You need to have JavaScript enabled in order to access this site.

Explain cybersecurity risks within a supply chain.

Explanation includes

counterfeit parts
malicious code injection
use of open-source hardware and/or software
data leakage (either by error or through industrial espionage)
chain of custody tampering
modifications to design components.

Teacher Resources:

Best Practices in Cyber Supply Chain Risk Management, NIST (https://csrc.nist.gov/CSRC/media/Projects/Supply-Chain-Risk-Management/documents/case_studies/USRP_NIST_Intel_100715.pdf Links to an external site.)
Supply Chain Risk Management Practices for Federal Information Systems and Organizations (NIST SP 800-161) (https://csrc.nist.gov/publications/detail/sp/800-161/final Links to an external site.)

Process/Skill Questions:

What is risk?
What is chain of custody, and why is it important?