Cyber Security

SCRM Links

The following links are provided as a courtesy. They should not be interpreted as an endorsement of the named organizations' products or services.


Wikipedia: Supply chain risk management
Wikipedia: Supply chain
Wikipedia: Risk management
Wikipedia: Supplier
Wikipedia: Vendor
Wikipedia: Software assurance
Wikipedia: Governance

Defense Department

Defense Science Board: Cyber Supply Chain
OSD: Joint Federated Assurance Center
DARPA: Supply Chain Hardware Integrity for Electronics Defense (SHIELD)
DARPA: High-Assurance Cyber Military Systems (HACMS)
DARPA: Cyber Assured Systems Engineering (CASE)
DARPA: System Security Integrated Through Hardware and Firmware (SSITH)
Air Force: Optimizing Acquisition Strategy of Secure and Reliable Electronic Components

Intelligence Community

CNSS Directive 505: Supply Chain Risk Management
Intelligence Community Directive (ICD) 731 Supply Chain Risk Management
Intelligence Community Standard (ICS) 731-01 Supply Chain Criticality Assessments
Intelligence Community Standard (ICS) 731-02 Supply Chain Threat Assessments
Intelligence Community Standard (ICS) 731-03 Supply Chain Information Sharing

Federal Government

NIST: Supply Chain Risk Management Practices for Federal Information Systems and Organizations
DHS: National Strategy for Global Supply Chain Security
DHS: Cyber Assessments, evaluations, and Reviews
ODNI: Supply Chain Risk Management


University of Maryland: ICT Supply Chain Risk Management
University of Maryland: CALCE
University of Maryland: CALCE Symposiums
University of Maryland: SCMC
BYU: Organizational commitment and governance for supply chain success
MIT: Emerging Trends in Supply Chain Governance
Morgan State University: CREAM
Stony Brook University: DNA Marking and Authentication
University of Connecticut: CHASE
University of Lehigh: CSCR
University of Southern California: SURE

Internet Resources

7 things you should consider before writing any supply chain policy
Governance, Leadership and Ethics in Supply Chain
Scott Madden: Supply Chain Governance
Deloitte: Supply Chain Risk Management: Taking a C-suite View
3 Key Strategies to Mitigate Modern Supply Chain Risks
5 Critical Supply Risk Mitigation Principles for Your Sourcing Process
10 Tips to Mitigate Supply Chain Risk
Checklist: 4 Steps Covering Risk Mitigation Through the Entire Supplier Lifecycle
Risk Mitigation in the Supply Chain
10 Best Practices for Supply Chain Vendor Management
Supply Chain Management (SCM)

Professional Organizations

Electronics Components Industry Association (ECIA)
Independent Distributors of Electronics Association (IDEA)
International Electronics Manufacturing Initiative (iNEMI)

Research Laboratories

Battelle: Barricade
Draper Labs: Military counterfeit electronics


DataDot Technology (DDT): DataDot DNA
Fraunhofer IPM
MITRE: Common Weakness Enumeration (CWE)
SILICON CERT Laboratories
SiliconExpert Technologies