Welcome to the CYRES Academy On Demand Video Course “Cybersecurity Risk Assessment - Summary (G6_2)”. This video course is of particular importance since the cybersecurity risk assessment (or Threat Analysis and Risk Assessment, short TARA) is the precedent activity to identify cybersecurity goals. With this summary video course we will go through the major steps of this method in order to provide you the key ideas behind it.
After watching this video, you will be able to classify the different steps for executing the TARA as well as identifying new challenges impacting the development caused by TARA and finally recognize the differences between TARA and HARA (Hazard and Risk Analysis) in Functional Safety.
Please note: This video is based on content from ISO/SAE 21434:2021 Road Vehicles - Cybersecurity Engineering.
This video contains six topics:
I. Intro to Cybersecurity Risk Assessment - SummaryFasten your seat belt and let’s get started. In the intro you will get to know what you will learn in this video course about the Cybersecurity Risk Assessment. Furthermore you will learn why the TARA is so important for automotive cybersecurity.
II. Cybersecurity Risk Assessment (TARA) Overview
This video provides the definition of TARA, the variables for qualifying risks, and several risk assessment methodologies.III. ISO/SAE 21434 Risk Assessment Process
In this part of the course, we will see the overview of the cybersecurity risk assessment process. We will go through all steps: starting with asset identification and threat scenario identification, to impact & attack feasibility rating, and not to forget the attack path analysis, risk value determination and risk treatment decision. Additionally, we will have a look at the STRIDE-model for identifying computer security threats.
IV. Sum Up
Here is a sum up and short overview of what you have learned today about Cybersecurity Risk Assessment and TARA.