-
- News
- Books
Featured Books
- smt007 Magazine
Latest Issues
Current IssueThe Rise of Data
Analytics is a given in this industry, but the threshold is changing. If you think you're too small to invest in analytics, you may need to reconsider. So how do you do analytics better? What are the new tools, and how do you get started?
Counterfeit Concerns
The distribution of counterfeit parts has become much more sophisticated in the past decade, and there's no reason to believe that trend is going to be stopping any time soon. What might crop up in the near future?
Solder Printing
In this issue, we turn a discerning eye to solder paste printing. As apertures shrink, and the requirement for multiple thicknesses of paste on the same board becomes more commonplace, consistently and accurately applying paste becomes ever more challenging.
- Articles
- Columns
Search Console
- Links
- Media kit
||| MENU - smt007 Magazine
SEMI Consortium to Develop Cybersecurity Strategy and Roadmap for the Semiconductor Industry in NIST Framework
October 1, 2024 | SEMIEstimated reading time: 3 minutes
Seeking to strengthen the semiconductor industry’s resilience to cybersecurity threats, the global association SEMI today announced the creation of a strategic roadmap for cybersecurity implementation throughout the industry. The SEMI Semiconductor Manufacturing Cybersecurity Consortium (SMCC) has partnered with the National Institute of Standards and Technology (NIST) to develop a semiconductor manufacturing industry profile for NIST Cybersecurity Framework 2.0 (CSF 2.0) that will serve as the foundation for the aforementioned roadmap. NIST plans to publish the profile in mid-2025.
SEMI & SMCCAccording to research by the Identity Theft Resource Center, cyberattacks rose by 72 percentage points in 2023 over the previous all-time high in 2021. As semiconductor factories become increasingly connected and autonomous, the industry must respond to the growing security vulnerabilities associated with this next level of digital reliance and align with broader government efforts to secure the building blocks of technologies vital to society.
“Semiconductors are integral to both national security and the global economy – we need to do everything in our power to protect the industry,” said Cherilyn Pascoe, Director of the National Cybersecurity Center of Excellence (NCCoE) at NIST. “NIST is pleased to partner with SEMI SMCC for the development and adoption of a NIST Cybersecurity Framework 2.0 Profile for Semiconductor Manufacturing. This collaboration is important to identify and reduce cybersecurity challenges in semiconductor manufacturing.”
“It’s important to recognize and address the unique cybersecurity challenges facing the semiconductor industry,” said Jennifer Lynn, SMCC Working Group Chair and Semiconductor Cybersecurity Lead at IBM Research. “This community profile could allow us to better identify and execute a path forward.”
In support of the 2023 National Cybersecurity Strategy’s strategic objective to secure global supply chains for information, communications and operational technology products and services, the White House Office of the National Cyber Director (ONCD) included a Cybersecurity Framework Profile as part of initiative 5.5.5 in the National Cybersecurity Strategy Implementation Plan Version 2. SMCC recognized the need for a cybersecurity community profile specific to semiconductor manufacturing and worked with the federal government to develop one.
“Unlike air, space, land, and sea, cyberspace is the only battle domain created entirely by human hands,” said Anjana Rajan, Assistant National Cyber Director for Technology Security at ONCD, during the Global Executive Cybersecurity Forum at SEMICON West 2024. “This means we have both the power and the responsibility to shape it. The future of cyberspace where defenders have an inherent advantage over attackers starts with preparation, and that preparation must begin with securing the building blocks.”
Prior to completion, the community profile will open for public review and commentary in accordance with NIST’s official process. The review period has yet to be announced. The community profile is part of a broader NIST strategy to further standardize cybersecurity protocols for the semiconductor sector, in line with profiles for other industries.
“With the committed resources and support from NIST to support SMCC working groups, we’ll be able to accelerate the development of this semiconductor manufacturing industry community profile creation,” said Brian Korn, Director for SMCC and Staff Technologist focused on Cybersecurity and Automation at Intel Foundry.
SMCC will provide cybersecurity recommendations for semiconductor manufacturing equipment, information on implementation, and updates on the development of the community profile. For more information, visit the project webpage or contact cybersecurity@semi.org.
SMCC working groups are engaged with the SEMI Standards program to create a standards-based approach supporting the semiconductor ecosystem by leveraging the program’s 50-year history of industry alignment. SMCC is currently working on developments to two cybersecurity standards:
- E187: Specification for Cybersecurity of Fab Equipment
- E188: Specification for Malware-Free Equipment Integration
Suggested Items
Feeble ROI in 5G Network Security Market Feeling Sting of Global Economic Slowdown
10/22/2024 | ABI ResearchAccording to ABI Research, a global technology intelligence firm, the slowing of the 5G network rollout in 2023 has had a knock-on effect on the market demand for enterprise cybersecurity.
SAMI-AEC Gears Up for GITEX 2024, Showcasing AI and Smart Technologies
10/14/2024 | SAMISAMI Advanced Electronics Company (SAMI-AEC), a subsidiary of (SAMI), is proud to announce its participation in GITEX Global 2024, taking place at the Dubai World Trade Centre from 14 to 18 October 2024.
HANZA Honored with Cyber Champion Award
10/08/2024 | HANZAHANZA Group has been awarded the prestigious Cyber Champion Award by our Security Operations Center (SOC) provider, Neverhack Estonia, at the Security Summit 2024 in Estonia.
IPC Cyber Disaster Recovery Webinar: Essential Preparedness for Electronics Manufacturers
10/03/2024 | IPCIn today's fast-evolving electronics manufacturing landscape, where digital threats loom large, safeguarding operations requires more than just IT solutions—it demands full production line awareness.
I-Connect007 Editor’s Choice: Five Must-Reads for the Week
04/19/2024 | Marcy LaRont, PCB007 MagazineFor my must-read picks of the week, I’m highlighting Parker Capers, a young professional seeking employment, solid counsel from Dan Beaulieu on what your post-show plan should look like, more information and insight on “chiplets” and the need for secure data transfer standards from columnist Preeya Kuray, as well as Matt Stevenson’s design for reality wisdom. It’s a reminder to download one of our newest books (there are several) you don't want to miss if you are an assembler.