Automotive cybersecurity standards – a living list
Last updated, January 2022
This is the home of our automotive cybersecurity standards living list. As mentioned in our Overview of the automotive cybersecurity standards landscape, we have identified a long list of documents either supporting or directly related to automotive cybersecurity, which can be broadly classified into the following groups:
- Recommendations directly addressing automotive security
- Extensions to safety considerations
- Coding and software standards
- General foundations
The individual entries (numbered) are detailed below, including external recommendations that are referenced within each of the documents, when applicable and where the information is available to view publicly. Additional notes and comments can also be found in the list to further aid understanding.
- Recommendations directly addressing automotive security
1 – ISO/SAE 21434:2021, Road Vehicles – Cybersecurity Engineering
Lists engineering requirements for cybersecurity risk management, including threat modelling, so that organisations operating in the automotive sector are better placed to tackle evolving attack methods. Note that the document does not prescribe specific technologies or solutions.
External references within the recommendation:
ISO 31000, Risk management – Guidelines
ISO 26262-3:2018, Road vehicles – Functional Safety – Part 3: Concept phase
2 – ISO/DPAS 5112 – Road vehicles — Guidelines for auditing cybersecurity engineering
Under development. The guidelines are based on ISO 21434 (see 1) and intended to be used to audit a cybersecurity management system as defined by UNECE WP.29 regulations (see 7).
3 – SAE J3101 – Hardware Protected Security for Ground Vehicles J3101_202002 (2020)
The standard provides a perspective on security mechanisms supported in hardware for automotive use cases, along with best practices for using such mechanisms. Such hardware-based approaches are necessary to ensure that systems are able to resist attacks that would otherwise defeat software-only based implementations.
4 – SAE J3061 – Cybersecurity Guidebook for Cyber-Physical Vehicle Systems J3061_201601 (2016)
Recommendations cover the complete vehicle lifecycle from concept phase through production, operation, service and decommissioning. The standard is a precursor to ISO 21434 and calls for a lifecycle approach to cybersecurity engineering. As mentioned in our overview article, efforts are underway to re-work SAE J3061 and it has been reported that the new version will be in three parts. Part 1 will describe a threat and risk analysis method for classifying threats within an Automotive cybersecurity Integrity Level (AcSIL) framework. Part 2 will give an overview of security testing methods for software and hardware. And part 3 will discuss security tools. The new document set should provide a more technical companion to ISO 21434.
5 – UK Government’s Key Principles of Cyber Security for Connected and Automated Vehicles
Published in August 2017 and created by the UK’s Department for Transport, in conjunction with Centre for the Protection of National Infrastructure (CPNI), the guidance is split into eight key principles — each with sub-details — to support all parties in the manufacturing supply chain in tightening automotive cybersecurity. Topics include taking ownership of organisational security, the importance of using a defence-in-depth design approach as well as performing appropriate management and assessment of risk, securing and controlling the storage and transmission of data, and the need for product aftercare and incident response to ensure that systems are secure over their lifetime.
External references within the recommendation:
SAE
J3061 – Cybersecurity guidebook for cyber-physical vehicle systems
J3101 – Requirements for hardware protected security for ground vehicle applications
ISO
9797-1 – Security techniques: message authentication codes – specifies a model for secure message authentication codes using block cyphers and asymmetric keys
12207 – Systems and software engineering – software lifecycle processes
15408 – Evaluation of IT security – specifies a model for evaluating security aspects within IT
27001 – Information security management system
27002 – Code of practice – security – provides recommendations for information management (contains guidance on access control, cryptography and supplier relationship)
27010 – Information security management for inter-sector and inter-organizational communications
27018 – Code of practice – handling PII / SPI (privacy) – protection of personally identifiable information (PII) in public clouds
27034 – Application security techniques – guidance to ensure software delivers necessary level of security in support of an organisations security management system
27035 – Information security incident management
29101 – Privacy architecture framework
29119 – Software testing standard
DEFSTAN
05-138 – Cyber security for defence suppliers
NIST
800-30 – Guide for conducting risk assessments
800-88 – Guidelines for media sanitization
SP 800-50 – Building an information technology security awareness and training program
SP 800-61 – Computer security incident handling guide
Other
Microsoft security development lifecycle (SDL)
SAFE Code best practices
OWASP Comprehensive, lightweight application security process (CLASP)
HMG Security policy framework
PAS 1192-5 – BSI publication on security-minded building information modelling, digital built environments and smart asset management (Withdrawn and replaced with BS EN ISO 19650-5)
BS EN ISO 19650-5:2020 – Organization and digitization of information about buildings and civil engineering works, including building information modelling (BIM). Information management using building information modelling. Security-minded approach to information management
PAS 754 – BSI publication on software trustworthiness, governance and management (Withdrawn following the publication of BS 10754-1:2018)
BS 10754-1:2018 – Information technology. Systems trustworthiness. Governance and management specification
BS ISO/IEC 11179-5, BS ISO/IEC/IEEE 15288:2015, BS EN ISO/IEC 27002, BS ISO/IEC/IEEE 42010, BS EN ISO/IEC 27001
6 – BSI PAS 1885 (The fundamental principles of automotive cyber security – specification)
Intended for vehicle manufacturers, tier-1 and tier-2 suppliers, authorised service centres, aftermarket suppliers, road/highway authorities and service providers to both the vehicle and its occupants and/or cargo, the recommendations are aimed at helping all parties involved in the vehicle lifecycle and ecosystem improve their understanding of how to maintain vehicle security and the security of associated intelligent transport systems (ITS).
External references within the recommendation:
BS ISO 55002, IEC 62443, PAS 555, BS 7858, BS ISO 55000, BS ISO/IEC 29100, ETSI TR 102 893, BS ISO 26262, BS ISO/IEC 27001, PAS 1192-5:2015, BS EN ISO/IEC 27001:2017, BS 10010:2017, PAS 183:2017, BS ISO/IEC 38505-1:2017, PAS 185:2017, PAS 754:2014, PAS 555:2013, BS EN ISO 15118-1:2015, BS ISO/IEC 15408-1:2009, BS ISO 55001:2014, PAS 11281:2018, BS ISO/IEC 38500:2015, BS ISO/IEC 27032:2012
7 – UNECE WP.29: UN Regulation No. 155 – 2021
The regulations require that automotive providers have a cybersecurity management system (CSMS) in place for the lifetime of the vehicle. Vehicle categories include passenger cars, vans, trucks and buses, and light four-wheeler vehicles if equipped with automated driving functionalities from level 3 onwards (this is to cover new automated pods and shuttles as well as trailers, if fitted with at least one electronic control unit).
From a threat analysis and risk assessment perspective, it is noteworthy that the guidance specifies a baseline for threats, vulnerabilities and attack methods (available in Annex 5 of the document) that should be considered and defended against.
To sell into the markets where UNECE WP.29 regulations apply, manufacturers will have to demonstrate to national technical services or homologation authorities (who will likely base their audits on ISO/DPAS 5112) that they fulfil the following requirements:
– Cyber Security Management System is in place and its application to vehicles on the road is available;
– Provide risk assessment analysis, identify what is critical;
– Mitigation measures to reduce risks are identified;
– Evidence, through testing, that mitigation measures work as intended;
– Measures to detect and prevent cyber-attacks are in place;
– Measures to support data forensics are in place;
– Monitor activities specific for the vehicle type;
– Reports of monitoring activities will be transmitted to the relevant homologation authority.
External references within the recommendation:
ISO 26262-2018, ISO/PAS 21448, ISO/SAE 21434
8 – UNECE WP.29: Draft Recommendation on Software Updates of the Task Force on Cyber Security and Over-the-air issues
The document provides information on managing software updates so that they can be performed safely and securely over-the-air; noting the increased importance (given the rising number of software elements in a vehicle) of being able to implement software corrections and add new features without the hassle and expense of recalling models to dealerships.
Vehicle manufacturers will need to obtain a certificate of compliance for their software update management system (SUMS) – much like they will need to for their cybersecurity management system (CSMS).
9 – ITU-T X.1373 : Secure software update capability for intelligent transportation system communication devices
Offers practical advice that can be used by car manufacturers and ITS-related industries regarding secure software update procedures between a software update server and vehicles with appropriate security controls.
External references within the recommendation:
ITU-T X.509, ITU-T X.1521, ISO/IEC 15408-1, ISO/IEC 27000:2014
10 – ENISA good practices for security of Smart Cars (2019)
Created to help promote cybersecurity for connected and automated cars across Europe, the report raises awareness on relevant threats and risks with a focus on “cybersecurity for safety”.
External references within the recommendation:
ETSI TS 102 940 v1.3.1, “Intelligent Transport Systems (ITS); Security; ITS communications security architecture and security management
ETSI TS 102 941 V1.2.1 “Intelligent Transport Systems (ITS); Security; Trust and Privacy Management
ETSI TS 102 942 V1.1.1 “Intelligent Transport Systems (ITS); Security; Access Control”
ETSI TS 102 943 V1.1.1 “Intelligent Transport Systems (ITS); Security; Confidentiality services”
SAE J3061 “Cybersecurity Guidebook for Cyber-Physical Vehicle Systems
SAE J3016 “Taxonomy and Definitions for Terms Related to Driving Automations Systems for On-Road Motor Vehicles”
ISO/SAE CD 21434 “Road Vehicles – Cybersecurity engineering
Auto-ISAC “Automotive Cybersecurity Best Practices – Executive summary”
ITF/OECD “Safer Roads with Automated Vehicles”
PAS 1885:2018 The fundamental principles of automotive cyber security specification, bsi
IEC – IEC 62443-3-3:2013 System security requirements and security levels
ISO – ISO/IEC 27001:2013 Information technology — Security techniques – Information security management systems – Requirements
ISO – ISO/IEC 27002:2013 Information technology — Security techniques — Code of practice for information security controls
NIST – NIST SP 800 53r4: Security and Privacy Controls for Federal Information Systems and Organizations
NIST – NISTIR 8183: Cybersecurity Framework Manufacturing Profile
SANS Institute – Vulnerability Management: Tools, Challenges and Best Practices
NIST – Draft NISTIR 8228: Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks
NIST – NIST SP 800 30r1 – Guide for Conducting Risk Assessments
NIST – NIST SP 800 82r2: Guide to Industrial Control Systems (ICS) Security
ETSI – ETSI TR 102 893 V1.2.1 — Intelligent Transport Systems: Security, Threat, Vulnerability and Risk Analysis
International Telecommunications Union – Security capabilities supporting safety of the Internet of things
Five Star Automotive Cyber Safety Program
IEC – IEC 62443-2-1:2010 Establishing an industrial automation and control system security program
PRESERVE – Security Requirements of Vehicle Security Architecture v1.1
NIST – NIST SP 800-146 Cloud Computing Synopsis and Recommendations
oneM2M – Standards for M2M and the Internet of Things – TR 0008 Security V2.0.0 – Security. Technical Report
11 – TR 68 – 3 : 2019, Technical Reference for Autonomous vehicles – Part 3 : Cybersecurity principles and assessment (Singapore)
Describes a framework for assessing the cybersecurity of Autonomous Vehicles deployed on public roads.
External references within the recommendation:
GSMA CLP.11 – IoT security guidelines and CLP.17 IoT Security Assessment
ISO/IEC 19790:2012 – Information technology – Security techniques – Security requirements for cryptographic modules.
ISO/IEC 26262 series – Road vehicles – Functional safety
ISO/IEC 27000 series – Information technology – Security techniques – Information security management systems – Overview and vocabulary
ISO/SAE 21434 – Road vehicles – Cybersecurity Engineering
NIST SP 800-115 – Technical Guide to Information Security Testing and Assessment, 2008
OWASP Open Web Application Security Project
SAE J3016 – Taxonomy and Definitions for Terms Related to Driving Automation Systems for On-Road Motor Vehicles
SAE J3061 – Cybersecurity Guidebook for Cyber-Physical Vehicle Systems
WP.29 – UNECE ITS/AD CS/OTA
TR 64: 2018 Guidelines for IoT Security for Smart Nation
12 – US DoT NHTSA Cybersecurity Best Practices for the Safety of Modern Vehicles (Draft 2020 update)
Updates the Agency’s non-binding and voluntary guidance to the automotive industry for improving motor vehicle cybersecurity.
External references within the recommendation:
ISO 21434
ISO/IEC 29147:2018, Information Technology Security Techniques Vulnerability Disclosure
13 – US H.R.701 – SPY Car Study Act
The ‘Security and privacy in your car’ act was proposed in the US (originally in 2015 and then reintroduced in 2017 and 2019) to determine appropriate cybersecurity standards for motor vehicles, and for other purposes. The bill in its earlier forms requires the National Highway Traffic Safety Administration to report on standards for the regulation of the cybersecurity of motor vehicles manufactured or imported for sale in the United States. And, more recently, has cast its attention on consumer needs and driving data (see below).
In this version, the bill directs the NHTSA to ‘require the fuel economy labelling that manufacturers attach to motor vehicles to display a cyber dashboard with a standardized graphic to inform consumers about the extent to which the vehicle protects individuals’ cybersecurity and privacy beyond the minimum requirements’.
There is also an additional focus on so-called driving data – defined as ‘any electronic information collected about the status of the vehicle, including the location and speed of the vehicle; and any owner, lessee, driver or passenger of a vehicle’. The 2019 version directs the Federal Trade Commission to ‘require manufacturers to notify owners or lessees about the collection, retention and use of driving data and provide an option to terminate such data collection and retention, and to prohibit manufacturers from using such data for advertising or marketing without the owner’s or lessee’s consent’.
- Extensions to safety considerations
ISO 26262 series and related
The series, derived from IEC 61508, comprise a functional safety standard targeting the lifecycle of automotive equipment and systems. The approach features the use of an ‘Automotive Safety Integrity Level’ ASIL, which ranges from A (least strict) to D (most strict). Annex E of ISO 26262 gives guidance on the interaction between safety and cybersecurity. Edition 3 (in discussion) could contain more details on security-aware safety topics.
14 – ISO 26262-1:2018 Road vehicles — Functional safety — Part 1: Vocabulary
External references within the recommendation:
ISO 26262 (all parts), Road vehicles — Functional safety
15 – ISO 26262-2:2018 Road vehicles — Functional safety — Part 2: Management of functional safety
External references within the recommendation:
ISO 26262-1, Road vehicles — Functional safety — Part 1: Vocabulary
ISO 26262-3:2018, Road vehicles — Functional safety — Part 3: Concept phase
ISO 26262-4:2018, Road vehicles — Functional safety — Part 4: Product development at the system level
ISO 26262-5:2018, Road vehicles — Functional safety — Part 5: Product development at the hardware level
ISO 26262-6:2018, Road vehicles — Functional safety — Part 6: Product development at the software level
ISO 26262-7:2018, Road vehicles — Functional safety — Part 7: Production, operation, service and decommissioning
ISO 26262-8:2018, Road vehicles — Functional safety — Part 8: Supporting processes
ISO 26262-9:2018, Road vehicles — Functional safety — Part 9: Automotive Safety Integrity Level (ASIL)-oriented and safety-oriented analyses
16 – ISO 26262-3:2018 Road vehicles — Functional safety — Part 3: Concept phase
External references within the recommendation:
ISO 26262-1, Road vehicles — Functional safety — Part 1: Vocabulary
ISO 26262-2:2018, Road vehicles — Functional safety — Part 2: Management of functional safety
ISO 26262-4:2018, Road vehicles — Functional safety — Part 4: Product development at the system level
ISO 26262-8:2018, Road vehicles — Functional safety — Part 8: Supporting processes
ISO 26262-9:2018, Road vehicles — Functional safety — Part 9: Automotive Safety Integrity Level (ASIL)-oriented and safety-oriented analyses
17 – ISO 26262-4:2018 Road vehicles — Functional safety — Part 4: Product development at the system level
External references within the recommendation:
ISO 26262-1, Road vehicles — Functional safety — Part 1: Vocabulary
ISO 26262-2:2018, Road vehicles — Functional safety — Part 2: Management of functional safety
ISO 26262-3:2018, Road vehicles — Functional safety — Part 3: Concept phase
ISO 26262-5:2018, Road vehicles — Functional safety — Part 5: Product development at the hardware level
ISO 26262-6:2018, Road vehicles — Functional safety — Part 6: Product development at the software level
ISO 26262-7:2018, Road vehicles — Functional safety — Part 7: Production, operation, service and decommissioning
ISO 26262-8:2018, Road vehicles — Functional safety — Part 8: Supporting processes
ISO 26262-9:2018, Road vehicles — Functional safety — Part 9: Automotive Safety Integrity Level (ASIL)-oriented and safety-oriented analyses
External references within the recommendation:
ISO 26262-1, Road vehicles — Functional safety — Part 1: Vocabulary
ISO 26262-2:2018, Road vehicles — Functional safety — Part 2: Management of functional safety
ISO 26262-4:2018, Road vehicles — Functional safety — Part 4: Product development at the system level
ISO 26262-6:2018, Road vehicles — Functional safety — Part 6: Product development at the software level
ISO 26262-7:2018, Road vehicles — Functional safety — Part 7: Production, operation, service and decommissioning
ISO 26262-8:2018, Road vehicles — Functional safety — Part 8: Supporting processes
ISO 26262-9:2018, Road vehicles — Functional safety — Part 9: Automotive Safety Integrity Level (ASIL)-oriented and safety-oriented analyses
External references within the recommendation:
ISO 26262-1, Road vehicles — Functional safety — Part 1: Vocabulary
ISO 26262-2:2018, Road vehicles — Functional safety — Part 2: Management of functional safety
ISO 26262-3:2018, Road vehicles — Functional safety — Part 3: Concept phase
ISO 26262-4:2018, Road vehicles — Functional safety — Part 4: Product development at the system level
ISO 26262-5:2018, Road vehicles — Functional safety — Part 5: Product development at the hardware level
ISO 26262-7:2018, Road vehicles — Functional safety — Part 7: Production, operation, service and decommissioning
ISO 26262-8:2018, Road vehicles — Functional safety — Part 8: Supporting processes
ISO 26262-9:2018, Road vehicles — Functional safety — Part 9: Automotive Safety Integrity Level (ASIL)-oriented and safety-oriented analyses
External references within the recommendation:
ISO 26262-1, Road vehicles — Functional safety — Part 1: Vocabulary
ISO 26262-2:2018, Road vehicles — Functional safety — Part 2: Management of functional safety
ISO 26262-3:2018, Road vehicles — Functional safety — Part 3: Concept phase
ISO 26262-4:2018, Road vehicles — Functional safety — Part 4: Product development at the system level
ISO 26262-5:2018, Road vehicles — Functional safety — Part 5: Product development at the hardware level
ISO 26262-8:2018, Road vehicles — Functional safety — Part 8: Supporting processes
ISO 26262-9:2018, Road vehicles — Functional safety — Part 9: Automotive Safety Integrity Level (ASIL)-oriented and safety-oriented analyses
21 – ISO 26262-8:2018 Road vehicles — Functional safety — Part 8: Supporting processes
External references within the recommendation:
ISO 26262-1, Road vehicles — Functional safety — Part 1: Vocabulary
ISO 26262-2:2018, Road vehicles — Functional safety — Part 2: Management of functional safety
ISO 26262-3:2018, Road vehicles — Functional safety — Part 3: Concept phase
ISO 26262-4:2018, Road vehicles — Functional safety — Part 4: Product development at the system level
ISO 26262-5:2018, Road vehicles — Functional safety — Part 5: Product development at the hardware level
ISO 26262-6:2018, Road vehicles — Functional safety — Part 6: Product development at the software level
ISO 26262-7:2018, Road vehicles — Functional safety — Part 7: Production, operation, service and decommissioning
ISO 26262-9:2018, Road vehicles — Functional safety — Part 9: Automotive Safety Integrity Level (ASIL)-oriented and safety-oriented analyses
External references within the recommendation:
ISO 26262-1, Road vehicles — Functional safety — Part 1: Vocabulary
ISO 26262-2:2018, Road vehicles — Functional safety — Part 2: Management of functional safety
ISO 26262-3:2018, Road vehicles — Functional safety — Part 3: Concept phase
ISO 26262-4:2018, Road vehicles — Functional safety — Part 4: Product development at the system level
ISO 26262-5:2018, Road vehicles — Functional safety — Part 5: Product development at the hardware level
ISO 26262-6:2018, Road vehicles — Functional safety — Part 6: Product development at the software level
ISO 26262-7:2018, Road vehicles — Functional safety — Part 7: Production, operation, service and decommissioning
ISO 26262-8:2018, Road vehicles — Functional safety — Part 8: Supporting processes
23 – ISO 26262-10:2018 Road vehicles — Functional safety — Part 10: Guidelines on ISO 26262
External references within the recommendation:
ISO 26262-1, Road vehicles — Functional safety — Part 1: Vocabulary
External references within the recommendation:
ISO 26262-1, Road vehicles — Functional safety — Part 1: Vocabulary
External references within the recommendation:
ISO 26262-1, Road vehicles — Functional safety — Part 1: Vocabulary
ISO 26262-2:2018, Road vehicles — Functional safety — Part 2: Management of functional safety
ISO 26262-3:2018, Road vehicles — Functional safety — Part 3: Concept phase
ISO 26262-4:2018, Road vehicles — Functional safety — Part 4: Product development at the system level
ISO 26262-5:2018, Road vehicles — Functional safety — Part 5: Product development at the hardware level
ISO 26262-6:2018, Road vehicles — Functional safety — Part 6: Product development at the software level
ISO 26262-7:2018, Road vehicles — Functional safety — Part 7: Production, operation, service and decommissioning
ISO 26262-8:2018, Road vehicles — Functional safety — Part 8: Supporting processes
ISO 26262-9:2018, Road vehicles — Functional safety — Part 9: Automotive Safety Integrity Level (ASIL)-oriented and safety-oriented analyses
26 – SAE J2980_201804: Considerations for ISO 26262 ASIL Hazard Classification
A companion to ISO 26262, J2980 gives a method together with examples of determining the Automotive Safety Integrity Level (ASIL) for automotive motion control electrical and electronic (E/E) systems – limited to passenger cars weighing up to 3.5 metric tons. Note that the document prioritises collision-related hazards associated with motion control systems as these scenarios tend to generate higher ratings.
External references within the recommendation:
ISO 26262 series
27 – ISO/PAS 21448:2019 Road vehicles — Safety of the intended functionality
The guidance — which was originally going to be a section of ISO 26262, but has since been published as its own standard — considers intended use and reasonably foreseeable misuse together with potentially hazardous system behaviour as inputs to design, verification and validation measures that together provide ‘safety of the intended functionality’ (SOTIF).
External references within the recommendation:
ISO 26262-1:2018, Road vehicles — Functional Safety Part 1: Vocabulary
28 – UK Code of Practice: Automated vehicle trialling
Published in 2019, the code requires that software is tested and appropriate measures are in place to manage data security and the risk of unauthorised data access – among a long list of other requirements. Vehicle manufacturers and organisations providing systems for trial in the UK are recommended to follow the UK Government’s Key Principles of Cyber Security for Connected and Automated Vehicles (see 5).
29 – PAS 11281:2018 (Connected automotive ecosystems. Impact of security on safety. Code of practice)
Not directly referenced by the UK code of practice (see 28), but can be considered as related guidance as the recommendations concern the management of security risks that might compromise safety in a connected automotive ecosystem.
External references within the recommendation:
BS ISO/IEC 29147, BS ISO 26262, ISO 10393, BS 10754, PAS 1885, BS EN IEC 62443, BS ISO/IEC 27035, BS ISO 20077-1, IEC 61508:2011, BS ISO 55000, BS EN ISO/IEC 27042, BS EN ISO/IEC 27037, PAS 1085, BS ISO/IEC/IEEE 15288, IEC 61511-1, BS ISO 28000, PD ISO/IEC TS 17961:2013, BS EN ISO/IEC 27002:2017, BS EN ISO 22300:2018, BS ISO/IEC 15026-2:2011, PD ISO/IEC GUIDE 51:2014, PAS 1192-5:2015, PD ISO/IEC TR 24772:2013, BS ISO 26021-2:2008, BS ISO/IEC 27032:2012, BS ISO 14229-1:2013
30 – General foundations AEC-Q100 series
The series establishes electrical qualification requirements for components deployed in the harsh conditions of an automotive environment.
External references within the recommendation:
SAE J1752/3 Integrated Circuits Radiated Emissions Measurement Procedure
MIL-STD-883 Test Methods and Procedures for Microelectronics
MIL-STD-750 Test Methods for Semiconductor Devices
JEDEC JESD-22 Reliability Test Methods for Packaged Devices
UL-STD-94 Tests for Flammability of Plastic materials for parts in Devices and Appliances
IPC/JEDEC J-STD-020 Moisture/Reflow Sensitivity Classification for Plastic Integrated Circuit
Surface Mount Devices – JESD89 Measurement and Reporting of Alpha Particle and Terrestrial Cosmic Ray-Induced Soft
Errors in Semiconductor Devices – JESD89-1 System Soft Error Rate (SSER) Test Method; JESD89-2 Test Method For Alpha Source Accelerated Soft Error Rate; JESD89-3 Test Method for Beam Accelerated Soft Error Rate
- Coding and software guidelines
Automobiles have been accumulating lines of code for some time, primarily in the electronic control units that reside within the vehicle. But greater connectivity, an increase in driver assistance, more data-enabled services and a switch from fossil fuels to electric power will see software play an even wider role in the sector.
Given this trend in new vehicles – sometimes dubbed CASE by analysts, referring to ‘Connected’, ‘Autonomous’, ‘Shared & Services’ and ‘Electric’ aspects of the future vehicle landscape – it will be more important than ever for OEMs and their suppliers to adopt secure coding practices. At the same time, developers will need to track not just their own code, but all software versions that are deployed in their products so that security patches can be applied when vulnerabilities come to light.
31 – ISO/TR 15497:2000, Road vehicles — Development guidelines for vehicle based software
Aimed at automotive software engineers, managers and other stakeholders relating to embedded vehicle software – the recommendations consider a range of issues, including diagnostics and integrated vehicle systems; integrity; noise; EMC; real-time performance; control systems software; metrics; verification and validation; and subcontracting of software development.
MISRA
Originally formed to develop guidelines for creating automotive software, the MISRA consortium offers best practice applicable to both embedded control systems and standalone software.
32 – MISRA C: 1998
Written for C90, has 127 coding rules.
33 – MISRA C: 2004
Written for C90, has 142 coding rules.
34 – MISRA C++: 2008
Guidelines produced for C++ in recognition of its growing use in the field
35 – MISRA C: 2012
Extends support to C99, while maintaining guidelines for C90, has 143 coding rules.
36 – MISRA C: 2012 Amendment 1 (released 2016)
Includes 156 rules and 17 directives, giving a total of 173 guidelines.
37 – MISRA C: 2012 Amendment 2 (released 2020)
Two additional rules, taking the total number of guidelines up to 175.
38 – MISRA C:2012 — Addendum 2
Mapping of MISRA rules to the C Secure rules in ISO/IEC TS 17961:2013.
39 – MISRA C:2012 — Addendum 3
Mapping of MISRA rules to the CERT C rules.
Further events – MISRA to merge C++ guidelines with AUTOSAR
40 – ASPICE – Automotive SPICE Process Reference Model Process Assessment Model Version 3.1 (2017)
A framework for quality management in the automotive sector.
External references within the recommendation:
ISO/IEC 33001:2015, ISO/IEC 33002:2015, ISO/IEC 33003:2015, ISO/IEC 33004:2015, ISO/IEC 33020:2015, ISO/IEC 15504-5:2006, ISO/IEC 12207:2008, ISO/IEC/IEEE 29119-1:2013, ISO/IEC/IEEE 29119-3:2013 So, ISO/IEC/IEEE 24765:2010 S, ISO/IEC 25010:2011, ISO/IEC 12207, ISO/IEC 15288
41 – IATF 16949:2016
An alternative to ASPICE (see 40), the recommendations provide a standard for quality management to be used in conjunction with ISO 9001:2015.
42 – NTIA software component transparency
The US National Telecommunications and Information Administration (NTIA) are working with the automotive sector to report on ‘Supplier recommendations for industry standards to automakers’ over the next 12 months.
NTIA provides guidance on how to produce, deliver, update and consume SBOMs through its survey document.
External references within the recommendation:
ISO/IEC 19770-2:2015: Information Technology – Software Asset Management – Part 2: Software Identification Tag
ISO/IEC TS 17961:2013 Information technology — Programming languages, their environments and system software interfaces — C secure coding rules
SEI CERT C Coding Standard
ISO/IEC 5055:2021 Information technology — Software measurement — Software quality measurement — Automated source code quality measures
ISO/IEC 25000:2014 Systems and software engineering — Systems and software Quality Requirements and Evaluation (SQuaRE) — Guide to SQuaRE
- General foundations
43 – BS 10754-1:2018 (Information technology – Systems trustworthiness. Governance and management specification)
A widely applicable approach to improving the trustworthiness of systems, software and services.
External references within the recommendation:
BS ISO/IEC 11179-5, BS ISO/IEC/IEEE 15288:2015, BS EN ISO/IEC 27002, BS ISO/IEC/IEEE 42010, BS EN ISO/IEC 27001, ITU-T Recommendation X.1520, BS ISO 31000, BS ISO/IEC 19770-1, BS EN ISO/IEC 27000, BS EN ISO/IEC 17024, ITU-T Recommendation X.1521, ITU-T Recommendation X.1525, BIP 0008-1, BS EN 61508 (all parts), BS ISO/IEC 20000-1, BS EN ISO/IEC 17043, BS EN ISO 9001, BS ISO/IEC 15408-1, BS ISO/IEC 19770-2, BS ISO/IEC 27034-1, BS ISO/IEC 15504 (all parts), ITU-T Recommendation X.1544, BS EN ISO/IEC 17025, ITU-T Recommendation X.1524, BS ISO/IEC 33001:2015, BS EN ISO 22301:2014, BS EN ISO 9000:2015, BS EN ISO/IEC 27043:2016
44 – BS EN IEC 60812:2018 Failure modes and effects analysis (FMEA and FMECA)
Considers the planning, performance, documentation and maintenance of FMEA to raise awareness of how an item or process might fail to perform its function and the treatments that could be applied.
External references within the recommendation:
IEC 60050-192 – International electrotechnical vocabulary – Part 192: Dependability
45 – BS EN IEC 61025. Fault tree analysis (FTA)
Comments are being invited for the upcoming version, which like the current document will support the identification and analysis of combinations of conditions and factors that risk the occurrence of undesirable outcomes, or ‘top events’.
BS EN 61508 series
Methods concerning the application, design, deployment and maintenance of safety-related systems, applicable to a wide range of industries. Note that IEC 61508 formed the basis for ISO 26262.
IEC TR 62443 series
Devised to support the secure operation of industrial automation and control systems, the guidance notes that cyberattacks on critical infrastructure can put public health at risk and threaten the environment. Recommendations focus not just on the technology, but also on the work processes, countermeasures and employee roles.
External references within the recommendation:
IEC/TS 62443?1?12 – Industrial communication networks – Network and system security – Part 1-1: Terminology, concepts and models
External references within the recommendation:
IEC TS 62443-1-1, Industrial communication networks – Network and system security – Part 1-1: Terminology, concepts and models
IEC 62443-2-1, Industrial communication networks – Network and system security – Part 2-1: Establishing an industrial automation and control system security program
