Nowadays, systematic security risk analysis plays a vital role in the automotive domain. The demand for advanced driver assistance systems and connectivity of vehicles to the internet makes cyber-security a crucial requirement for vehicle manufacturers. This paper summarizes the risk analysis method stated in the recently released automotive security standard ISO/SAE 21434, which lays the high-level principles for threat analysis and risk assessment (TARA) methods. Following, we introduce a specific use case to compare different security analysis approaches which OEMs can benefit from to achieve compliance with the standard.

翻译：如今，系统性安全风险分析在汽车领域发挥着至关重要的作用。对高级驾驶辅助系统和车辆联网功能的需求，使得网络安全成为车辆制造商的关键要求。本文总结了最新发布的汽车安全标准ISO/SAE 21434中规定的风险分析方法，该方法为威胁分析与风险评估（TARA）确立了高层次原则。随后，我们通过一个具体用例来比较不同的安全分析方法，原始设备制造商（OEM）可借助这些方法满足标准合规要求。