ISO 21434, the Road Vehicles Cybersecurity Engineering standard, is expected later in 2021.
ISO 21434 is expected to help automotive product developers, OEMs and their suppliers to ensure the security of their vehicles. This is critical as vehicles become more connected and with the increase in autonomous cars, it is important that automotive software is designed and implemented with security in mind.
ISO 21434 covers all stages of a vehicle’s lifecycle — from design through to decommissioning by the application of cybersecurity engineering. This applies to all electronic systems, components, and software in the vehicle, plus any external connectivity.
Additionally, ISO 21434 provides developers with a comprehensive approach to implementing security safeguards that span the entire supplier chain.
The intent behind the standard is to provide a structured process to ensure that cybersecurity considerations are incorporated into automotive products throughout their lifetime. Consequently, ISO 21434 will require automotive manufacturers and suppliers to demonstrate due diligence in the implementation of cybersecurity engineering and that cybersecurity management is applied throughout the supply chain to support it.
ISO 21434 has specific requirements for software development including analysis to check for inherent weaknesses and the overall consistency, correctness, and completeness with respect to cybersecurity requirements.
Cybersecurity professionals believe cybersecurity should be at the forefront of all design decisions including the selection of the programming language to be used for software development.
ISO/SAE 21434 is the product of the International Organization for Standardization (ISO) and the Professional Association and Standards Developing Organization for Engineering Professionals (SAE International).
Want to learn more? Tonex offers ISO/SAE 21434 Training, a 3-day workshop covering requirements for cybersecurity risk management regarding engineering for concept, analysis, development, production, operation, maintenance, and decommissioning for road vehicle electrical and electronic (E/E) systems, including their subsystems, components and interfaces.
For more information, questions, comments, contact us.