ISO/SAE 21434 sets out a framework for effectively managing cybersecurity risks in relation to electrical and electronic (E/E) systems in road vehicles. The increasing prominence of technology and innovation within vehicles continues to broaden the attack surface exposing organisations and end-users to increasingly damaging cyber-attacks and breaches. ISO/SAE 21434 is an important milestone and a solution that will help manufacturers to implement best practice risk management.
Rob Acker, ICT Technical Manager at LRQA said: “The automotive sector sits at the forefront of innovation, however, wherever there is connectivity there is a risk of cyber-attack. As the use of new technology accelerates, so does the severity and volume of attacks.
“The publication of ISO/SAE 21434 represents a new era in automotive cybersecurity, providing manufacturers and the wider supply chain with a framework to effectively manage risks and ensure the highest level of security in vehicles.”
Alongside requiring manufacturers and suppliers to ensure cybersecurity within all electronic systems, components and software in the vehicles, plus any external connectivity, ISO/SAE 21434 specifically states the need for a strong cybersecurity culture at an organisational level. The new standard is expected to spark organisational changes across the entire automotive industry.