CYBERSECURITY CONCEPT IN AUTOMOTIVE
The cybersecurity concept not only plays an important role in the entire cybersecurity development, but it is also a work product of ISO/SAE 21434 that aims to protect systems against hacks and incidences. In this video course you will learn what the cybersecurity concept is, how to create the cybersecurity concept step by step and its relevance across the supply chain.
Get Clear Guidance on How to Create a Cybersecurity Concept and its Relevance Across the Automotive Supply Chain
While the ISO/SAE 21434 includes cybersecurity concept as a work product, it does not provide clear guidance on how to create one. What is the cybersecurity concept? Is it only relevant for OEMs? In this video course we answer these questions.
First, you will learn what is the cybersecurity concept, which are the main inputs for creation, and how cybersecurity requirements on system, hardware and software level are derived within it.
Then, we will show proposed step by step approach on how to create a cybersecurity concept based on the experience from previous projects as an automotive cybersecurity consultancy.
The approach to create the cybersecurity concept goes over the analysis of cybersecurity goals and stakeholder requirements, allocation of cybersecurity controls, the derivation of cybersecurity requirements, allocation of cybersecurity requirements to elements and finally the allocation of cybersecurity requirements to cybersecurity goals.
Last but not least, we will clarify why developing a cybersecurity concept is not only relevant for OEMs, but also for suppliers.
Hereby, after watching this video, you will be able to identify required inputs and steps needed to create this work product, you will also be able to discuss the cybersecurity concept across the supply chain.
Please note: This video is based on content from ISO/SAE 21434:2021 Road Vehicles – Cybersecurity Engineering.
Hands-on guide for creating a Cybersecurity concept: Read a formulated template in the new ISO/SAE 21434:2021 Workbook (officially licensed by ISO)
At the end of 2023, we have published the ISO/SAE 21434:2021 Workbook. This new publication is designed to simplify practical work with the most important automotive cybersecurity standard, the ISO/SAE 21434. The workbook includes:
- all WPs (and corresponding RQs,RCs and PMs) of ISO/SAE 21434:2021 (“First Edition”) – officially licensed by ISO.
- Field-tested templates (in a formulated explanatory way) for six key work products: Cybersecurity Plan, Cybersecurity Case, Cybersecurity Interface Agreement, Item Definition, Cybersecurity Concept, and Threat Analysis and Risk Assessment.
- A cybersecurity controls catalogue, expert interviews, background information, explanations with a practical perspective across the automotive value chain.
Please find the full table of contents and more information over here.
Understand what Cybersecurity Concept is according to ISO/SAE 21434
Learn what is the cybersecurity concept and its creation process
The cybersecurity concept, in the eyes of ISO/SAE 21434, sets the foundation to protect against hacks and incidences. Therefore, its importance and relevance are out of question. In this video course you will find the much needed guidance to create a strong cybersecurity concept.
Recognize the relevance of the cybersecurity concept across the supply chain
Not having a clear understanding of the relevance of cybersecurity concept across the supply chain would cause the integration of cybersecurity to the final vehicle to fail. In this video course we clearly answer to the question: Is the cybersecurity concept only relevant for OEMs?
Cybersecurity Concept in Automotive – Video course content
What is a cybersecurity concept in the context of automotive development and ISO/SAE 21434? In the first video you will get the learning objectives of this course and why it is important for your daily work.
II. What is a cybersecurity concept?
Here we look at the different phases of cybersecurity development, and where exactly the cybersecurity concept takes place. You will also understand how it relates to the item definition, as well as the cybersecurity goals and the cybersecurity claims as results of the TARA.
III. Cybersecurity concept step by step
ISO/SAE 21434 does not describe the structure or the contents of the cybersecurity concept in detail. So, how do you create a cybersecurity concept? We present the necessary steps in this video.
After explaining the needed steps to create the cybersecurity concept in the previous video, in this video we show the corresponding interaction between OEM and its suppliers.
V. Sum Up
In this last video of the learning course, we will summarize very briefly what we have learned today about the cybersecurity concept.