic in the industry. Strong cybersecurity practices are crucial to:
• Defending your company’s vital data and information
• Preventing theft or damage to your infrastructure, equipment, and systems
• Avoiding major disruptions to operations and the delivery of products
• Protecting your employees’ personal information
• Shielding your organization from negative publicity

Manufacturers are unfortunately a frequent target of hackers and attackers. According to a report from the U.S. Department of Homeland Security, manufacturing is the second highest industry with the most reported cyber attacks, only trailing behind the energy sector. Foxconn, an international manufacturer of electronics, was attacked in 2012, and all of its employees’ login information was released publicly. A Honda breach in 2010 resulted in the disclosure of personal vehicle identification numbers.

Three tips for improving cybersecurity

Cybersecurity is a complex issue, and there are no “quick fixes” to address it. IoT has made security an even more difficult challenge. However, there are things you can do to improve your cybersecurity posture. Here are three important factors to consider:
1. Be proactive about prioritizing cybersecurity initiatives. Lapses in cybersecurity are very costly. An IndustryWeek article, “Cyber Security on the Factory Floor,” highlighted studies showing that “the average cybersecurity data breach costs more than $3 million.” Don’t wait to get hit.
2. Prepare for the worst. In a Manufacturing Business Technology article highlighting the biggest cybersecurity issues facing manufacturers in 2016, cybersecurity professional Andrew Ginter said, “The biggest mistake I see routinely is an overemphasis on vulnerabilities in cyber-risk assessments, rather than attacks.”

Don’t just focus on the short-term—your organization needs a developed contingency plan in the event of an attack. Conducting a simulation of an attack has been beneficial for manufacturers looking to develop a comprehensive plan.
3. Communicate with employees and vendors. Human error occurs, which is why everyone from the CEO and down should be trained about cybersecurity and data protection. Include policies in your employee manuals and regularly have your staff trained on best practices.

Digital manufacturing pilot

The National Institute of Standards and Technology (NIST) Manufacturing Extension Partnership (MEP) is working to improve cybersecurity for small- and medium-sized manufacturers across the United States. NIST MEP has partnered with the Digital Manufacturing and Design Innovation Institute (DMDII) to operate a joint digital manufacturing pilot. This pilot will address technical opportunities and challenges, and also assist manufacturers with a basic understanding and implementation of digital manufacturing approaches.

In addition to improving cybersecurity, the partnership will address specific topics under the digital manufacturing umbrella, including innovative engineering approaches and improved supply chains operations.

As the IoT evolves and becomes a fixture in manufacturing, cybersecurity will continue to be an issue that small manufacturers must address. Every time you connect a device to the internet, ask yourself, “How secure is it?”

First published April 14, 2017, on NIST's Manufacturing Innovation blog.

Discuss

About The Author

Pat Toth’s picture

Pat Toth

Pat Toth is a supervisory computer scientist in the Applied Cybersecurity Division at NIST, where she serves as the Small Business Outreach Lead. She is currently on a detail assignment to the NIST Manufacturing Extension Partnership (MEP) providing cybersecurity guidance to small manufacturers.