Browse Publications Technical Papers 2022-01-0121

Strategy to Adopt ISO/SAE 21434 Cyber Security Assurance Level in the Organization 2022-01-0121

The recent standard, ISO/SAE 21434, is introduced to address the cybersecurity requirements for the development of electrical and electronic components in the road vehicles. This standard has introduced a new classification scheme, cybersecurity assurance level (CAL), that helps in validating the process rigor needed for mitigating different threat scenarios. CAL values can range from 1(Least stringent process rigor) to 4 (most stringent process rigor). CAL provides assurance that the assets of an item or component are adequately protected against the relevant threat scenarios by defining the scope of various processes at different phases of the Secure Development Life Cycle (SDL). CAL values can be determined at the earlier stages of the SDLC (cybersecurity concept phase) through the knowledge of attack vectors and attack severity specific to a system. The CAL value can be used as a reference to define the scope of rigor in the design, development, and verification phase of the SDLC. This paper aims to define a process to determine CAL based on the existing concepts of ISO/SAE21434 guidelines. The study adopts an RVC (Rear-View Camera) system and performs a threat modeling to describe the details of the proposed process and helps cybersecurity experts, organizations to implement a structured process of CAL in their existing cybersecurity management system.


Subscribers can view annotate, and download all of SAE's content. Learn More »


Members save up to 16% off list price.
Login to see discount.
Special Offer: Download multiple Technical Papers each year? TechSelect is a cost-effective subscription option to select and download 12-100 full-text Technical Papers per year. Find more information here.
We also recommend:

Requirements for the Automated Generation of Attack Trees to Support Automotive Cybersecurity Assurance


View Details


Test Method for the SAE J3138 Automotive Cyber Security Standard


View Details


Future of Automotive Embedded Hardware Trust Anchors (AEHTA)


View Details