Final workshop report

This NSF-funded project focuses on the disruption of the supply chains for counterfeit hardware used in critical systems. “Critical systems,” in the context of this project, are defined as systems associated with human safety (e.g., transportation, medical), the delivery of critical services (infrastructure, energy generation), important humanitarian and military missions, and global economic stability. These systems are costly to procure, are generally expected to have a long service life, and as a result, they must be supported for long periods of time.

Although much of the attention on counterfeit parts focuses on traditionally manufactured parts and components, additive manufacturing (AM) is playing an increasing role, particularly in the sustainment of these critical systems. The potential widespread adoption of AM technology represents a marked shift in the production value chain for manufacturers. This shift represents a transition from value residing within the physical parts and structures, built from traditional designs to systems and components produced via additive manufacturing processes, wherein the value resides in the digital technical designs themselves, e.g., technical data packages (TDPs).

For AM to significantly impact the industrial level, a large number of complex, interconnected data-driven events are required. This series of events is referred to as the digital thread. It includes all the information, beginning with the initial design concept and extends to the finished part, constituting all the information that enables the design, modeling, production, use, and monitoring of the individual part. This means that value in the production process will now rest largely within these digital design files and data, rather than the physical output and equipment.

While the ability to produce parts and structures anywhere there are appropriate facilities and personnel provides great flexibility in the production process, the increasing reliance on digital data creates new challenges and complications (and new opportunities for malicious actors). That is, breaches of the data systems exchanging proprietary technical data packages, enable anyone with access to them and the appropriate equipment to manufacture copies of the proprietary parts or structures. Moreover, with the advent of affordable laser scanners, parts can be more readily reverse engineered to replicate the geometry (form & fit), but not necessarily function. These compromised parts could, in turn, be introduced into the supply chain, either for financial gain or other malicious purposes, without the requisite production controls (materials and processes), testing, evaluation, and qualification, leading to potential safety and liability issues.

The objective of this Workshop is to focus on the unique issues posed by compromised AM parts and components, and how they can be mitigated. Participants will include academics, industry practitioners, and stakeholders from the security community whose concern is disruption and compromise of the supply chain for critical systems. The Workshop will address the following topics:

• AM Technical Data Package (TDP)
  
• Addressing Counterfeit Vulnerability
• Addressing Cybersecurity Challenges of the AM Digital Thread
  
• Counterfeit AM Detection
• Link to full agenda
  

Final workshop report