Ensuring cybersecurity and ISO 21434 compliance with SystemWeaver®

Vehicle complexity is constantly growing, with more and more powerful computers, increasingly compound interfaces, and over-the-air (OTA) updates. The supply chain is expanding to include even more different suppliers and systems. At the same time, the cybersecurity landscape is rapidly changing and the threats we see today are not what we will need to defend ourselves against in the future.

“Vehicle complexity is constantly growing, with more and more powerful computers, increasingly compound interfaces, and over-the-air (OTA) updates.”

With SystemWeaver® you can achieve ISO 21434 compliance faster, so that your cars stay safe and secure throughout the whole manufacturing chain, and beyond. It enables you to collaborate with your whole organization in real-time, and most importantly always have an up-to-date view of whether you are compliant or not. And if not – how to correct it.

Cybersecurity challenges in the automotive industry

  • Multiple data sources
  • High level of complexity
  • Continuous over-the-air updates
  • Ensure that a design is secure from a cybersecurity perspective
  • Ensure that documentation is always complete and up-to-date for ISO 21434
  • Move away from a general tool like Excel to a best-in-class tool designated for cybersecurity

Continuous compliance

True compliance is challenging when you need to handle multiple data sources with high complexity and conduct threat analysis and risk assessment (TARA) on multiple levels. SystemWeaver® makes it easy to maintain up-to-date documentation and stay compliant with ISO 21434.

Why SystemWeaver® for automotive cybersecurity?

  • Collaborate with the rest of the organization
  • Manage data and traceability for cybersecurity
  • Generate all needed documents for ISO 21434
  • Standard and customized cybersecurity catalogs
  • Generate cybersecurity assurance case from TARA

SystemWeaver® is a game changer.

With SystemWeaver® you can gather all relevant data and choose between many different types of visualization. Conduct TARA on multiple levels and fulfill cybersecurity requirements and test traceability. Based on asset identification output, you can determine damage and threat scenarios. It’s also possible to generate security cases and other needed documentation as well as see how your mitigation mechanisms are affecting or lowering the risk levels.

“Conduct threat analysis and risk assessment on multiple levels and fulfill cybersecurity requirements and test traceability.”

SystemWeaver® guides and helps in conducting the analysis, it supports experts in keeping track of data over time with built-in versioning and configuration management. Validate the consistency and structural completeness of the analysis data, built-in variant handling, and perform advanced test and requirement management capabilities. SystemWeaver helps you to get a better, generalized picture of your cybersecurity plan, and it helps you see the connection from requirements all the way to security goals.

Made possible with our Cybersecurity plan

SystemWeaver®
+ Cybersecurity

With our Cybersecurity plan you bring continuous compliance to your cybersecurity work and processes. By adding this module, you as a cybersecurity expert get all the views, guidance, and cybersecurity catalogs needed.

Compliance


ISO/SAE 21434

  • TARA
  • (Standard and customized) cybersecurity catalogs WP.29
  • CVSS, Attack path and Attack tree
  • Stride, CIA or customized security properties
  • ISO/SAE 21434 templates
  • Full traceability
  • Document generation
  • Integrated with System design and Functional safety