Automotive & Embedded Cybersecurity
ISO/SAE 21434 | Secure Boot | Vehicle Networks | SOC & OTA Security
ISO/SAE 21434
TARA
Secure Boot
PKI
OTA Security
Module 1 – Cybersecurity Fundamentals
- Cybersecurity principles (CIA triad)
- Threat landscape in automotive & embedded systems
- Attack surfaces & threat actors
- Security vs safety
Module 2 – Automotive Cybersecurity Standards
- ISO/SAE 21434 overview
- UNECE R155 & CSMS
- ASPICE & cybersecurity linkage
- OEM & Tier-1 compliance requirements
Module 3 – Threat Analysis & Risk Assessment (TARA)
- Asset identification
- Threat scenarios & attack paths
- Risk rating methodologies
- Security goals & requirements
Module 4 – Secure Embedded Architecture
- Secure ECU architecture
- Hardware security modules (HSM)
- Root of Trust
- Secure partitioning
Module 5 – Secure Boot & Firmware Security
- Secure boot chain
- Image authentication & integrity
- Key storage & management
- Rollback protection
Module 6 – Cryptography & Key Management
- Symmetric & asymmetric cryptography
- PKI & certificates
- Key lifecycle management
- Crypto accelerators
Module 7 – Secure Communication
- Secure CAN & CAN-FD
- Ethernet & SOME/IP security
- TLS & IPsec
- In-vehicle network segmentation
Module 8 – OTA & Update Security
- OTA architecture
- Secure update mechanisms
- Delta updates & rollback
- Fleet-wide update management
Module 9 – Intrusion Detection & Monitoring
- IDS concepts
- In-vehicle IDS
- Logging & monitoring
- SOC integration
Module 10 – Security Testing & Validation
- Penetration testing
- Fuzz testing
- Vulnerability scanning
- Compliance evidence
Capstone – Real-World Security Projects
- TARA for automotive ECU
- Secure boot implementation
- OTA security design
- ISO 21434 audit preparation