Towards an ISO/SAE 21434 vehicle cybersecurity case
- Vehicle type approval now requires preliminary analysis and management of, as well as ongoing monitoring and response to, possible cybersecurity threats. Among the associated activities identified in the automotive cybersecurity engineering standard ISO/SAE 21434 is a requirement to develop an assurance case for cybersecurity. This paper considers the scope, content and representation of a vehicle cybersecurity case for ISO/SAE 21434 purposes. In addition, a preliminary outline for the construction and development of such a vehicle cybersecurity case is proposed. Nonetheless, the approach and argument structure could be adapted for cybersecurity cases for items or components within a vehicle.
| Author: | Alastair RuddleORCiDGND, Lokesh DevarajORCiDGND, Paul WoodersonGND |
|---|---|
| URN: | urn:nbn:de:hbz:294-103930 |
| DOI: | https://doi.org/10.13154/294-10393 |
| Parent Title (English): | 21th escar Europe : The World's Leading Automotive Cyber Security Conference (Hamburg, 15. - 16.11.2023) |
| Document Type: | Part of a Book |
| Language: | English |
| Date of Publication (online): | 2023/10/25 |
| Date of first Publication: | 2023/10/25 |
| Publishing Institution: | Ruhr-Universität Bochum, Universitätsbibliothek |
| Tag: | Goal Structured Notation (GSN); ISO/SAE 21434; assurance case; cybersecurity case; road vehicle |
| Pagenumber: | 15 |
| Dewey Decimal Classification: | Allgemeines, Informatik, Informationswissenschaft / Informatik |
| open_access (DINI-Set): | open_access |
| Konferenz-/Sammelbände: | 21th escar Europe : The World's Leading Automotive Cyber Security Conference |
| Licence (German): |  Keine Creative Commons Lizenz - es gelten die Rechteeinräumung und das deutsche Urheberrecht |
