The Systems Engineering Group (SID/Engineering Laboratory) is pursuing a vision where a standards-based digital thread of data fuels the next generation of smart connected manufacturing systems. Data, in standard formats from traditionally “siloed” lifecycle functions, is combined to build knowledge and make decisions to improve the quality, reliability, interoperability, and efficiency of Smart Manufacturing Systems. With the growing digitalization of manufacturing and the associated reliance on digital data, manufacturers, their supply chains, and their customers are exposed to many and varied digital threats. Ensuring that data of the correct type and version is authorized for the intended use and came from the expected data owner/sender is paramount, especially in regulated industries. Our early work focused on including data traceability information inside standard data exchange files. We then explored including data traceability information in a secure external repository such as a blockchain. We are now building a software solution that would allow actors at any level of the supply chain to investigate the propagation of tampered data through heterogeneous systems using model-based integration methods (i.e., data mappings).
Data tampering—either intentional (i.e., cyberattacks) or unintentional (e.g., human or system error)—can lead to serious consequences in the physical world, such as structurally weaker or functionally different parts. The complexity of today’s goods and the distributed nature of supply chains involves a significant number of heterogeneous information systems operating on both business and engineering data. These systems are integrated to consume data from each other in a high-volume and fast-paced environment where tampered data can be quickly propagated across many systems and organizations. We leverage open standards and model-based integration specifications to quickly investigate and isolate infected systems.
The NIST Digital Manufacturing Certificate (DMC) Toolkit is designed to show how public key infrastructure (X.509-PKI) from the X.509 standard can be used to embed digital signatures into standard data exchange files for the purposes of certification and traceability. In its first release, the DMC toolkit supports signature and validation of data in the following formats: ISO 10303-21 (STEP), ISO 6983 (G-code), ISO 32000 (PDF) and 14739 (PRC, aka 3D PDF), and Quality Information Framework (QIF). The software offers both the Toolkit as a C# API and a fully-functional demonstration application.
Available software: DMC Toolkit (NIST git repository)
In a complex environment composed of numerous partners and exchanges, auditing traceability embedded in data files is inefficient. To address this and other shortcomings, we presented an initial assessment and early recommendations on how to record product data transactions on a blockchain.
Publications and news: