Automotive Cybersecurity

Background and scope of application

With the advancement of automotive technology and the integration of multiple technologies, the automotive industry has ushered in a new wave of technological change. Automobiles are developing towards electrification, intelligence, networking, and sharing, among which networking means the interaction between cars and networks, which also gives "hackers" the conditions for invading the network to manipulate cars.

ISO 21434 "Road Vehicle Cybersecurity Engineering" is a vehicle cybersecurity management guidance document for the entire supply chain of the automotive industry (OEMs and suppliers at all levels). Its purpose is to guide relevant organizations in the industry to: define cybersecurity policies and processes; managing cybersecurity risks; Promote a culture of cybersecurity.

Scope of services:

System and product Cybersecurity certification
- Cybersecurity governance assessment
- Cybersecurity process assessment and certification
- Product, manufacturing, and operational assessments

Monitor regularly
- Regular Cybersecurity governance assessments (at least annually)
- Regularly evaluate operational processes (i.e., activities of the company's red team to analyze vulnerabilities and resource availability)
- Regularly evaluate the on-site configuration management of products
- Regular assessments by the plant and the developer