On the Security of Digital Supply Chain: Attack Vectors and End-to-End Security Frameworks
摘要
Today, Information Communication Technologies are integrated in every aspect of the end-to-end supply chain making it evolve toward what is known as the digital supply chain. This evolution not only brings up numerous advantages but also causes multiple problems that threaten the safety and security of the digital supply chain and its products. We discuss the different attack vectors that are involved in the security and privacy issues of the supply chain. Then, we discuss various cyber supply chain risk management and assessment frameworks proposed by academic and industry researchers to mitigate the identified threats. We consolidate our analysis through a case study of the defense science board task force on cyber supply chain. Finally, we discuss the main challenges that the supply chain and its actors must face for a safe, resilient, and secure ecosystem.