- Talent gap complicates cost-conscious cloud planning
- After years with Windows, I used the MacBook Air M4 for one week. Here's how it went
- El 75% de los bancos aumentará la inversión en tecnología de riesgos
- What's new in iOS 18.4? AI priority notifications and 9 other big updates
- Cisco takes inspiration from Iron Man for its AI-driven platform engineer
How Digital Signatures Provide the Necessary Safeguards to Restore Trust in The Manufacturing Process
History has taught us that trust must always be complemented by verification. It is replete with examples demonstrating the importance of pressures of greed over taking ethical practices even in dealings involving highly reputed and seemingly dependable parties. It is then incumbent upon chief operations officers (COO’s) to enable critical mechanisms that ensure accountability, transparency, and ethical compliance in the processes and regularly monitor and review them in terms of ensuring best practices.
A summer 2023 incident involving the aviation sector which impacted both GE Aerospace and its partner, Safran, is a good example of why this is true. It turns out that a supplier of theirs, London-based AOG Technics, was selling thousands of aircraft engine parts with forged documents and falsified Authorized Release Certifications (ARCs). These unverified components potentially compromised safety standards in jet engines manufactured by GE Aerospace and Safran’s joint venture, CFM International, which supplies engines for commercial aircraft. This alarming incident underscores the risks big manufacturers face due to third-party malpractice.
Trust in Data
The episode also highlights the critical importance of ensuring the integrity and verification of information in business transactions. While strong relationships between parties are essential, it cannot replace the need for verified and reliable data. By prioritizing transparency and implementing robust verification mechanisms, businesses can protect their operations and uphold safety and compliance standards.
With the advancements of Artificial Intelligence (AI), COOs must rigorously evaluate the trustworthiness of information within their supply chains, especially for critical and safety-sensitive products and services. They should ask whether the data supporting their decisions can be trusted and identify steps to enhance its reliability. This includes validating the identity of the source of information and ensuring integrity of the data being exchanged. By proactively implementing measures for this, COOs can minimize risks, ensure supply chain integrity, and protect their organizations from potential safety and reputational damage.
How Enhancing Identity Can Improve this Process
Another method of increasing trust is through the use of digital signatures, a robust solution for enhancing the assurance of information in business transactions. Based on widely relied upon technology, Public Key Infrastructure (PKI), digital signatures cryptographically bind the identity of the source to the data—whether emails, documents, or be it any system-to-system communications—ensuring authenticity, reliability, and non-repudiation. As a result, recipients can confidently verify the origin and integrity of the information, reducing the risk of tampering or forgery. This is the reason digital signatures have been mentioned as one of the key recommendations by The Aviation Supply Chain Integrity Coalition. Consisting of global leaders across the aerospace industry, the group aims to help prevent unauthorized propulsion parts from entering the aviation supply chain, thus strengthening its overall integrity – hopefully preventing an incident similar to what took place at the GE Aerospace and Safran’s joint venture.
Implementing digital signatures not only enhances trust in processes but also provides a critical defense against phishing, especially Business Email Compromise (BEC) attacks. Some recent examples involve attackers exploiting the templates of popular tools and services to send fraudulent yet convincing phishing emails targeting financial transactions. This unusual but highly effective attack vector underscores the importance of employing technology such as digital signatures to secure system-to-system communications. By ensuring that your users can differentiate information from authenticated and authorized entities, businesses can significantly reduce their exposure to phishing scams and financial fraud.
Incidents like the one that occurred at AOG Technics serve as stark reminders that information absorbed in any system require strong safeguards. By adopting the proper technology and prioritizing transparency, organizations can not only protect their operations but also demonstrate their commitment to integrity and accountability. In an era where risks are evolving rapidly, these measures are not just defenses—they are essential steps toward building a future where trust and security go hand-in-hand.
About the Author
Mohit Kumar is the Vice President of Product Development at GMO GlobalSign. He joined GlobalSign as a Product Owner in 2018 at the company’s office in New Delhi. He now works out of GlobalSign’s U.S. office in Portsmouth, New Hampshire. Mohit can be reached online at [email protected] and https://www.globalsign.com/en
