Automotive Industry

The Automotive Industry Action Group (AIAG), founded in 1982, is a nonprofit organization comprised of original equipment manufacturers (OEMs), suppliers, service providers, government entities, and individuals in academia who collaborate to reduce costs and complexity in the automotive supply chain. AIAG membership includes leading global manufacturers, parts suppliers, and service providers. The organization aims to achieve its objectives via educational conferences and training and by developing and publishing standards.

An independent, nonprofit organization, Accellera Systems Initiative is dedicated to creating, supporting, promoting, and advancing system-level design, modeling, and verification standards for the worldwide electronics industry. Its broad membership fully supports the work of its technical committee to develop balanced, open technology standards that benefit the worldwide electronics industry.

Through an ongoing partnership with the IEEE, Accellera’s standards and technical implementations are contributed to the IEEE for formal standardization and ongoing governance.

A nonprofit organization of automotive technology providers, the Automotive SerDes Alliance encourages the standardizing of asymmetric SerDes technology:

• Single PHY specification per speed grade
• Simple base feature set to enable the bulk applications
• Competitive optional feature set for high-end applications
• A framework for the complete ecosystem

ASAM is dedicated to standardizing the data exchanges between the many tools used to develop and validate vehicles, their components, and their control systems. Its vision is that tools in a development process chain should be freely interconnected, with seamless exchange of data.

Automotive Grade Linux (AGL) brings together automakers, suppliers, and technology companies to build a Linux-based, open-software platform for automotive applications that can serve as the de facto industry standard. The collaborative project believes that a shared platform across the industry  ultimately facilitates rapid innovation and faster time-to-market for new products.

The Automotive Information Sharing and Analysis Center (Auto-ISAC) is an industry-driven community that shares and analyzes intelligence about emerging vehicle cybersecurity risks, providing best practices that are aimed at enhancing vehicle cybersecurity capabilities across the global automotive industry, including light- and heavy-duty vehicle OEMs, suppliers, and the commercial vehicle sector.

Automotive Open System Architecture (AUTOSAR) is a worldwide development partnership of vehicle manufacturers, suppliers, service providers, and companies from the automotive electronics, semiconductor, and software industries. AUTOSAR standards are used heavily in safety-critical automotive and aircraft applications.

The organization’s AUTOSAR Classic Platform defines a standard architecture and API that ensures interoperability across vendor components.Its AUTOSAR Adaptive Platform for high-performance computing engine control units (ECUs) implements the AUTOSAR runtime for adaptive applications (ARA).

Comprised of automotive and technology industry leaders, the Autonomous Vehicle Computing Consortium (AVCC) help accelerate mass production of safe and affordable vehicles with automated and assisted driving solutions, as defined by the SAE practice, J3016 levels 1-5. Participation is open to all automotive and technology companies.

The Functional Mock-up Interface (FMI) is a free standard that defines a container and an interface to exchange dynamic models using a combination of XML files, binaries, and C code zipped into a single file. It is supported by 150+ tools and maintained as a Modelica Association Project on GitHub.

The IEC is a global, nonprofit organization focused on quality infrastructure and international trade in electrical and electronic goods. Its work facilitates technical innovation, affordable infrastructure development, efficient and sustainable energy access, smart urbanization and transportation systems, and climate change mitigation while increasing the safety of people and the environment.

IEEE is the world’s largest technical professional organization dedicated to advancing technology for the benefit of humanity. Its active portfolio includes nearly 1,300 standards and projects under developmentA leading developer of industry standards in a broad range of technologies, IEEE plays an integral role in driving the functionality, capabilities, and interoperability of a wide range of products and services that are changing the way that people live, work, and communicate.

The International Organization for Standardization (ISO) is an independent and non-governmental group whose membership of 165 national standards bodies strives to create voluntary, consensus-based, market-relevant international standards to facilitate innovation and help solve global challenges. Among its standards for the automotive industry are:

• ISO 26262, which covers functional safety of electrical and electronic systems in production road vehicles
• ISO/SAE 21434, which builds upon ISO 26262 to encompass vehicle cybersecurity
• ISO/PAS 21448, which addresses new safety challenges faced by autonomous and semi-autonomous vehicle software developers

The Japan Automotive Software Platform and Architecture (JASPAR) enables the standardization of electronic control systems and software for in-vehicle networks, allowing common implementation, more efficient development, and increased reliability across the industry.

The JASPAR cybersecurity technical working group works to define and validate the requirements of automotive cybersecurity technologies based on use cases, including projects like the “A-CST-07-0003 Fuzzing Test Guide.”

For over a decade, Driving Vision News (DVN) has been the journal of reference for the driver and vehicle lighting and vision world. With a scope that now includes advanced driver assistance systems (ADAS) and car interiors, DVN provides a one-stop source of the information related to the important events and innovations in these industries. DVN Newsletters, Reports, and Workshops provide industry facts, performance data, news and analysis, interviews, and commentary from the world’s subject matter experts.

The Motor Industry Software Reliability Association (MISRA) is a collaboration between vehicle manufacturers, component suppliers, and engineering consultancies that strive to promote best practices for developing safety-related electronic systems in road vehicles and aircraft.

MISRA works closely with ISO/IEC JTC 1/SC 22/WG 14, the ISO C standards committee working group, and ISO/IEC JTC 1/SC 22/WG 21, the ISO C++ standards committee working group.

The National Telecommunications and Information Administration (NTIA), located within the U.S. Department of Commerce, is the Executive Branch agency that is principally responsible by law for advising the President on telecommunications and information policy issues. NTIA’s programs and policymaking focus largely on expanding broadband internet access and adoption in the U.S., expanding the use of spectrum by all users, and ensuring that the internet remains an engine for continued innovation and economic growth.

The OpenChain Project maintains the international standard for open-source license compliance, allowing companies of all sizes and in all sectors to adopt the key requirements of a quality, open-source compliance program. The organization’s vision is a supply chain where open source is delivered with trusted and consistent compliance information. Its mission is to establish requirements to achieve effective management of open source for software supply chain participants.

SAE International (previously known as the Society for Automotive Engineers) is a global association of engineers and related technical experts that develops and publishes international standards for global transport industries such as aerospace, automotive, and commercial vehicles.

G-32 Cyber-Physical Systems Security Committee

The SAE G-32 Cyber-Physical Systems Security Committee develops documents that address weaknesses and vulnerabilities of cyber-physical systems and system elements including software, firmware, and hardware. Cross-industry/sector active participation in the committee includes members from industries like aerospace, automotive, defense, medical devices, industrial control devices, IoT, and banking and finance, as well as government and academia.

• JA6678 for Cyber Physical Systems Security Software Assurance standardizes practices to assess and address software vulnerabilities and weaknesses for a cyber-physical system using systems engineering principles to ensure security and resilience throughout the lifecycle of the system; conducts software assurance and analysis, considering impact on the product’s software, hardware, and firmware; addresses different areas of concern that includes consideration of the interfaces and network of the system and command and control that could be manipulated through a physical process and/or physical input of the data flow and computation; and performs design validation and verification to assess security and resiliency of software impacting the cyber-physical system safety, security, and integrity across the complete lifecycle.
• JA6801 Cyber Physical Systems Security Hardware Assurance standardizes practices to assess and address weaknesses and vulnerabilities of the hardware, specifically the EEE components, of a cyber-physical system using systems engineering principles to ensure security and resilience throughout the lifecycle of the system; conducts EEE component level assurance and analysis, considering impact on the hardware, software, and firmware, in the product or system; addresses different areas of concern that includes consideration of the interfaces and network of the system and command and control that could be manipulated through a physical process and/or physical input of the data flow and computation; and performs design validation and verification to assess security and resiliency of the cyber-physical system.

Vehicle Cybersecurity Systems Engineering Committee

The vehicle cybersecurity systems engineering committee WG TEVEES18A, serving as the U.S. TAG to ISO, co-develops the Cyber Security Guidebook for Cyber-Physical Vehicle Systems (J3061). The ISO/SAE 21434 cybersecurity engineering standard for road vehicles builds upon SAE J3061 and provides a similar framework for the entire lifecycle of road vehicles.

Data Link Connector Vehicle Security Committee

The Data Link Connector vehicle security committee WG TEVDS20 develops:

• J3138 for Diagnostic Link Connector Security, which describes some of the actions that can help ensure safe vehicle operation in the event that any such connected device (external test equipment, connected data collection device) is compromised by a source external to the vehicle. It describes those actions specifically related to SAE J1979, ISO 15765, and ISO 14229 standardized diagnostic services.
• J3146 for survey of practices for securing the interface through the DLC provides a reference or overview of some current practices for securing the vehicle’s interface with the Data Link Connector (DLC) from cybersecurity risks associated with external test equipment connections such as diagnostics scan tools or remotely connected applications such as telematics devices. The practices in this report are examples of some secured, in-vehicle data access methods in the automotive industry.

The Dassault Systèmes development platform allows developers and independent software developers to create software applications which are fully integrated with Dassault Systèmes product lines. The organization strives to continuously enhance its global product lifecycle management solution and 3DEXPERIENCE for its customers, while addressing their requirements in specific industry processes and engineering domains. Software Partner contributions are key to completing and extending the overall solution offering to the market.

The Zephyr Project, a Linux Foundation hosted Collaboration Project, provides an open-source, collaborative effort that unites developers and users in building a best-in-class, small, scalable real-time operating system (RTOS) optimized for resource-constrained devices, across multiple architectures. As a neutral project, silicon vendors, OEMs, ODMs, ISVs, and OSVs can contribute technology to reduce costs and accelerate time-to-market for billions of connected embedded devices.