BSI PD ISO/TR 23786:2019
$102.76
Road vehicles. Solutions for remote access to vehicle. Criteria for risk assessment
| Published By | Publication Date | Number of Pages |
| BSI | 2019 | 22 |
This document identifies criteria that can be considered for assessing the risks related to solutions for remote access to road vehicles, including extended vehicles (ExVe) and their implementation.
Internal communication within the vehicle or the ExVe is out of the scope of this document.
Cybersecurity risks related to the VM infrastructure (except the elements that are part of the extended vehicle) and the road-side equipment are out of the scope of this document.
The criteria identified in this document are also applicable in the case of a risk assessment related to the specification of remote communication solutions, for example a technical standard.
The list of criteria that is provided can be considered as sufficiently comprehensive but not exhaustive, from a global point of view, to allow coherent risk mitigation, if such mitigation is necessary.
This document does not suggest nor specify any methodology for performing a risk assessment.
It does not aim at replacing any methodology, technical specification or standard relative to one or other specific type of risks (for example cyber security risks).
PDF Catalog
| PDF Pages | PDF Title |
|---|---|
| 2 | undefined |
| 6 | Foreword |
| 7 | Introduction |
| 9 | 1 Scope 2 Normative references 3 Terms and definitions |
| 10 | 4 Abbreviated terms |
| 11 | 5 Handling the risks 5.1 Risk categories 5.2 Performing the risk assessment 5.3 Risk assessment in the case of an RCS-specification |
| 12 | 6 Assessment of the risks related to the safety of persons and goods during the vehicle life cycle 6.1 List of safety risks |
| 13 | 6.2 Remarks related to the assessment of the safety risks 6.2.1 General 6.2.2 Potential overload of the electronic system of the moving vehicle 6.2.3 Illicit or malicious remote control of the vehicle or vehicles |
| 14 | 6.2.4 Other safety risks resulting from cybersecurity issues or problems 6.2.5 Absence of consideration of the complete vehicle life cycle. |
| 15 | 7 Assessment of the cybersecurity risks related to the vehicle remote communication system 7.1 Cybersecurity risks 7.2 Remarks related to the assessment of the cybersecurity risks 7.2.1 General considerations related to cybersecurity risks 7.2.2 General considerations related to misuse prevention measures |
| 16 | 8 Assessment of the risks associated to the fair competition among the concerned actors 8.1 List of competition risks 8.2 Remarks related to the assessment of the competition risks 8.2.1 Involved actors 8.2.2 Risk related to the monitoring of the market |
| 17 | 8.2.3 Possible unique knowledge of the customer’s behaviour through monitoring, |
| 18 | 8.2.4 Risks related to the development of new after-sales applications 8.2.5 Competition risks among manufacturers 9 Assessment of the risks related to the responsibility and liability of the concerned actors 10 Assessment of the risks related to the protection of the resources owned by the resource owner (data protection) |
| 19 | Annex A (informative) Template proposal for assessing a possible risk |
| 20 | Bibliography |
