CS Canada

Integrated Safety and Security Risk Assessment to meet the objective of ISO26262 and ISO 21434

We present the benefits of a unified approach to safety and security risk assessment for connected and autonomous vehicles. Performing hazard analysis and threat analysis in tandem reduces the overall effort required to develop work product in compliance with both ISO 26262 and ISO 21434. By extending Fault Tree Analysis (FTA) with attack paths and augmenting Failure Mode and Effects Analysis (FMEA) with vulnerability analysis, it becomes possible to build a comprehensive security assessment framework based on safety assessments. This unified approach reduces duplication of efforts and resources, making risk assessments for connected vehicles more efficient and cost-effective.