New features in the Automotive industry like Over The Air updatability (OTA) or the car being able to communicate to several external devices (Car2X) have dramatically increased the possibility of Cybersecurity Attacks to occur in road vehicles.
That is why the ISO and SAE have jointly developed the standard 21434, to provide a guideline on the required processes to be followed by a company, that has decided to develop products that are secure.
The ISO/SAE 21434 provides common terminology, it also defines work products (documents) that can be used as evidence of which Cybersecurity measures were considered during the development of the product and therefore facilitate the certification of the product in regards to Cybersecurity.
The ISO/SAE 21434 is comparable to the ISO 26262, which defines processes to be followed not only during the development but on the complete life-cycle of the vehicle to achieve Functional Safety. ISO/SAE 21434 also supports all phases of the V-Model, including: Requirements Engineering, Design, Implementation, Test and Series Production.
As an independent system house, seneos GmbH has been supporting leading companies across industries since 2008 in the implementation of functional safety norms and standards as well as in the improvement of their system and software development processes.
The service portfolio of seneos ranges from analysis and consulting to operational implementation and the execution of training and education.
Our customers - who mainly come from the automotive and railroad industries, industrial automation and tool manufacturing - benefit from our excellent know-how and the many years of practical experience of our employees.
Yes, as with the increasing number of communications made from the Vehicle to Everything (V2X) as well as added Remote Functions, increase also the number of possible Attacks to the car.
The damages caused to the car (because of lack of cybersecurity) as well as the loss of private information could represent an enorm cost for the company.
Cybersecurity attacks to insecure interface(s) could lead to Safety damage. In case a successful attack causes the car to behave different from what it was programmed.
Financial damage is also possible, either as a result of fines to be paid after customer complaints in the court or because cars on the field shall be re-called to the garage to be updated, so that a critical vulnerability can be taken care. Additionally companies shall consider the loss of confidence in the Brand that such attacks could cause.
SAE 21434 will superseed SAE J3061.
Yes. The United Nations Economic Commission for Europe (UNECE) is working on a legislation for the European Union to the topic „Cybersecurity Management System“ (CSMS). This will make it mandatory for the cars being produced to be certified in order to be allowed for the European Market.
- Consultancy regarding Cybersecurity
- Threat Analysis and Risk Assessment
- Creation of documents according to the ISO/SAE 21434: Road vehicles - Cybersecurity Engineering
We have several years of experience on this area and some successful stories to tell. We are flexible and transparent. We are goal oriented. We are engineers...