ISO/SAE 21434: The Newly Released International Standard for Automotive Cybersecurity

The ISO/SAE 21434 - Road Vehicles - Cybersecurity Engineering standard was just released. This document specifies engineering requirements for cybersecurity risk management regarding concept, product development, production, operation, maintenance and decommissioning of electrical and electronic (E/E) systems in road vehicles, including their components and interfaces. The new International standard defines a framework that includes requirements for Cybersecurity processes and a common language for communicating and managing cybersecurity risk. This document is applicable to series production road vehicle E/E systems, including their components and interfaces, whose development or modification began after the publication of the standard.

This standard will immediately gain importance as a key Automotive Engineering standard for a number of reasons, including the high degree of connectivity of automated vehicles and some government regulations such as UNECE WP.29. The ISO/SAE 21434 document is poised to become the umbrella standard that will enable a complete implementation of automotive cybersecurity taking into account hardware, software, over the air updates, OBD, and other aspects including government regulations in an integrated fashion. When compared to the Draft DIS version, the new international standard ISO/SAE 21434 is more streamlined that is easier to follow and understand. This webinar will address these topics and a discussion on its implementation. 

Speaker

Dr.Juan Pimentel

Juan Pimentel - Principal Cyber Security Consultant • Omnex Inc. Juan Pimentel, Omnex principal Cyber Security consultant. He is a member of the US technical Advisory Group for ISO 21448 and writer of the standard. He has extensive Engineering, Safety and Cybersecurity experience. He is also the author of many papers on the safety and security of automotive systems ranging from drive-by-wire systems to ADAS to automated vehicles. He has developed and conducted professional training courses on safeguarding process control systems, safety instrumented systems (SIS), protecting industrial systems including relevant standards (IEC 61508, IEC 61511, and ISO 26262)