{"title":"A Comparative Analysis of UNECE WP.29 R155 and ISO/SAE 21434","authors":"Gianpiero Costantino, M. Vincenzi, I. Matteucci","doi":"10.1109/eurospw55150.2022.00041","DOIUrl":null,"url":null,"abstract":"In the last years, the increasing number of cyber-attacks on vehicles has shown the importance to implement security solutions within the automotive domain. To reduce the risk that a vehicle or its components get attacked and compromised, two cybersecurity references have been released: UNECE WP.29 R155 and ISO/SAE 21434. In March 2021, the United Nations Economic Commission for Europe (UNECE) published the WP.29 R155 regulation, mandatory in some countries from July 2022 to homologate vehicles' cybersecurity. Officially released in August 2021, ISO/SAE 21434 is a cybersecurity standard which aims to be widely accepted and applied in the engineering of electrical and electronic (E/E) systems for road vehicles. In this work, we describe and analyze the two norms, comparing them to show their points of contact and differences. From our analysis, the two documents, spanned both along the entire life-cycle of a vehicle, can be considered overlapped in some processes, but also complementary to increase the cybersecurity of the vehicle. Finally, we provide a use case of application of the regulation and the standard on an E/E system, reporting the possible limits and implementations.","PeriodicalId":275840,"journal":{"name":"2022 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)","volume":"25 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-06-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/eurospw55150.2022.00041","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 1
Abstract
In the last years, the increasing number of cyber-attacks on vehicles has shown the importance to implement security solutions within the automotive domain. To reduce the risk that a vehicle or its components get attacked and compromised, two cybersecurity references have been released: UNECE WP.29 R155 and ISO/SAE 21434. In March 2021, the United Nations Economic Commission for Europe (UNECE) published the WP.29 R155 regulation, mandatory in some countries from July 2022 to homologate vehicles' cybersecurity. Officially released in August 2021, ISO/SAE 21434 is a cybersecurity standard which aims to be widely accepted and applied in the engineering of electrical and electronic (E/E) systems for road vehicles. In this work, we describe and analyze the two norms, comparing them to show their points of contact and differences. From our analysis, the two documents, spanned both along the entire life-cycle of a vehicle, can be considered overlapped in some processes, but also complementary to increase the cybersecurity of the vehicle. Finally, we provide a use case of application of the regulation and the standard on an E/E system, reporting the possible limits and implementations.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
