YOU ARE DOWNLOADING DOCUMENT

3D Printing and Cybersecurity - acg.cs.tau.ac.il

Category:

Documents

3D Printing and Cybersecurity - acg.cs.tau.ac.il

Please tick the box to continue:

Transcript
Page 1: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

3D Printing and Cybersecurity

Yair Karin

Page 2: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Additive Manufacturing Workflow

[1]

Page 3: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Attack on/with 3D Printer

[1]

(Threats)

Page 4: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Adversial Goals

• Sabotage of manufactured part

• Sabotage of the AM printer

• Intellectual property (IP) theft

• Can you think of more?

[2]

[8]

Page 5: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Manipulations

[1]

Page 6: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Manipulations

[1]

Page 7: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Manipulations

[1]

Page 8: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Manipulations

[1]

Page 9: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Manipulations

[1]

Page 10: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Manipulations

[1]

Page 11: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Manipulations

[1]

Page 12: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Compromised Elements

[1]

Page 13: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Compromised Elements

[1]

Page 14: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Compromised Elements

[1]

Page 15: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Compromised Elements

[1]

Page 16: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Compromised Elements

[1]

Page 17: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Attack Vectors

• Software Attacks:• General infiltration methods

• Code injection into AM files

• Software supply chain

• Hardware/firmware• Hardware trojans

• Firmware updates

• Network• General network attacks

• Protocol vulnerabilities

And so much more…

Bonus question: what is this?

[7]

Page 18: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

ACAD/Medre.A

• Discovered by eset.

• Steals AutoCAD drawings.

• Written in AutoLISP.

• Over 100,000 designs leaked!

[9]

[4]

[3]

Page 19: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

ACAD/Medre.A

1. User extracts files into directory

2. User opens the .dwg, .fas runs.

3. .fas copies itself to AutoCaddirectory and current project directory (why??).

4. .fas sends the model via email.

5. Further distribution.

.fas

.fas.fas

Page 20: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

An Example – dr0wned

[6]

[5]

https://www.youtube.com/watch?v=zUnSpT6jSys
https://www.youtube.com/watch?v=zUnSpT6jSys
Page 21: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

[1]

Attack Flow

Page 22: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Solution?

• Methods of integrating a signature within the printed object.

• Software security of the entire 3D printing flow.

• Physical tests of the printed object.

• More research! FEA - Finite Element Method

[10]

Page 23: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Questions?

Page 24: 3D Printing and Cybersecurity - acg.cs.tau.ac.il

Bibliography

1. “dr0wned – Cyber-Physical Attack with Additive Manufacturing”.Sofia Belikovetsky, Mark Yampolskiy, Jinghui Toh, Yuval Elovici

2. http://img.etimg.com/thumb/msid-55952298,width-310,resizemode-4,imglength-102138/.jpg

3. https://www.welivesecurity.com/media_files/white-papers/ESET_ACAD_Medre_A_whitepaper.pdf

4. http://www.eset.hk/enews/autocad/en/img/autocad-02e.jpg

5. https://dronebuff.com/wp-content/uploads/2014/08/DJI-Phantom-2-Vision-Plus.jpg

6. https://www.youtube.com/watch?v=zUnSpT6jSys

7. https://cdn.arstechnica.net/wp-content/uploads/2015/02/hd-classes.jpg

8. http://gailbwilliams.co.uk/wp-content/uploads/2016/03/oh-the-horror.jpg

9. https://www.brandsoftheworld.com/sites/default/files/styles/logo-thumbnail/public/0017/8923/brand.gif?itok=FB8tX8KV

10. http://digitaleng.news/virtual_desktop/wp-content/uploads/2011/08/20110823NEi_in_CAD.jpg


Related Documents
Changing Gears 2020 - Global management consulting firm€¦ · Mobile apps 3D printing/ additive manufacturing Cybersecurity Virtualisation Digital engagement (includes omnichannel)
Changing Gears 2020 - Global management consulting...
Category: Documents
Critical Cybersecurity Questions Cybersecurity... · Critical Cybersecurity Questions 1 • How do you measure successful cybersecurity efforts? • Who is accountable for cybersecurity?
Critical Cybersecurity Questions Cybersecurity... ·...
Category: Documents
Amitoje Creations : Digital Printing Delhi, Flex Printing, Vinyl Printing,UV Printing, Canvas Printing, Acrylic Printing, Glass Printing, leather Printing, Delhi, India
Amitoje Creations : Digital Printing Delhi, Flex Printing,.....
Category: Business
CYBERSECURITY ROADMAP CYBERSECURITY OPERATIONS …
CYBERSECURITY ROADMAP CYBERSECURITY OPERATIONS …
Category: Documents
SACCO CYBERSECURITY REPORT 2018 - Serianu · Serianu Sacco Cybersecurity Report 201 Demystifying Cybersecurity for Saccos Demystifying Cybersecurity for Saccos Highlights The past
SACCO CYBERSECURITY REPORT 2018 - Serianu · Serianu Sacco....
Category: Documents
CYBERSECURITY RISK DISCLOSURE AND CYBERSECURITY DISCLOSURE ... · CYBERSECURITY RISK DISCLOSURE AND CYBERSECURITY DISCLOSURE GUIDANCE ABSTRACT Cybersecurity risk disclosure has received
CYBERSECURITY RISK DISCLOSURE AND CYBERSECURITY DISCLOSURE.....
Category: Documents
CYBERSECURITY - Gogo Business Aviationlearn.business.gogoair.com/rs/097-RTO-429/images/... · CYBERSECURITY 1 Solutions brief. CYBERSECURITY: IT’S IN OUR DNA You should take cybersecurity
CYBERSECURITY - Gogo Business...
Category: Documents
Cybersecurity 5 improving cybersecurity
Cybersecurity 5 improving cybersecurity
Category: Technology
Cybersecurity - enquirya.com · to prepare a European Cybersecurity Competence Network & contribute to the European cybersecurity industrial strategy Cybersecurity Partners: 46 EU
Cybersecurity - enquirya.com · to prepare a European...
Category: Documents
ITU’s work in Cybersecurity and Global Cybersecurity ...pubdocs.worldbank.org/pubdocs/publicdoc/.../Vijay...Seminar-18-19-… · ITU’s work in Cybersecurity and Global Cybersecurity
ITU’s work in Cybersecurity and Global Cybersecurity...
Category: Documents
Construction: The Newest Technology Companies · includes the industrial internet of things (IIoT), cybersecurity, virtual and augmented reality, drones, 3D printing, pre-fabrication
Construction: The Newest Technology Companies · includes.....
Category: Documents
HfS Blueprint Guide: Industry 4.0 Services · Three-Dimensional (3D) Printing, Manufacturing Internet of Things (IoT), Plant Cybersecurity, Manufacturing on Cloud, Virtual Reality
HfS Blueprint Guide: Industry 4.0 Services ·...
Category: Documents
Building an Automotive Cybersecurity Testing Lab · Automotive Cybersecurity Summit Importance of Cybersecurity Testing Cannot have safety without cybersecurity. Confirms security
Building an Automotive Cybersecurity Testing Lab ·...
Category: Documents
Introduction to the Computational Geometry Algorithms ...acg.cs.tau.ac.il/events/cgal-socg-2012/cgal_intro.pdf · Goals Promote the research in Computational Geometry (CG) “make
Introduction to the Computational Geometry Algorithms...
Category: Documents
Cybersecurity Assessment Tool//pdf/cybersecurity/FFIEC_CAT_May_2017.pdf · Technology (NIST) Cybersecurity Framework, 2. as well as industry accepted cybersecurity practices. The
Cybersecurity Assessment...
Category: Documents
HfS Blueprint Guide: Industry 4.0 Services · 2018-06-25 · Three-Dimensional (3D) Printing, Manufacturing Internet of Things (IoT), Plant Cybersecurity, ... plant is made smart,
HfS Blueprint Guide: Industry 4.0 Services ·...
Category: Documents
AVIATION CYBERSECURITY - Atlantic Council · 1.3.3 Safety, security, enterprise cybersecurity, and aviation cybersecurity Where aviation cybersecurity crosses the traditional elements
AVIATION CYBERSECURITY - Atlantic Council · 1.3.3 Safety,....
Category: Documents
Cybersecurity Maturity - FFIEC Home Page€¦ ·  · 2017-06-02FFIEC Cybersecurity Assessment Tool Cybersecurity Maturity: Domain 1 May 2017 20 annual cybersecurity self-assessment
Cybersecurity Maturity - FFIEC Home Page€¦ ·  ·...
Category: Documents
China's New Cybersecurity Law and U.S-China Cybersecurity ...
China's New Cybersecurity Law and U.S-China Cybersecurity...
Category: Documents
Cybersecurity as People Powered Perpetual Innovation 2 · cybersecurity and innovation. 2.5 Cybersecurity Cybersecurity is another highly misunderstood topic. People associate it
Cybersecurity as People Powered Perpetual Innovation 2 ·.....
Category: Documents
America’s Election Partner - Runbeck › wp-content › uploads › Runbeck_Product... · 2019-06-06 · 20 Cybersecurity 21 Green Initiative. Printing and Data Services ... Our
America’s Election Partner - Runbeck › wp-content ›...
Category: Documents
EMERGING TECHNOLOGIES IN CYBERSECURITY · EMERGING TECHNOLOGIES IN CYBERSECURITY | Randall Lewis 1 EMERGING TECHNOLOGIES IN CYBERSECURITY ... Cybersecurity and Cybersecurity Technologies.
EMERGING TECHNOLOGIES IN CYBERSECURITY · EMERGING...
Category: Documents
Measuring Cybersecurity Readiness: The Cybersecurity ... · PDF fileMeasuring Cybersecurity Readiness: The Cybersecurity Maturity Model ... Gartner IAM Maturity Model . ... Gartner
Measuring Cybersecurity Readiness: The Cybersecurity ... ·....
Category: Documents
APPLIED aspects of COMPUTATIONAL GEOMETRY A …acg.cs.tau.ac.il/courses/applied-computational-geometry/general/... · COMPUTATIONAL GEOMETRY A Gentle Introduction to ... Sorting +
APPLIED aspects of COMPUTATIONAL GEOMETRY A...
Category: Documents
COMMUNITY COLLEGES - SUNY · The easily accessible, beautiful 218-acre main campus of Westchester Community College contains leading edge labs for 3D printing, health sciences, cybersecurity,
COMMUNITY COLLEGES - SUNY · The easily accessible,...
Category: Documents
national Cybersecurity Workforce Framework 03 2013 Version1 0 for Printing - Copy
national Cybersecurity Workforce Framework 03 2013 Version1....
Category: Documents
MolAxis: Efficient and Accurate Identification of Channels ...acg.cs.tau.ac.il/copy_of_projects/in-house-projects/pathways-in-ball... · Tel Aviv 69978, Israel 2 Department of Human
MolAxis: Efficient and Accurate Identification of Channels.....
Category: Documents
Cybersecurity Workforce CompetenciesIntroduction: Cybersecurity Industry Snapshot Career Opportunities in the Cybersecurity Industry Defining a Common Set of Cybersecurity Professional
Cybersecurity Workforce CompetenciesIntroduction:...
Category: Documents
Canalys worldwide vendor benchmark: cybersecurity · 2019-12-13 · Canalys worldwide vendor benchmark: cybersecurity Top 11 worldwide cybersecurity vendors Worldwide ranking Cybersecurity
Canalys worldwide vendor benchmark: cybersecurity ·...
Category: Documents
Exact Computation of the Adjacency Graph of an Arrangement ...acg.cs.tau.ac.il/people/mhemmer/publications/Michael_Hemmer_PhD.pdfThe platform for the majority of software joint ventures
Exact Computation of the Adjacency Graph of an Arrangement.....
Category: Documents