ISO publishes connected cars standard

International standards organisation, ISO, has today published a standard addressing the cyber security of electrical and electronic systems in road vehicles.

ISO/SAE 21434, Road vehicles – Cybersecurity Engineering has been designed to help manufacturers stay abreast of changing technologies and cyber attack methods, and defines the vocabulary, objectives, requirements and guidelines related to cyber security engineering for a common understanding throughout the supply chain.

The standard, developed in collaboration with SAE International, draws on the recommendations detailed in SAE J3061, Cybersecurity Guidebook for Cyber Physical Vehicle Systems.

Dr Gido Scharfenberger-Fabian, convenor of the group of ISO experts that developed the standard, said it will enable organisations to define cyber security policies and processes, manage cyber security risk and foster a cyber security culture.

“ISO/SAE 21434 will help consider cybersecurity issues at every stage of the development process and in the field, increasing the vehicle’s own cybersecurity defences and mitigating the risk of potential vulnerabilities for every component,” he said.

“What’s more, the framework provided in this standard will enhance the collaboration on cybersecurity within the industry and thereby lead to technology and solutions that better meet today’s and tomorrow’s cybersecurity challenges.”

Jack Pokrzywa, director of global ground vehicle standards at SAE International, added: “We are pleased to see the fruits of this unique collaborative partnership between SAE and ISO. We see this standard as a critical tool in the arsenal of cybersecurity professionals and product developers around the globe.”

    Share Story:

Recent Stories


Cyber physical risks
Property damage as a consequence of cyber attack is often excluded from standard property policies, but as the industrial internet of things expands, so too do the risks. This podcast examines the evolving threat landscape. Published October 2021

Financial institutions were early adopters of cyber security and insurance. Are they still on top of the game?
Managing huge amounts of sensitive data online makes financial institutions a prime target for hackers. As such, the sector was an early cohort for insurers in creating cyber cover. Since then, the market has evolved almost beyond recognition. It continues to challenge itself to this day, complying with rigorous regulatory demands and implementing avant-garde enhancements to keep abreast of the ever-changing risks. Published June 2021

Advertisement