Print 

Road Vehicle Cybersecurity in depth (DE0610)

Category
Cybersecurity
Dates
Monday, 04 May 2026 10:00 - Friday, 08 May 2026 13:00
Email
This email address is being protected from spambots. You need JavaScript enabled to view it.
Instructors
Clemens Röttgermann and Daniel Graupner
Type of training
Online or by presence
Brochure
de0610-road-vehicle-cybersecurity-in-context-of-iso21434-in-depth-flyer-7
.pdf
This training will support to lay a basis for the understanding of Automotive Cybersecurity which is one of the most important topics for the future  of highly automated and connected vehicles.
 
It will provide guidance and suggestions for the topics:
  • Understanding and interpreting  the ISO/SAE 21434
  • TARA (Threat-Analysis-and-Risk-Assessment) and Vulnerability Analysis
  • Cybersecurity Mitigations and Controls
  • Secure SW Development
  • Security Verification and Validation

Prerequisites: an understanding of engineering in road-vehicle industry (OEM, TIER1, TIER2) is recommended.

Notes: 

  • The training is a compilation of DE0602 and DE0604
  • Partecipation is recomended before applying for CACE/S-Automotive speciality personal certification

 Who should attend?

  • Automotive Cybersecurity responsible persons
  • Functional Safety Engineers – who want to understand how they are impacted by Cybersecurity
  • Development Engineers (System, Hardware and Software)
  • Product Managers
  • Project Leaders of cybersecurity related development projects
  • Process Managers 
  • Quality Managers

 Agenda and Content:

  • Intro
    • Awareness & Motivation
    • Cybersecurity & Functional Safety
    • Standards overview
  • ISO/SAE 21434
    • General
    • Cybersecurity Management
      • Organizational
      • Project dependent
      • Post-development related
    • Concept Phase
    • Product Development
  • Cybersecurity Analysis
    • Assets/Properties/Impacts -> Risks
    • TA-RA
    • TARA vs VA
    • ATA vs TMEA (STRIDE Analysis)
  • Beyond ISO/SAE 21434
    • Measures & Mitigations
      • Cryptography, why?
      • Architectural considerations
      • Quality Measures
    • Brainstorm on Attacks
  • Secure by Design
    • Design principles & patterns
    • Attack surface analysis
    • Supply chain security considerations
    • Programming language selection & toolchains
  • Secure Coding
    • Memory safety & type safety
    • Coding guidelines & industry best practices
    • Understanding programming mistakes and their security impact
    • Avoiding & detecting common software vulnerabilities for selected software weaknesses (CWE)
  • Secure Verification
    • Static & dynamic analysis
    • Secure code review
    • Fuzzing & other security testing techniques
    • Introduction to penetration testing

For more details about the course topics, download the brochure on the top of the page

 
Duration: 3,5 days (or in-house, jointly agreed, please contact us for more information)
 
Schedule: 1st day from 10:00 to 17:00;  2nd day 10.00 - 17.00; 3rd day 09.00 - 13.00;

Language: depending on the participants the training will be given in German or English. The training material will be in English.

Location: ONSITE at our training rooms to exida.com GmbH office, Prof. - Messerschmitt-Straße 1 - D-85579, Neubiberg / Germany or ONLINE

Certificate: each participant gets a letter of attendance.