Security of Digital Manufacturing Attack Surfaces, Threats, and Defenses

This set covers the core concepts of digital manufacturing security, including system stages, specific threat goals, case studies like WannaCry and Dr0wned, and physical-layer defense mechanisms.

Digital Manufacturing (DM)

A single networked system that connects design software, machines, sensors, and supply chains where every connection serves as a potential entry point for an attacker.

CAD File

An engineer-drawn digital file created in stage $1$ of the DM pipeline that fully describes the geometry of the part to be built.

Process Planning

The stage where software translates a CAD design into machine instructions, which are a numbered sequence of move-by-move commands.

Machine Controller

A dedicated computer on the factory floor that reads instructions and drives physical components such as motors, cutting tools, and print heads.

Hybrid Machine Tool

A modern manufacturing device that combines additive manufacturing (building material) and subtractive manufacturing (milling material) in one device.

IT/OT Convergence

The connection of physical controllers and hardware (Operational Technology) to the software, networks, and computers (Information Technology) that manage data.

Piracy

A threat goal where an attacker copies a design without authorization, resulting in lost revenue and competitive advantage for the manufacturer.

Counterfeiting

The production and sale of unauthorized copies of a part, resulting in the buyer receiving substandard or unsafe components.

Sabotage

The introduction of hidden defects that cause a part to fail in service, which may not be discovered until months or years after manufacture.

Feature Trees

Workflow histories stored in design software that reveal the entire design process, enabling piracy and sabotage beyond simple geometry theft.

Side-channel attacks

Methods used to reconstruct design files by listening to a printer's sounds, vibrations, or power draw, requiring only physical proximity rather than network access.

The Dr0wned Attack

A demonstrated sabotage attack on a $3\text{D}$-printed quadcopter propeller where an unpatched vulnerability in WinRAR allowed an attacker to reduce the fatigue life of joints.

WannaCry Incident at Honda

A June $2017$ attack on the Sayama plant in Tokyo that exploited unpatched legacy systems, resulting in a $48$-hour production shutdown.

Design Obfuscation

A defense where the designer embeds hidden features into a file that only make sense with the correct printing instructions, making stolen files useless.

Digital Watermarking

A hidden mark embedded in shared file copies that allows a manufacturer to identify which specific supplier leaked a design file.

Embedded QR Code

A security feature where a code is broken into fragments and printed inside a part's material, readable only via X-ray scanning from a specific angle.

Process Monitoring

A physical-layer defense that uses sensor data to check the machine's actual behavior against expected readings in real time to catch sabotage defects.

Network Segmentation

A security control that isolates factory floor controllers from office networks to prevent infections from spreading between systems.

Industrial IoT (IIoT)

A domain where security failures can sabotage a factory, stop production lines, or place defective parts into service.