Security Certification Considerations when Choosing a Secure Product

The modern vehicle is not just a car: it is a complex, connected, computer ecosystem. As such, the automotive industry faces all the cybersecurity issues inherent within the wider software sector. So how do you choose a secure, future-proof platform that will protect your vehicle and your customers from real-world threats throughout the lifetime of the vehicle?

This paper discusses the role that security certification plays when choosing a secure solution that will benefit your customers now, and that will provide a future-proof platform for the emerging automotive cybersecurity threat landscape, and address legislation such as UNECE WP.29.

In this white paper, the automotive industry is used as an example. However, the approaches and recommendations contained within this paper can be applied equally to other vertical markets and product types.

This paper provides value to:

• Original Equipment Manufacturers (OEMs) seeking to secure the modern, connected vehicle or set a secure foundation for future revenue streams such as the monetization of vehicle data.
• Executives who want to prepare their cybersecurity strategy and understand the importance of designing security in from inception to meet current and future legislative requirements.
• Product managers, especially those involved in vehicle connectivity — whether traditional telematics units, Advanced Driver-Assistance Systems (ADAS), or autonomous driving technology.
• Security, quality, and development teams seeking to understand security certification, particularly in the context of the wider security solution.
• Business development and digital revenue teams who want to understand the importance of building a robust, secure platform, especially for next-generation capabilities.
• Procurement teams who want to develop a greater understanding of the risks associated with their buying decisions.