SAE J3061 and ISO 21434:2020 Cybersecurity Threat Analysis and Risk Assessment (TARA)
Home > ISO Training > SAE J3061 and ISO 21434:2020 Cybersecurity Threat Analysis and Risk Assessment (TARA)
Seminar Content
This three-day course is designed to provide the knowledge and skills required to perform threat analysis and risk assessments (TARA) per the SAE J3016 and ISO/SAE 21434 Cybersecurity Engineering Standard. This course will give you the information to Plan, Conduct and Report all TARA activities for a vehicle system or sub-system.
This course combines presentations, along with in-class group breakout exercises to put what you are learning into practice.
Who Should Attend
Those involved in the design, development, and production of electrical and electronic based vehicle products, including the systems, software and hardware engineers, and managers. Basically, all those responsible for the development and implementation of hardware and software systems in vehicles.
Participants should be, or plan to be, actively managing, or involved in, or aware of electrical and/or electronic items, systems, or elements that are incorporated in vehicles. And have the abilities, education, and experience required for the above roles.
Recommended Training and/or Experience
Participants should be involved in or aware of software and hardware development as it relates to the vehicle industry. A basic understanding of the ISO/SAE 21434 standard is recommended.
Seminar Materials
Each participant will receive a seminar manual including case studies.
Seminar Goals
After successful completion of this course, participants will be able to:
- Determine the relationship between SAE J3016/ ISO/SAE 21434 and TARA
- Plan and perform activities of cybersecurity risk management
- Determine the applicability of risk assessment methods of ISO/SAE 21434 and SAE J3016
- Determine the impact rating of a damage scenario
- Determine the attack feasibility rating for an attack path
- Evaluate the risk associated with a damage scenario and attack path
- Select the risk treatment commensurate to the risk.
- Determine the applicability of other risk assessment methods
- Plan of TARA activities
Daily Agenda (approximate, based on class discussions)
Day One
- Chapter 1: Overview of ISO 21434 and SAE J3061
- Overview of TARA
- Relationship between ISO 21434 and TARA
- Chapter 2: Overview of ISO 3100
- Cybersecurity activities of ISO 3100
- Risk assessment methods in ISO 21434 and SAE J3061
- Threat analysis and damage scenarios
- Impact rating
Day Two
- Chapter 3: Attack surfaces
- Attack paths
- Attack feasibility rating
- Risk Assessment methods: Attack potential
- Risk value evaluation
- CAL evaluation
Day Three
- Chapter 4: Risk Mitigation & Treatment
- Management cybersecurity controls
- Technical cybersecurity controls
- Other risk assessment methods
- Plan to implement TARA
Note: The materials will include SAE J3061 content as applicable.
Related Courses
|
 Advanced Statistical Process Control (SPC)
|
| Manufacturing Process Development using PFMEA (Process Flow, PFMEA, Control Plan, Part & Process Approval)
|
| Basic Statistical Process Control (SPC)
|
| Understanding Core Tools - (APQP, PPAP, DFMEA, DVP&R, PFMEA, Control Plan, SPC and MSA)
|
| FMEA 4th Edition Update
|
| Implementing MMOG with IATF 16949:2016
|
| Measurement Systems Analysis (MSA) and Advanced Analysis (ANOVA)
|
| Production Part Approval Process (PPAP) Workshop with IATF 16949:2016
|
| Total Productive Maintenance (TPM)
|
| Understanding Core Tools - APQP & PPAP
|
| Understanding Core Tools - DFMEA & DVP&R
|
| Understanding Core Tools - PFMEA & Control Plan
|
| Understanding Core Tools - Statistical Process Control (SPC)
|
| Understanding Core Tools - Measurement Systems Analysis (MSA)
|
| Production Part Approval Process (PPAP 4th Edition)
|
| APQP, FMEA and Control Plans (New Revision)
|
| APQP 2nd Edition
|
| Effective Problem Solving
|
| 7QC
|
| APQP/PPAP
|
| Machine Failure Mode Effect Analysis (MFMEA)
|
| Understanding AIAG Sub-tier Supplier Management (CQI-19)
|
| Advanced Product Quality Planning (APQP) Overview
|
| Understanding the Five Phases of APQP
|
| APQP Manufacturing Process Development using PFMEA and PPAP
|
| Product Development using SFMEA, DFMEA and Associated Tools
|
| Measurement Systems Analysis(MSA) and Statistical Process Control (SPC)
|
| Conducting Internal and Supplier (Second Party) Audits to Automotive SPICE
|
| AIAG-VDA Product FMEA Overview
|
| SAE J3061 and ISO 21434:2020 Automotive Cybersecurity Certification
|
| AIAG-VDA DFMEA (SFMEA and DFMEA) for Practitioners and Facilitators
|
| AIAG-VDA FMEA for Managers and Implementers – Implementation Training
|
| AIAG-VDA FMEA Understanding, Implications, and Strategy Executive Overview
|
| AIAG-VDA Process FMEA and Control Plans for Practitioners and Facilitators
|
| Understanding AIAG-VDA DFMEA (SFMEA and DFMEA) for Design and Project Team Members
|
| Understanding AIAG-VDA Process FMEA and Control Plans for Process and Project Team Members
|
| Product Integrity for the Product Safety & Conformance Representative (PSCR)
|
| SAE J3061, ISO 21434:2020, and Related Standards: Automotive Cybersecurity Executive Overview
|
| SAE J3061,ISO/SAE 21434:2020, and Related Standards: Overview for Functional Safety Engineers
|
| SAE J3061 and ISO 21434:2020 Cybersecurity Engineering Defense & Protection Against Attacks
|
| SAE J3061 and ISO 21434:2020 Automotive Cybersecurity Auditing and Assessment Certification
|
| SAE J3061 and ISO 21434:2020 Conducting a Cybersecurity FMEA and Vulnerability Analysis Testing for Systems, Hardware and Software
|
| Introduction to Autonomous and Electric Vehicles: A Functional Safety, SOTIF, and Cybersecurity Perspective
|
| Reverse Failure Mode and Effect Analysis – RFMEA
|
| Introduction to Systems Engineering: A Safety and Cybersecurity Perspective
|
| Writing Effective Requirements, Test Cases, and H/S Interfaces for Cybersecurity
|
| Preparing a Cybersecurity Case
|
| Transitioning to BS VI Understanding and Strategising
|
| Root Cause Analysis (RCA) - AIAG Approved
|
| Minitab Tools- AIAG Approved
|
| Multipoint DFMEA for Mechatronic and Electronic Systems using AIAG FMEA 4th Edition
|
| Writing Effective Requirements and Test Cases for Automotive Software Performance Improvement and Capability Determination (ASPICE) and HWE PRM/PAM
|
| Writing Effective Requirements and Test Cases
|
| Multipoint DFMEA for Mechatronic and Electronic Systems using the AIAG-VDA FMEA Handbook Methodology
|
| Understanding Core Tools (APQP/PPAP, DFMEA, DVP&R, SPC and MSA) Following the AIAG FMEA 4th Edition Methodology
|
| Understanding Core Tools (APQP/PPAP, PFMEA, Control Plans, SPC and MSA) Following the AIAG FMEA 4th Edition Methodology
|
| Understanding Core Tools (APQP/PPAP, DFMEA, DVP&R, SPC and MSA) Following the AIAG-VDA FMEA 1st Edition Methodology
|
| Understanding Core Tools (APQP/PPAP, PFMEA, Control Plans, SPC and MSA) Following the AIAG-VDA FMEA 1st Edition Methodology
|
| WP.29, ISO21434, and VDA CSMS - Automotive Cybersecurity Management Systems
|
| Mechanical Engineering Plug-In for ASPICE
|
Related Courses
|
| Advanced Statistical Process Control (SPC)
|
| Manufacturing Process Development using PFMEA (Process Flow, PFMEA, Control Plan, Part & Process Approval)
|
| Basic Statistical Process Control (SPC)
|
| Understanding Core Tools - (APQP, PPAP, DFMEA, DVP&R, PFMEA, Control Plan, SPC and MSA)
|
| FMEA 4th Edition Update
|
| Implementing MMOG with IATF 16949:2016
|
| Measurement Systems Analysis (MSA) and Advanced Analysis (ANOVA)
|
| Production Part Approval Process (PPAP) Workshop with IATF 16949:2016
|
| Total Productive Maintenance (TPM)
|
| Understanding Core Tools - APQP & PPAP
|
| Understanding Core Tools - DFMEA & DVP&R
|
| Understanding Core Tools - PFMEA & Control Plan
|
| Understanding Core Tools - Statistical Process Control (SPC)
|
| Understanding Core Tools - Measurement Systems Analysis (MSA)
|
| Production Part Approval Process (PPAP 4th Edition)
|
| APQP, FMEA and Control Plans (New Revision)
|
| APQP 2nd Edition
|
| Effective Problem Solving
|
| 7QC
|
| APQP/PPAP
|
| Machine Failure Mode Effect Analysis (MFMEA)
|
| Understanding AIAG Sub-tier Supplier Management (CQI-19)
|
| Advanced Product Quality Planning (APQP) Overview
|
| Understanding the Five Phases of APQP
|
| APQP Manufacturing Process Development using PFMEA and PPAP
|
| Product Development using SFMEA, DFMEA and Associated Tools
|
| Measurement Systems Analysis(MSA) and Statistical Process Control (SPC)
|
| Conducting Internal and Supplier (Second Party) Audits to Automotive SPICE
|
| AIAG-VDA Product FMEA Overview
|
| SAE J3061 and ISO 21434:2020 Automotive Cybersecurity Certification
|
| AIAG-VDA DFMEA (SFMEA and DFMEA) for Practitioners and Facilitators
|
| AIAG-VDA FMEA for Managers and Implementers – Implementation Training
|
| AIAG-VDA FMEA Understanding, Implications, and Strategy Executive Overview
|
| AIAG-VDA Process FMEA and Control Plans for Practitioners and Facilitators
|
| Understanding AIAG-VDA DFMEA (SFMEA and DFMEA) for Design and Project Team Members
|
| Understanding AIAG-VDA Process FMEA and Control Plans for Process and Project Team Members
|
| Product Integrity for the Product Safety & Conformance Representative (PSCR)
|
| SAE J3061, ISO 21434:2020, and Related Standards: Automotive Cybersecurity Executive Overview
|
| SAE J3061,ISO/SAE 21434:2020, and Related Standards: Overview for Functional Safety Engineers
|
| SAE J3061 and ISO 21434:2020 Cybersecurity Engineering Defense & Protection Against Attacks
|
| SAE J3061 and ISO 21434:2020 Automotive Cybersecurity Auditing and Assessment Certification
|
| SAE J3061 and ISO 21434:2020 Conducting a Cybersecurity FMEA and Vulnerability Analysis Testing for Systems, Hardware and Software
|
| Introduction to Autonomous and Electric Vehicles: A Functional Safety, SOTIF, and Cybersecurity Perspective
|
| Reverse Failure Mode and Effect Analysis – RFMEA
|
| Introduction to Systems Engineering: A Safety and Cybersecurity Perspective
|
| Writing Effective Requirements, Test Cases, and H/S Interfaces for Cybersecurity
|
| Preparing a Cybersecurity Case
|
| Transitioning to BS VI Understanding and Strategising
|
| Root Cause Analysis (RCA) - AIAG Approved
|
| Minitab Tools- AIAG Approved
|
| Multipoint DFMEA for Mechatronic and Electronic Systems using AIAG FMEA 4th Edition
|
| Writing Effective Requirements and Test Cases for Automotive Software Performance Improvement and Capability Determination (ASPICE) and HWE PRM/PAM
|
| Writing Effective Requirements and Test Cases
|
| Multipoint DFMEA for Mechatronic and Electronic Systems using the AIAG-VDA FMEA Handbook Methodology
|
| Understanding Core Tools (APQP/PPAP, DFMEA, DVP&R, SPC and MSA) Following the AIAG FMEA 4th Edition Methodology
|
| Understanding Core Tools (APQP/PPAP, PFMEA, Control Plans, SPC and MSA) Following the AIAG FMEA 4th Edition Methodology
|
| Understanding Core Tools (APQP/PPAP, DFMEA, DVP&R, SPC and MSA) Following the AIAG-VDA FMEA 1st Edition Methodology
|
| Understanding Core Tools (APQP/PPAP, PFMEA, Control Plans, SPC and MSA) Following the AIAG-VDA FMEA 1st Edition Methodology
|
| WP.29, ISO21434, and VDA CSMS - Automotive Cybersecurity Management Systems
|
| Mechanical Engineering Plug-In for ASPICE
|
|
|