Automotive Cybersecurity Standards - Relation and Overview

Christoph Schmittner*, Georg Macher

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference paperpeer-review


Today many connected and automated vehicles are available and connectivity features and information sharing is increasingly used for additional vehicle-, maintenance- and traffic safety features. This highly connected networking also increase the attractiveness of an attack on vehicles and the connected infrastructure by hackers with different motivations and thus introduces new risks for vehicle cybersecurity. Highly aware of this fact, the automotive industry has therefore taken high efforts in designing and producing safe and secure connected and automated vehicles. Therefore the domain invested efforts in the development of industry standards to tackle automotive cybersecurity issues and protect their assets. The joint working group of the standardization organizations International Organization for Standardization (ISO) and Society of Automotive Engineers (SAE) has recently established and published a committee draft of the “ISO-SAE Approved new Work Item (AWI) 21434 Road Vehicles - Cybersecurity Engineering” standard. In addition to that SAE is also working on a set of cybersecurity guidance, ISO is addressing specific automotive cybersecurity related topics in additional standards and European Telecommunications Standards Institute (ETSI) and International Telecommunication Union (ITU) is working on security topics of connected vehicles. Further activities are national and international regulations on Automotive Cybersecurity. In the course of this document, a review of the available work and ongoing developments is given and the outline of the automotive cybersecurity framework is given. The aim of this work is to provide a position statement for discussion of available standards, methods and recommendations for automotive cybersecurity.

Original languageEnglish
Title of host publicationComputer Safety, Reliability, and Security - SAFECOMP 2019 Workshops, ASSURE, DECSoS, SASSUR, STRIVE, and WAISE, Proceedings
EditorsAlexander Romanovsky, Elena Troubitsyna, Ilir Gashi, Erwin Schoitsch, Friedemann Bitsch
PublisherSpringer-Verlag Italia
Number of pages13
ISBN (Print)9783030262495
Publication statusPublished - 1 Jan 2019
Event38th International Conference on Computer Safety, Reliability and Security: SAFECOMP 2019 - Turku, Finland
Duration: 10 Sept 201913 Sept 2019

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume11699 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349


Conference38th International Conference on Computer Safety, Reliability and Security
Other7th International Workshop on Assurance Cases for Software-Intensive Systems, ASSURE 2019, 14th ERCIM/EWICS/ARTEMIS Workshop on Dependable Smart Embedded and Cyber-Physical Systems and Systems-of-Systems, DECSoS 2019, 8th International Workshop on Next Generation of System Assurance Approaches for Safety-Critical Systems, SASSUR 2019, 2nd International Workshop on Safety, Security, and Privacy In Automotive Systems, STRIVE 2019, 2nd International Workshop on Artificial Intelligence Safety Engineering, WAISE 2019 held in conjunction with 38th International Conference on Computer Safety, Reliability and Security, SAFECOMP 2019


  • Automotive
  • ISO 21434
  • ISO 26262
  • Security analysis

ASJC Scopus subject areas

  • Theoretical Computer Science
  • Computer Science(all)


Dive into the research topics of 'Automotive Cybersecurity Standards - Relation and Overview'. Together they form a unique fingerprint.

Cite this