The NIST Trust and Provenance in the Semiconductor Supply Chain Workshop will be held as an in-person on Tuesday, April 15, 2025 at the NIST National Cybersecurity Center of Excellence (NCCoE) conference facility, in Rockville, MD. This one-day event aims to bring together technical experts from industry, academia, and the government to discuss drivers, need, methods and process to establish trust and provenance across the semiconductor supply chain. The workshop will solicit and obtain valuable feedback from the community to prioritize opportunities to enhance the security and provenance of the microelectronics components and products across the supply chain till end of life.
The one-day event will feature plenary, panel, and interactive breakout sessions. Participants are expected to collaborate and discuss key questions and topics that will identify short-term (less than 1 year) and longer-term activities related to the supply chain trust and provenance. The questions that will be considered include, but are not limited to:
- What are the primary concerns facing the industry, government, and academia in relation to trust and provenance?
- What are (some) existing solutions to trust and provenance?
- What are the technological and operational challenges in adopting these solutions?
- What (specific) aspects of the semiconductor supply chain need to be addressed in priority? (e.g., sourcing of raw materials, manufacturing processes, component distribution, 3rd party IP, mandates, standards, etc.)
- What are critical supply chain stages where trust and provenance must be verified?
- How can industry, academia, standards development, and government collaborate effectively to achieve the short-term and long-term goals?
- What are the barriers to collaboration, and how can they be overcome?
- Can we establish an initial roadmap for collaboration and path to success?
- What mechanisms/consortiums/forums can we leverage to collaborate?
Key findings/decisions will be published in a post-workshop report.
