The Ministry of Road Transport and Highways (MoRTH) has proposed standardized provisions for Cyber Security and Management Systems (CSMS) applicable to specific categories of four-wheelers, including both passenger and commercial vehicles. The draft document, titled ‘Approval of vehicles with regards to Cyber Security and Cyber Security management system,’ outlines that the submission for approval of a vehicle’s cyber security features should be made by the vehicle manufacturer or their duly accredited representative.
Following discussions in the 66th meeting of the Automotive Industry Standards Committee (AISC) on July 14, 2023, the committee agreed to develop an Automotive Industry Standard (AIS) specifically addressing the approval of vehicles equipped with Cyber Security and Management Systems (CSMS).
The primary objective of this standard is to establish consistent provisions for CSMS implemented in motor vehicles falling under categories M and N, as per the draft report.
Importantly, the proposed standard does not supersede other existing standards, regional or national legislations related to authorized access to vehicle data, functions, and resources. It also takes into account national and regional privacy laws concerning the protection of personal data.
The draft report emphasizes that vehicle manufacturers must implement suitable measures to secure dedicated environments on the vehicle type, if provided, ensuring the safe storage and execution of aftermarket software, services, applications, or data.
In the context of this standard, cybersecurity is defined as the state in which road vehicles and their functions are safeguarded against cyber threats targeting electrical or electronic components. CSMS is described as a systematic, risk-based approach outlining organizational processes, responsibilities, and governance to manage risks associated with cyber threats to vehicles, safeguarding them from potential cyberattacks.
The draft is set to undergo a public consultation process before official notification.
Source: Business Standard