Skip to content
Cybersecurity Engineering for Engine Control Unit

Expertise

Cybersecurity, Engineering Consulting

Industry

Industry

Hertausforderungen

Protection of Complex Machine Systems

Development of Security Concepts and Solutions for a product integrated in numerous different machinery applications. Based on analysis of item contexts and initially available Threat assessment, modelling security solutions compliant with both ISO21434 and ISA 62443 standard.

Solution Implemented

Comprehensive Security Concept

Our solution was to develop a security concept at functional and technical design level for securing the mission critical Electronic Control Unit and its interfaces over the whole product lifecycle based on the cybersecurity risks identified in the TARA and general requirements imposed by the ISA62443 standard.

Concept and idea management:
  • Designed Secure Communication over standard interfaces including technical concepts for securing CAN and LIN communication with other machinery control units and sensors.
  • Designed and develop strategy for Debug and Development interface protection
  • Designed Secure Boot and Secure Software Update strategy for machinery working in remote locations that additionally ensure availability of software application and management of potential software part based compatibility.
  • Creation of Security Monitoring and logging concept along side with identification of security triggers and log storage and retrieval process
  • Designing concepts diagnostic service security introducing authorization and role based access that is compatible with customer tool and service strategy.
  • Specification of Management process for initial provisionment of security objects and enabling of security features in manufacturing. Design of rules for security objects revocation and rotation during products lifecycle.
 
Cybersecurity-Management:
  • Leading technical work-shops on the product Security concept refinement with other product stakeholders
  • Planning of feature delivery schedules based on application integrator specific requirements and needs

 

Results

Security Solutions for the Product Lifecycle

Our team delivered a comprehensive and scalable security concept with alternative solution proposals and lead on-spot workshop(s) together with other stakeholder to refine in technical detail the solutions to fit existing solutions and processes and introduce future-proof features that would let the security solutions be updated over the product lifecycle to address future developments in security threat landscape.

Furthermore, our team supported development of critical features release and integration plan for application teams integrating the ECU to meet their SOP target dates and specific security needs based on application use-case.

Our security concepts helped improve the cyber resilience out of the box for the product and provided forward thinking concepts and process improvements for managing cyber incidents during products active service life.

Interested in more success stories?

Explore our other Success Stories, to see how we tackle complex challenges with effective strategies. Our additional success stories provide deeper insights into our innovative solutions and the impactful results we achieve.

All Success Stories and Industries at a Glance

All Success Stories and Industries at a Glance

Stay innovative
with us as your partner

1A CUE Consulting & Engineering GmbH specializes across industries in Functional Safety, Systems Engineering, Cybersecurity, and Embedded Software Development.