TY - GEN
T1 - PRACTICALLY LEVERAGING LLMS FOR MANUFACTURING CYBERSECURITY
AU - Taylor, Curtis
AU - Akbar, Monika
AU - Ciocarlie, Gabriela
AU - Luallen, Matthew
N1 - Publisher Copyright:
Copyright © 2025 by ASME.
PY - 2025
Y1 - 2025
N2 - Cybersecurity in manufacturing faces increasing threats and skilled personnel shortages. Large language models (LLMs), especially multi-modal variants, offer significant potential to rapidly parse complex data and identify vulnerabilities. This study explores the deployment of multi-modal LLMs in manufacturing cybersecurity, emphasizing their ability to bridge knowledge gaps and provide actionable insights. We evaluated offline and cloud-based models across two use cases, an analysis of a 100-page digital thread handbook used at a manufacturing facility, and vulnerability remediation in a manufacturing plant. The results highlight trade-offs between data privacy and model capability in understanding and prioritizing cybersecurity risks. Vision-based LLM limitations were evidenced through diagram analysis failures such as building layouts and network architecture diagrams, underscoring the need for human oversight and model transparency. Specialized cybersecurity embeddings showed promise for nuanced vulnerability analysis but still lack the ability to formally analyze multi-modal documents. Our findings emphasize current strengths, limitations, and pathways for using out-of-the-box LLMs and agentic artificial intelligence (AI) among industrial cybersecurity frameworks.
AB - Cybersecurity in manufacturing faces increasing threats and skilled personnel shortages. Large language models (LLMs), especially multi-modal variants, offer significant potential to rapidly parse complex data and identify vulnerabilities. This study explores the deployment of multi-modal LLMs in manufacturing cybersecurity, emphasizing their ability to bridge knowledge gaps and provide actionable insights. We evaluated offline and cloud-based models across two use cases, an analysis of a 100-page digital thread handbook used at a manufacturing facility, and vulnerability remediation in a manufacturing plant. The results highlight trade-offs between data privacy and model capability in understanding and prioritizing cybersecurity risks. Vision-based LLM limitations were evidenced through diagram analysis failures such as building layouts and network architecture diagrams, underscoring the need for human oversight and model transparency. Specialized cybersecurity embeddings showed promise for nuanced vulnerability analysis but still lack the ability to formally analyze multi-modal documents. Our findings emphasize current strengths, limitations, and pathways for using out-of-the-box LLMs and agentic artificial intelligence (AI) among industrial cybersecurity frameworks.
KW - AI
KW - Cybersecurity
KW - Industrial Control Systems (ICS)
KW - LLM
KW - Manufacturing
KW - multi-modal
KW - Operational Technology (OT)
UR - https://www.scopus.com/pages/publications/105036118041
UR - https://www.scopus.com/pages/publications/105036118041#tab=citedBy
U2 - 10.1115/IMECE2025-165962
DO - 10.1115/IMECE2025-165962
M3 - Conference contribution
AN - SCOPUS:105036118041
T3 - ASME International Mechanical Engineering Congress and Exposition, Proceedings (IMECE)
BT - Advanced Manufacturing
T2 - ASME 2025 International Mechanical Engineering Congress and Exposition, IMECE 2025
Y2 - 16 November 2025 through 20 November 2025
ER -