Skip to main content

Better automotive cybersecurity at half the cost

Software Driven Cybersecurity Management for vehicles and vehicle components reduces your cybersecurity development cost and time by 50% and improves quality and analytical capabilities.

Automotive

Cybersecurity

Management

Cybersecurity Solutions

Our holistic cybersecurity solution for automotive products covers both the Cybersecurity Management System (CSMS) on the organizational level and the Product Cybersecurity Evidence (PCSE) of the application of the CSMS on each product.

Quma automates the management of both the CSMS on organizational level and the PCSE through the cybersecurity product lifecycle.

Cybersecurity Management System (CSMS)

The objective of the CSMS is enabling the company to develop, produce and operate cybersecure vehicles, vehicle components or vehicle backends. It forms the basis for regulatory and customer audits.

Product Cybersecurity Evidence (PCSE)

The objective of the PCSE is providing traceable evidence of performing cybersecurity as defined in the CSMS regarding the vehicle, vehicle component or vehicle backend. It forms the basis for regulatory type approvals or customer approval.

Automate Cybersecurity Management

...

Cybersecurity Management

Specification, integration, governance, planning, tracking, moderation, administration, alignment, reporting, versioning, traceability, etc.


Cybersecurity Development

Threat analysis and risk assessment, control specification, cryptography, verification, pen-testing, etc.

Used by

Based on

  

OEM

Cars and special purpose vehicles


  

UNECE R155

Management System


  

Supplier

Vehicle components and software


  

ISO/SAE 21434

​Engineering System


  

Backend

Over the air communication


  

UNECE R156

Update Management


Product Features

Cybersecurity Management

Audit-tested, fully customizable work product templates

Refined work instructions guiding through each step

Comprehensive checklists to self assess development progress

Governance

Streamlined audit management ensuring timely and thorough completion of audits

Structured frameworks facilitating continuous improvement and risk analysis

Intuitive processes for escalation and awareness management

Assessments

Easy assessment management to plan and assess with full traceability

Comprehensive requirement lists as per industry standards and best practice

Autogenerated, detailed assessment reports 

Be faster

The CSMS is setup in a day and cybersecurity development takes half the time.

Cut cost in half

The automated cybersecurity management halfs the required manpower.

Be transparent

The data is highly structured and allows any type of analytics and reports.

Contact us

Get in touch for a free demo.

UNECE R 155

UNECE R 155, adopted in June 2020 by the United Nations Economic Commission for Europe (UNECE), sets a new standard for automotive cybersecurity. It mandates that vehicle manufacturers implement a Cybersecurity Management System (CSMS) to protect vehicles from cyber threats throughout their lifecycle.

The regulation requires manufacturers to identify and manage cyber risks continuously, perform regular security assessments, and obtain certification for their CSMS through rigorous audits. This certification must be renewed periodically to ensure ongoing compliance.

UNECE R 155 also mandates active monitoring and response to cybersecurity incidents, ensuring that vulnerabilities are promptly addressed. Applicable to all passenger cars, vans, trucks, buses,  and vehicles for special purposes, such as garbage trucks, camper vans, ambulances, etc, this regulation aims to enhance the overall security of modern vehicles.

UNECE R 155 represents a significant advancement in automotive cybersecurity regulation, prioritizing vehicle security and benefiting consumers and the broader automotive industry.

ISO/SAE 21434

ISO/SAE 21434, introduced in August 2021, is a critical automotive cybersecurity standard developed by the International Organization for Standardization (ISO) and the Society of Automotive Engineers (SAE). It addresses increasing cybersecurity risks in modern vehicles by integrating cybersecurity throughout the vehicle lifecycle, from design and production to operation and decommissioning.

The standard uses a risk-based approach, requiring organizations to identify, assess, and mitigate cybersecurity threats. It promotes collaboration across the supply chain, recognizing that cybersecurity is a shared responsibility among manufacturers, suppliers, and stakeholders. The standard aligns with other international standards and regulations, ensuring a cohesive approach to managing cybersecurity risks.

By adhering to ISO/SAE 21434, manufacturers can address cybersecurity in a common approach, gaining a competitive edge and building consumer trust. As vehicles become more connected and automated, this standard is essential for ensuring the safety and security of vehicles and users.

Qumasoft

Better automotive cybersecurity, but at half the cost and in half the time.

Get in touch!

...