Cybersecurity

We use proactive engineering to reduce the risks associated with automotive cybersecurity and privacy; specifying and assessing the resilience of defence-in-depth cybersecurity measures to develop robust cybersecurity concepts for our clients.

We use and build upon the high-level guiding principles for cybersecurity as they relate to cyber-physical vehicle systems established in SAE J3061 and the emerging ISO/SAE 21434 standard.

As such, we tailor complete lifecycle process frameworks that can be used within an organization’s development processes to incorporate cybersecurity into cyber-physical vehicle systems from concept phase through production, operation, service, and decommissioning. This process framework includes the use of common existing tools and methods for designing, verifying and validating cyber-physical vehicle systems. Through continuous research and monitoring of the evolving threat landscape, coupled with an in-depth knowledge of our client’s product architecture, we help our customers react effectively to new risks. Our automotive cybersecurity services include:

  • Technical seminars and training courses
  • Cybersecurity process review and recommendations for improvement based on the latest industry best practices (e.g. SAE J3061)
  • Engineering consultancy, including implementation of recommended practices of SAE J3061 and the emerging ISO/SAE 21434
    • ‘Concept phase’ activities, including generation of feature definition, threat analysis and risk assessment, definition of cybersecurity goals and cybersecurity concept development
    • ‘Product development’ activities, including threat modelling, vulnerability analysis (for example attack trees) and technical cybersecurity concept development
    • Support for verification activities, for example conducting cybersecurity design reviews, and generation of cybersecurity assurance cases
      • Cybersecurity testing and assessment
        • Vehicle and component level vulnerability analysis
        • Security analysis and penetration testing, covering wireless interfaces, wired/physical interfaces, in-vehicle networks, ECU hardware and software

      Our cybersecurity services are underpinned by a continuous programme of research and development into the evolving automotive threat landscape, vulnerability analysis tools and techniques and penetration testing methods. Our Cybersecurity specialists are UK experts to the international committees for:

      • SAE J3061 Cybersecurity Guidebook for Cyber-Physical Vehicle Systems
      • ISO/SAE 21434 Road Vehicles – Cybersecurity engineering

      We are also the lead partner for 5StarS (UK Government supported collaborative research project) aimed at the research and development of an innovative assurance process to assure that vehicles, components and systems have been designed and tested to the relevant cybersecurity standards throughout their whole lifecycle.

Contact Us.

+44 (0)24 7635 5000 Enquiries Media Enquiry