The ongoing digital transformation is changing the automotive sector and the mobility solutions of the future. Assisted, automated and autonomous driving, the increasing vehicle-to-vehicle communication, and the mounting coupling with the road infrastructure are targets to increase traffic safety. These new networking opportunities also bring new risks. Every digital interface in the transportation ecosystem potentially increases the cyber-attack surface, whether it is wireless tire pressure sensors, Wi-Fi hotspots and telematics systems, or instrument clusters that connect information from other embedded systems. Even the back-end infrastructure of manufacturers and suppliers - from which software updates are imported via various interfaces in the vehicle - are at the center of cyber-attacks.
The growing need for the best possible protection against cyber-attacks on road users, companies and infrastructures has led to the introduction of binding cybersecurity guidelines. They apply to the entire value chain, from the development, production and operation of vehicles to the road infrastructure.
As a result, from July 2022, in the European Union (EU), new types of electric/electronic architectures (EEA) installed in vehicles shall comply with UN Regulation No. 155 Cybersecurity (UN-R 155), which entered into force on 22 January 2021 in the contracting parties of the 1958 Agreement of the United Nations.
As of July 2024, the devices and systems shall be fully developed within a Cybersecurity Management System (CSMS) in accordance with UN-R 155and the processes specified therein. “ISO/SAE 21434 - Road Vehicles - Cybersecurity Engineering", which was developed in particular for the automotive industry, served as one foundational input to the regulation.
We serve as a competent partner to make the new mobility world secure. With our cybersecurity solutions in the automotive sector, you gain trust and – provide assurance for your business partners in the supply chain and for the end users of your vehicles.
TUV Rheinland supports vehicle manufacturers and suppliers in meeting cybersecurity requirements so that they can obtain type approval for their vehicles.