Connected vehicles are increasingly seen as a potential target for
cybersecurity attacks. A key differentiator for the automotive industry is the
use of cyber-physical systems, where a successful cybersecurity attack could affect
physical entities. Often involving embedded electronics and real time control,
these systems require different solutions in addition to established IT
security principles and reactive responses to threats. Cybersecurity needs to
be designed and built into cyber-physical systems throughout the development
lifecycle to provide defense in depth. SAE J3061
provides an engineering process to design and build cybersecurity into vehicle
systems in a comprehensive and systematic way, to monitor for and respond to
incidents in the field, and to address vulnerabilities in service and
operation. J3061 is unique in describing a process framework for cybersecurity
that an organization can tailor against its other development processes. This
allows an organization to develop an internal cybersecurity process consistent
with its other processes in order to build cybersecurity robustness into their
cyber- physical systems.
This seminar will define key concepts in cybersecurity and discuss what
a cybersecurity process consists of and why one is needed for the development
of cyber-physical vehicle systems. Featuring instructors from the SAE Vehicle
Cybersecurity Systems Engineering Committee, the course will describe the
process framework described in J3061 that will enable participants to relate it
to their own organization"s processes, including cybersecurity and safety
activities. The instructors will provide guidance on how to tailor the standard"s
process framework into an internal process to build cybersecurity robustness
into cyber-physical systems. Different approaches to integrate the process
within the participant"s organization, including the key issues and potential
pitfalls with respect to implementation of a cybersecurity process, will be
discussed. Key analysis activities that support the process, including Threat
Analysis and Risk Assessment and Attack Tree Analysis, will also be presented.
Note: Due to the complexities and unique internal processes within each
organization, participants will not be given a complete process implementation
that can be directly applied in their organization. The information provided in
the course will equip participants with the necessary foundation to begin
tailoring the J3061 process framework for application within their
This course will be beneficial to anyone involved in cybersecurity including those wishing to lead their organization in implementing and applying a cybersecurity process. Cybersecurity engineers will learn the need for a cybersecurity process and comprehend the J3061 process framework for tailored application in their organization. Quality management professionals will learn that a cybersecurity process is another important factor in internal process improvement and auditing. Executives and management representatives will better understand how to use J3061 to build defense and in-depth cyber-physical vehicle systems and how to drive cost savings through a systematic process. Human Resources will comprehend the need for seeking out individuals with the skills needed to address cybersecurity within their organizations.
Dr. Barbara Czerny is Sr. Technical Specialist Safety and Cybersecurity at ZF TRW. She has over six years of experience working in automotive cybersecurity and began promoting a cybersecurity process in early 2012 at SAE. An active member of several SAE International committees, Dr. Czerny played a key role in the development of the SAE Recommended Practice J3061. She has authored numerous papers and presentations in the areas of cybersecurity and safety-critical automotive system and has co-led workshops. Dr. Czerny also has over 18 years of experience working in automotive system safety and has worked on advanced development safety-critical automotive systems. She is an ISO technical expert and has actively participated in the development of ISO 26262 from its beginning. She is a member of the US Technical Advisory Group that worked on the development of ISO 26262. Dr. Czerny holds MS and PhD degrees in Computer Science from Michigan State University.
Dr. David Ward is Senior Technical Manager, Functional Safety at HORIBA MIRA. In this role, he provides leadership in development and independent assessment of automotive electronic system safety, reliability and cybersecurity. Since joining HORIBA MIRA in the 1990s, Dr. Ward has been instrumental in industry activities to develop standards and guidance for automotive functional safety, beginning with the pioneering MISRA â€Guidelines for Development of Vehicle Based Softwareâ€ in 1994 and more recently as the UK Principal Expert to ISO/TC22/SC32/WG8 â€œRoad Vehicles - Functional Safetyâ€, which develops ISO 26262. Dr. Ward is an active contributor to the automotive industry's first standard for cybersecurity SAE J3061. In recognition of his contribution to standardization in functional safety, he was awarded the Institute of Mechanical Engineers Award for Risk Reduction in 2013. Dr. Ward holds an MA degree in Natural Science from the University of Cambridge, a Ph.D. in Electrical Engineering from the University of Nottingham, UK and holds appointments as a Visiting Professor in Functional Safety at Coventry University, UK and in Engineering Design at the University of Leicester, UK.
SAE Members: $648.00 - $729.00
You must complete all course contact hours and successfully pass the learning assessment to obtain CEUs.
For additional information, contact SAE Customer Service at 1-877-606-7323 (724/776-4970 outside the U.S. and Canada) or at CustomerService@sae.org.