Update: The ISO/PAS 5112:2022  Road vehicles — Guidelines for auditing cybersecurity engineering has reached its final stage and been officially published by the International Organization for Standardization on March 31 2022.09:21 Whether you are already actively researching ISO PAS 5112:2022 Road Vehicles - Guidelines for auditing cybersecurity engineering or have not yet heard of the specification that will play a... read more →
→ Read full article

"Cybersecurity fails because you haven't bought solution XYZ yet." That's how simple it is in the majority of publications. But in automotive industry practice, it's a bit more complicated. At this point, we want to use our experience from project work with leading international automotive manufacturers and suppliers and try to analyze in more depth the most important barriers around... read more →
→ Read full article

With increasing software updates, the ISO 24089 is here to help in establishing a software update management system (SUMS) and applying software update engineering throughout the vehicles’ lifecycle to enable software quality, cybersecurity, and safety. The newly published standard provides standardization of software updates on a global level. In addition to ISO 24089, UN Regulation No. 156 (as a UNECE-WP.29-regulation)... read more →
→ Read full article

Okay, standards, regulations, fine. Now we're going deeper into the automotive development itself. We have now reached the cybersecurity development phase, or more precisely the concept phase, and are beginning to deal with the Threat Analysis and Risk Assessment Method (TARA), including Cybersecurity goals and Cybersecurity claims. What is this all about? [...]
→ Read full article

With the rise of new connected technologies and the establishment of digital components and systems in the vehicle, addressing cybersecurity has become one of the most urgent challenges for the automotive industry. This complex landscape requires not only robust security measures within the car's software but also careful consideration of the potential vulnerabilities introduced by aftermarket accessories. Tesla, for instance,... read more →
→ Read full article

A few weeks ago, the CYRES Academy Online Learn Platform was launched, the world's first Automotive Cybersecurity Online Courses learning platform exclusively for practice-relevant knowledge around automotive cybersecurity. Besides automotive cybersecurity training and their respective automotive cybersecurity certification within the ACP framework, the platform offers a growing number of video courses, on specific topics. In the following, we present the... read more →
→ Read full article

ISO/SAE 21434 is considered a milestone for the automotive industry regarding cybersecurity. As of today, ISO/SAE 21434 has the new status "International Standard published". What does this mean for the industry? We provide an overview in the following article and in a upcoming info webcast for which you can register free of charge. First of all, the most important questions... read more →
→ Read full article

All Parties involved in automotive development projects are aware of the fact that cybersecurity must be adequately implemented holistically throughout the entire development project. However, the question is: How does this succeed in practice? In this blog, we try to give an overview and provide six tangible tips for implementation in practice. [...]
→ Read full article

What is software update management system (SUMS)? The basis for the Software Update Management System (SUMS) consists of two parts – UNECE’s Regulation No. 156, in which requirements towards the vehicle type are tested and certified and the international standard ISO 24089 Road vehicles – Software update engineering which is an industry-developed framework. In the following you will find an... read more →
→ Read full article

The upcoming automotive cyber security standards and regulations (first of all ISO/SAE 21434 as well as UN Regulation No. 155) challenge the entire automotive value chain to holistically understand and fully provide cyber security along the vehicle product life cycle. And this is already happening today, with relevant regulations already in effect. [...]
→ Read full article