Featured Product
This Week in Quality Digest Live
Innovation Features
Edd Gent
Increasingly visible and accessible, but with caveats
Matt Fieldman
German system offers tips for U.S. counterparts
Belinda Jones
Reaping the benefits of manufacturing intelligence
Marni Baker-Stein
Closing the education-to-hiring gap

More Features

Innovation News
VSL hosts special edition of show at new center in Rotterdam
Latest line touts comprehensive coverage, ease of use
Same price, double the resolution and accuracy
Low-cost prevention of catastrophic failures
Diagnoses LVDT failures, disconnects, or short circuits
Using noncontact, interferometric technology
Quality doesn’t have to sacrifice efficiency
WFL continues a legacy of success

More News

Pat Toth

Innovation

Protecting Manufacturing Technology and Innovation

Advances in connectivity require advances in cybersecurity

Published: Tuesday, July 11, 2017 - 11:01

Recently a segment on my favorite morning news program stopped me in my tracks. The young and attractive hosts (why are they always so young and attractive?) were demonstrating new appliances, among them a smart refrigerator. The fridge was equipped with all kinds of high-tech features including touchscreen displays, a camera inside that allows you to see the contents, and wi-fi connectivity. You can see inside your fridge while grocery shopping, how convenient! But I must ask, how secure is it?

The internet of things (IoT) is revolutionizing everything from home appliances, nanotechnology, and cloud computing, to manufacturing. Advancements are enabling manufacturers to become more innovative, productive, efficient, and globally competitive. Computers, the internet, and digital devices are positively affecting communication, operations, product developments, and more. But as we increase our connectivity, we must also be aware of the importance of cybersecurity for manufacturers.

Jared Newman recently wrote for Fast Company, “Smart homes and other connected products won’t just be aimed at home life. They’ll also have a major impact on business. And just like any company that blissfully ignored the internet at the turn of the century, the ones that dismiss the internet of things risk getting left behind.”

The importance of cybersecurity for manufacturers

Technology has evolved and empowered manufacturers in a variety of ways, and companies have become increasingly reliant on computer systems and IT. Because of this, cybersecurity has emerged as such a critical topic in the industry. Strong cybersecurity practices are crucial to:
• Defending your company’s vital data and information
• Preventing theft or damage to your infrastructure, equipment, and systems
• Avoiding major disruptions to operations and the delivery of products
• Protecting your employees’ personal information
• Shielding your organization from negative publicity

Manufacturers are unfortunately a frequent target of hackers and attackers. According to a report from the U.S. Department of Homeland Security, manufacturing is the second highest industry with the most reported cyber attacks, only trailing behind the energy sector. Foxconn, an international manufacturer of electronics, was attacked in 2012, and all of its employees’ login information was released publicly. A Honda breach in 2010 resulted in the disclosure of personal vehicle identification numbers.

Three tips for improving cybersecurity

Cybersecurity is a complex issue, and there are no “quick fixes” to address it. IoT has made security an even more difficult challenge. However, there are things you can do to improve your cybersecurity posture. Here are three important factors to consider:
1. Be proactive about prioritizing cybersecurity initiatives. Lapses in cybersecurity are very costly. An IndustryWeek article, “Cyber Security on the Factory Floor,” highlighted studies showing that “the average cybersecurity data breach costs more than $3 million.” Don’t wait to get hit.
2. Prepare for the worst. In a Manufacturing Business Technology article highlighting the biggest cybersecurity issues facing manufacturers in 2016, cybersecurity professional Andrew Ginter said, “The biggest mistake I see routinely is an overemphasis on vulnerabilities in cyber-risk assessments, rather than attacks.”

Don’t just focus on the short-term—your organization needs a developed contingency plan in the event of an attack. Conducting a simulation of an attack has been beneficial for manufacturers looking to develop a comprehensive plan.
3. Communicate with employees and vendors. Human error occurs, which is why everyone from the CEO and down should be trained about cybersecurity and data protection. Include policies in your employee manuals and regularly have your staff trained on best practices.

Digital manufacturing pilot

The National Institute of Standards and Technology (NIST) Manufacturing Extension Partnership (MEP) is working to improve cybersecurity for small- and medium-sized manufacturers across the United States. NIST MEP has partnered with the Digital Manufacturing and Design Innovation Institute (DMDII) to operate a joint digital manufacturing pilot. This pilot will address technical opportunities and challenges, and also assist manufacturers with a basic understanding and implementation of digital manufacturing approaches.

In addition to improving cybersecurity, the partnership will address specific topics under the digital manufacturing umbrella, including innovative engineering approaches and improved supply chains operations.

As the IoT evolves and becomes a fixture in manufacturing, cybersecurity will continue to be an issue that small manufacturers must address. Every time you connect a device to the internet, ask yourself, “How secure is it?”

First published April 14, 2017, on NIST's Manufacturing Innovation blog.

Discuss

About The Author

Pat Toth’s picture

Pat Toth

Pat Toth has more than 30 years of experience in cybersecurity and has worked on various NIST cybersecurity guidance documents, including “NISTIR 7621 Small Business Information Security: The Fundamentals.”