HomepageServicesDigital & Product SolutionsDigital Trust ServicesAutimotive

Automotive

ISO/SAE 21434 - Automotive Cybersecurity

Securing Connected Vehicles with Confidence
With the rapid growth of connected vehicles, software-defined architectures, and Over-the-Air (OTA) updates, cybersecurity has become a critical requirement across the automotive lifecycle. Increasing connectivity also brings new cybersecurity risks that must be managed systematically.
DEKRA India supports organizations in strengthening cybersecurity capabilities aligned with ISO/SAE 21434.
About ISO/SAE 21434
ISO/SAE 21434 defines cybersecurity engineering for road vehicles across the entire lifecycle, from concept and development to production and operation.
It enables organizations to:
  • Protect vehicle electronics, software, and communication interfaces
  • Perform structured cybersecurity activities such as Threat Analysis and Risk Assessment (TARA), which helps identify and mitigate potential cyber threats
  • Implement secure development and architecture practices
  • Manage vulnerabilities and incident response
  • Align with regulatory requirements such as UNECE R155/R156 (Cybersecurity and Software Update regulations) and AIS 189/190 (India-specific regulations)
DEKRA India Automotive Cybersecurity Services
1. Cybersecurity Training Services
DEKRA India provides comprehensive training programs to support organizations in developing cybersecurity competencies. These trainings programs are designed for OEMs, suppliers, and engineering teams involved in secure system and software development.
The training offerings include:
  • Fundamentals of automotive cybersecurity and awareness
  • ISO/SAE 21434 lifecycle activities
  • Threat Analysis and Risk Assessment (TARA)
  • Customized training programs based on organizational needs
2. Compliance Audits
DEKRA India supports organizations in performing compliance audits at the organizational level to assess alignment with ISO/SAE 21434 requirements. In addition, DEKRA India provides product-level cybersecurity assessments based on ISO/SAE 21434.
Global Capabilities
Through its global network of accredited entities, DEKRA offers extended cybersecurity services in accordance with applicable accreditation frameworks, including:
  • Cybersecurity services related to UNECE R155/R156 regulations, including CSMS (Cybersecurity Management System) and SUMS (Software Update Management System) evaluation, audits, certification, and type approval support.
  • Testing and validation services such as penetration testing, vulnerability scanning, and fuzz testing to assess system robustness against cyber threats.
  • Compliance and advisory support for cybersecurity implementation and regulatory readiness.
Regulatory context:
  • UNECE R155 defines organizational cybersecurity activities (CSMS) and requires certification as a precondition for vehicle type approval
  • UNECE R156 defines software update management (SUMS) and requires certification for software update capabilities
Why DEKRA India?
  • Global expertise in automotive safety and cybersecurity
  • Independent and impartial service delivery
  • Strong understanding of regulatory and engineering requirements
  • Integrated approach across safety (ISO 26262), cybersecurity (ISO/SAE 21434), and emerging technologies
Get in Touch
Partner with DEKRA India to support your cybersecurity journey and align with evolving industry and regulatory expectations.