Knowledge Center
Knowledge Center

ISO/SAE FDIS 21434-Road Vehicles — Cybersecurity Engineering

A standard (under development) for automotive cybersecurity.


This standard is still under development (as of April 2021). The ISO/SAE FDIS 21434-Road Vehicles — Cybersecurity Engineering is draft standard produced by a joint working group from the standardization organizations International Organization for Standardization (ISO) and SAE (Society of Automotive Engineers) focussing on cybersecurity in road vehicle electronic systems. Vehicles — especially automated vehicles — will increasingly be connected wirelessly to the Internet, data centers, edge devices, and to each other. As with any connected device, the vehicle needs to be made secure and protected from hacking threats that exploit design flaws and over-the-air updates. ISO 21434 sets standards for cybersecurity for all phases of the vehicle’s lifecycle, from design, development, manufacture, over-the-air (OTA) updates, and vehicle operation.

Similar to ISO 26262 functional safety standards, ISO/SAE FDIS 21434 defines the culture that protects cybersecurity. The standard will define how cybersecurity should fit into each phase — the development, design, manufacturing, monitoring, and lifecycle flow. Addressed are risk management requirements, cybersecurity goals, and OTA updates.

The standard is out for approval — follow the progress.