Cyber-Physical Systems Security Engineering Plan (CPSSEP)
JA7496_202206
This SAE Standard establishes practices to:
a
Manage risk and ensure security of a cyber-physical system (CPS) throughout its life cycle by utilizing systems engineering principles;
b
Assess the impact of cyber-physical systems security (CPSS) objectives and requirements;
c
Assess the security risks to CPS technical effectiveness and functions, and address weaknesses and vulnerabilities;
d
Address various domains of consideration (see 3.1) that take into account operating conditions of the system, command and control, configuration management (refer to SAE EIA649), etc., that could negatively impact CPSS or CPS-designed purpose;
e
Perform design validation and verification to assess security and risk of the CPS.
Rationale:
The cyber-physical systems security engineering plan (CPSSEP) is a framework standard that integrates cybersecurity into a cyber-physical system (CPS) throughout the entire system’s engineering life cycle. The CPSSEP assists with preserving and protecting cyber-physical systems against exploits of weaknesses and vulnerabilities that, if compromised, jeopardize the business or mission objectives of the CPS. This standard leverages and builds upon applicable existing standards, accepted practices, and bodies of knowledge across industry and government sectors.
Related Topics:
Supply chain management
Risk management
Data management
Disaster and emergency management
Defense industry
Product development
Systems engineering
Internet of things (IoT)
Machine learning
Also known as: SAE JA 7496
Please see included illustrative video(s) to aid in use of the standard/framework.
SAE MOBILUS
Subscribers can view annotate, and download all of SAE's content.
Learn More »
