Cantitate/Preț
Produs

Automotive Threat Analysis and Risk Assessment in Practice: A practical guide to TARA following the ISO/SAE 21434 standard for automotive embedded and IT/OT systems

Autor Rodrigo do Carmo, Alexander Schlensog
en Limba Engleză Hardback – 24 sep 2024
The surge in automotive cybersecurity regulations necessitates a structured risk management method. This work examines these regulations, details the European cybersecurity legal framework, and explores the ISO/SAE 21434's threat analysis and risk assessment (TARA) approach. Implementing TARA in real-world scenarios presents challenges, such as identifying the correct assets or performing accurate threat modeling. This book employs a pragmatic approach to TARA across three domains: electrical and electronic systems within the vehicle, the vehicle's connected ecosystem, and manufacturing plants, integrating insights from ISO/IEC 27000 and IEC 62443 standard series without seeking to harmonize them. This book offers a technical guideline for TARA, presenting detailed case studies across these domains and emphasizing technical rigor while ensuring efficiency.
Citește tot Restrânge

Preț: 73185 lei

Preț vechi: 95045 lei
-23% Nou

Puncte Express: 1098

Preț estimativ în valută:
14006 14549$ 11634£

Carte tipărită la comandă

Livrare economică 31 ianuarie-06 februarie 25

Preluare comenzi: 021 569.72.76

Specificații

ISBN-13: 9783662696132
ISBN-10: 3662696134
Pagini: 250
Ilustrații: Approx. 250 p.
Dimensiuni: 155 x 235 mm
Ediția:2024
Editura: Springer Berlin, Heidelberg
Colecția Springer
Locul publicării:Berlin, Heidelberg, Germany

Cuprins

Introduction.- Standards for the Manufacturing and Automotive Industries.- Integrated Management Systems and Integrated Risk Management.- Threat Analysis and Risk Assessment.- Defining the Scope of a TARA Project.- Identifying the Assets of the Item.- Modeling and Evaluating Threat Scenarios.- Performing the Risk Evaluation.- Risk Treatment Decision.- Appendix.- Index.

Notă biografică

Dr.-Ing. Rodrigo do Carmo holds degrees in telecommunications engineering and computer science. He has held cybersecurity roles at Continental AG and secunet Security Networks AG, where he leads TARA projects and contributes to ISO/DIN automotive cybersecurity committees.
Dipl.-Phys. Alexander Schlensog with a background in physics and extensive experience in information security since 2001, leads the consulting business for the Industry division at secunet. He specializes in critical infrastructures and plays an active role in ISO/DIN standards committees for information security and data protection.
 

Textul de pe ultima copertă

The surge in automotive cybersecurity regulations necessitates a structured risk management method. This work examines these regulations, details the European cybersecurity legal framework, and explores the ISO/SAE 21434's threat analysis and risk assessment (TARA) approach. Implementing TARA in real-world scenarios presents challenges, such as identifying the correct assets or performing accurate threat modeling. This book employs a pragmatic approach to TARA across three domains: electrical and electronic systems within the vehicle, the vehicle's connected ecosystem, and manufacturing plants, integrating insights from ISO/IEC 27000 and IEC 62443 standard series without seeking to harmonize them. This book offers a technical guideline for TARA, presenting detailed case studies across these domains and emphasizing technical rigor while ensuring efficiency.
 
About the Authors:
Dr.-Ing. Rodrigo do Carmo holds degrees in telecommunications engineering and computer science. He has held cybersecurity roles at Continental AG and secunet Security Networks AG, where he leads TARA projects and contributes to ISO/DIN automotive cybersecurity committees.
 
Dipl.-Phys. Alexander Schlensog with a background in physics and extensive experience in information security since 2001, leads the consulting business for the Industry division at secunet. He specializes in critical infrastructures and plays an active role in ISO/DIN standards committees for information security and data protection.

Caracteristici

Delivers the groundwork for consolidated risk management Apply the relevant standards like ISO/SAE 21434 for high-level risk analysis across application domains Helps to optimize existing and build new business processes