STEST

ECE R155 – VEHICLE CYBERSECURITY

Vehicle Cybersecurity

ECE R155 – Vehicle Cybersecurity

ECE R155 requires the manufacturer to certify that it has established and implemented a Cybersecurity Management System to control all cybersecurity risks associated with the vehicle.

What Is the ECE R155 Regulation? Definition

ECE R155 is a United Nations (UNECE) regulation that ensures the cybersecurity of vehicles equipped with connected and electronic control systems against cyberattacks. The regulation requires vehicle manufacturers not only to develop secure products but also to establish a Cyber Security Management System (CSMS) capable of managing cybersecurity risks throughout the product life cycle. ISO/SAE 21434 is the engineering standard widely used in practice.

Why Is It Required? Requirement

Modern vehicles have many external interfaces such as;

  • CAN, LIN and Ethernet communication networks
  • OTA (Over-the-Air) updates
  • Telematics systems
  • Mobile application connections
  • Bluetooth and Wi-Fi
  • GNSS and V2X communications

Therefore, cybersecurity is now an integral part of vehicle safety.

For Whom Is It Mandatory? Scope

  • Passenger car manufacturers
  • Bus manufacturers
  • Truck manufacturers
  • Trailer manufacturers
  • ECU manufacturers
  • Tier-1 suppliers
  • Tier-2 suppliers
  • Software developers

What Is Evaluated Under ECE R155? Assessment

As Standart Kontrol ve Test Hizmetleri, we provide support for the following technical assessments:

  • Review of cybersecurity processes
  • CSMS assessment
  • Threat Analysis and Risk Assessment (TARA)
  • Cybersecurity verification activities
  • Preparation of security test plans
  • Documentation review
  • Technical support for the type approval process
  • Preparation for authorized authority audits

Our Services Icon Boxes

Icon boxes may be used here.

CSMS Assessment
Cybersecurity Process Audit
Threat Analysis and Risk Assessment (TARA)
Review of Security Requirements
Technical Documentation Review
Type Approval File Preparation
Conformity Assessment
Technical Service Support

Related Standards Standards

  • ISO/SAE 21434
  • ISO 27001
  • ISO 24089
  • UNECE WP.29

Assessment Process

You may present this as a flow diagram.

Application
Technical Document Review
CSMS Assessment
Cybersecurity Review
Reporting
Type Approval Process

You can contact us for assessment support regarding the cybersecurity management system, technical documentation, TARA and type approval process under ECE R155.

REQUEST A TEST APPOINTMENT