
Automotive cyber security experts need to be familiar with a wide range of topics and domains, in order to properly assess and design the security posture of their vehicles across an increasingly complex ecosystem. The continually increasing threat of cyber-attacks on vehicles has led to the release of multiple standards, best practices, and guidelines designed to assist OEMs and Tier 1s address these threats and align their cyber security strategies accordingly.
Argus Cyber Security experts are happy to bring you this dedicated automotive standards and compliance blog, which will summarize standards and regulations from a broad range of global agencies, national regulatory bodies, and automotive safety institutions.
Current and Pending Standards Covered in this Blog:
- Overview and Processes
- Incident response procedures
- Development practices
- ISO 26262:2018 Road vehicles — Functional safety
- ISO/SAE 21434 Road Vehicles — Cybersecurity Engineering
- SAE J3061 Cybersecurity Guidebook for Cyber-Physical Vehicle Systems
- NHTSA Cybersecurity Best Practices for Modern Vehicles
- Auto-ISAC Series of Automotive Cybersecurity Best Practices
- IPA Approaches for Vehicle Information Security
- PAS 1885:2018 The fundamental principles of automotive cyber security
- ENISA Cyber Security and Resilience of Smart Cars
- The automotive life-cycle
- In-vehicle Security Design
- Connected modules hardening solutions
- EE Architecture
- Communication Channels
- Cellular network considerations
- 3GPP Confidentiality and Integrity Algorithms for GSM and GPRS
- NIST SP 800-187 Guide to LTE Security
- eSIM GSMA: The SIM for the Next Generation of Connected Consumer Devices
- ETSI EN 303 613 V1.1.0
- Feature-specific communications
- Cellular network considerations
- External Influences
- In-vehicle user interfaces
- OTA update security
- Cyber-physical remote apps – user/dealership apps security
- Sensors and AV
- Government Compliance
- Privacy concerns
- Consumer Privacy Protection for Vehicle Technologies and Services
- General Data Protection Regulation (GDPR)
- Security regulations and best practices
- Privacy concerns