[ What is ISO ISO/SAE 21434:2021? ]

With the rapid development of new infrastructures such as 5G, artificial intelligence, and the Internet of Things, intelligent connected cars are turning into mobile intelligent network terminals. As a result, the importance of security for the infrastructure installed in the vehicle is being emphasized.

This standard specifies engineering requirements for cyber-security risk management regarding concept, product development, production, operation, maintenance and decommissioning of electrical and electronic (E/E) systems in road vehicles, including their components and interfaces.

A framework is defined that includes requirements for cyber-security processes and a common language for communicating and managing cyber-security risk.

This standard is applicable to series production road vehicle E/E systems, including their components and interfaces, whose development or modification began after the publication of this document.

[ The importance of ISO/SAE 21434:2021 certification ]

• 1. It can be used the term for the cyber-security of a vehicle. In the past, it was difficult to understand cyber risks and how to mitigate them using generic terms that were not specific to the vehicle industry, and the term “cyber-security” was not defined. The term was defined when the ISO/SAE 21434 standard was enacted, effectively promoting vehicle-related cyber-security.
• 2. It serves as a standardized reference for regulatory agencies that can be used to enhance vehicle cyber-security and keep relevant stakeholders safe from cyber-threats and attacks.

[ The benefits of ISO/SAE 21434:2021 ]

• 1. Improved reliability of customers and related stakeholders by acquiring standardized certifications
• 2. Build the necessary cyber-security resiliency for automotive products and spaces
• 3. The basis for providing cyber risk management and management tools related to the automobile industry

[ The Scope of ISO/SAE 21434:2021 ]

Specifically developed to ensure the safety of road users, this standard sets standards for OEMs and vendors at all levels to ensure efficient and effective management of cyber-security risks, such as risk levels and corresponding cyber-security measures, based on the ultimate impact on road users.

This standard provides a standardized cyber-security framework that sets cyber-security as an essential engineering element throughout the vehicle's entire life cycle.

The scope of this standard is :

• 1. Specific Requirements for Cyber-security Risk Management
• 2. Network Security Process Framework
• 3. A common language to help manufacturers and organizations communicate about cyber-security risks

If you have any questions, please contact us at the following email address.

E-mail: info@igcert.org