Introduced by the United Nations Economic Commission for Europe (UNECE), the new UN R155 regulation addresses the growing focus on cybersecurity in connected cars. This regulation, which came into force in July 2022, requires vehicle manufacturers to apply a safety by design approach to their products and processes.
To allow the sale of new vehicles in markets covered by regulation R155, the vehicle manufacturer must have a valid certificate of conformity for the cybersecurity management system (CSMS) applied to each vehicle type.
To achieve certification, vehicle OEMs must implement cybersecurity practices across the entire supply chain to reduce the overall risk of attack throughout the vehicle lifecycle – from initial concept to end-of-life.
To help customers achieve compliance with national and international cybersecurity regulations such as UN R155, Infineon Technologies is one of the first semiconductor suppliers to achieve ISO/SAE 21434 certification, the new international standard for management systems of automotive cybersecurity. Certification of this standard was carried out by TÜV Nord.
Additionally, Infineon's upcoming AURIX TC4xx microcontroller family features a new and innovative cybersecurity architecture and is expected to achieve product certification under the ISO/SAE 21434 standard.
Infineon's ISO/SAE 21434 compliant CSMS applies to a wide range of Infineon products that support automotive cybersecurity, including AURIX and PSoC microcontrollers, SEMPER Secure flash memories, and OPTIGA hardware security modules. Following industry best practices, the CSMS covers information technology, manufacturing technology, and selected regulatory and regional environments.
Infineon's threat monitoring system actively analyzes relevant vulnerability disclosures, and potential threats to Infineon's security products and systems can be assessed and mitigated based on an ISO/SAE compliant product security incident response process 21434. Together, these ISO/SAE 21434 compliant incident monitoring and response capabilities enable Infineon and its customers to work closely to quickly identify and mitigate product security risks in compliance with security management programs. relevant risks and regulations.
