search menu icon-carat-right cmu-wordmark

A Taxonomy of Cyber Attacks in Smart Manufacturing Systems Through the Perspective of the NIST Cybersecurity Framework Manufacturing Profile

Bethanie Williams and Marena Soulet delivered this poster lightning talk at FloCon 2022 on January 12, 2022. View the poster.

Software Engineering Institute



A revolution in manufacturing systems is underway with smart manufacturing becoming an integral component of the broader push towards Industry 4.0. As the modern manufacturing industry continues to bridge digital and physical environments through the use of Internet of Things (IoT), cloud systems, data analytics, and machine learning, this integration has led to an increase in cyber-physical attacks with ongoing discovery of new security challenges. We present a comprehensive study of the common security challenges and attacks faced by smart manufacturing systems today and use the NIST Cybersecurity Framework Manufacturing Profile as a guideline to address cyber incidents that have occurred within the manufacturing sector. The attack taxonomy we present identifies, defines, and classifies cyber-attacks in the smart manufacturing sector and will aid both researchers and manufacturers to determine which business function(s) is/are at risk as a result of such attacks and take protective measures accordingly.

As a CyberCorps SFS Scholar and graduate student attending Tennessee Tech, Marena Soulet is currently researching security in smart manufacturing. In her spare time she enjoys hiking and swing dancing.

Bethanie Williams is also a graduate student at Tennessee Tech. She is a full-time research assistant at the university and a part-time intern at Sandia National Lab studying cybersecurity in smart manufacturing. She loves learning new things and wants to use technology to serve her community. In her spare time, Bethanie coaches basketball at Algood Middle School and gives basketball lessons to children.

Supplemental Materials

Part of a Collection

FloCon 2022 Assets

This content was created for a conference series or symposium and does not necessarily reflect the positions and views of the Software Engineering Institute.