Recently, itemis AGand GoGoByte have announced a partnership to distribute YAKINDU Security Analyst,a TARA (Threat Analysis and Risk Assessment) solution. As a technical partner in China, GoGoByte will help itemis to provide better service to Chinese customers.
itemis is a German IT consulting and software development company that has been delving into the Model Driven Software Development (MDSD) for many years and provides especially automotive customers with full lifecycle cybersecurity threat analysis and risk assessment solutions from components to full vehicle. Its product, YAKINDU Security Analyst, is a purpose-built ISO/SAE21434 compliant TARA analysis solution, which can help OEMs complete UN Regulation NO.155 compliance certification and support the generation of customizable ISO/SAE21434 reports.
Meanwhile, in order to cope with the rapidly changing security environment, YAKINDU Security Analyst adopted a quantifiable threat and control catalog that is continuously maintained by security community experts, making all TARA assessment reports easier to compare and update. Its model-based approach to security risk analysis is not only beneficial for the design aspects of a vehicle model or components, but also can even support the full lifecycle security management of a networked vehicle. As for the product design, YAKINDU Security Analyst also offers two unique advantages. It is designed with OpenXSAM as security exchange format, it uses ThreatCatalog that is continuously updated. What’s more, it also enables full collaboration in interdisciplinary organizations with functional interdependencies through architecture-based modeling.
In recent years, as the automotive industry has become increasingly automated and connected, cybersecurity threats have also been on the rise. On August 31, 2021, the first international standard in automotive information security, ISO/SAE 21434 (Road Vehicles – Automotive Cybersecurity Engineering) was promulgated, requiring manufacturers to equipped with security processes and technologies in their organizations and vehicles to pass the model certification. The WP29/R155 issued in June 2020 even makes mandatory requirements for cybersecurity of connected and self-driving vehicles. Until 2024, non-compliant vehicles will be banned from markets in Europe, Korea and Japan. Then, YAKINDU Security Analyst was born with abilities to meet urgent needs of automotive customers for cybersecurity compliance and TARA analysis.
Li Jun, the founder of GoGobyte, said, “YAKINDU Security Analyst is a TARA tool developed for and by cybersecurity experts, supporting community collaborative projects such as ThreatCatalog and OpenXSAM, makes it suitable for automotive’s cybersecurity dynamic, full lifecycle requirements. This collaboration will provide automotive customers with more complete cybersecurity services, reduce risks left over from the design phase, and vulnerabilities that cannot be remotely fixed during the vehicle operation phase.”
As a cybersecurity company committed to providing automotive customers with comprehensive security solutions and services covering the entire life cycle of connected cars from concept phase to decommission phase, GoGoByte is actively building a partner ecosystem, working with security partners in chip, module, communications, cloud and other fields to provide customers with a full range of security solutions and services, securing the automotive industry’s technological development and innovation.