https://uraeus.io/ Expert insights on automotive cybersecurity standards, TARA methodology, SBOM management, and fleet security from the Uraeus engineering team. en-us Fri, 21 Feb 2026 00:00:00 +0000 https://uraeus.io/resources/iso-21434-tara-guide/ https://uraeus.io/resources/iso-21434-tara-guide/ Sun, 01 Feb 2026 00:00:00 +0000 A step-by-step implementation guide for ISO/SAE 21434 Threat Analysis and Risk Assessment (TARA) methodology in automotive cybersecurity. https://uraeus.io/resources/unece-r155-type-approval/ https://uraeus.io/resources/unece-r155-type-approval/ Thu, 05 Feb 2026 00:00:00 +0000 Everything OEMs need to know about UNECE R155 type approval requirements for cybersecurity management systems. https://uraeus.io/resources/automotive-sbom-management/ https://uraeus.io/resources/automotive-sbom-management/ Tue, 20 Feb 2026 00:00:00 +0000 Best practices for Software Bill of Materials (SBOM) management in the automotive industry, covering SPDX, CycloneDX, and supply chain security. https://uraeus.io/resources/service-discovery-protocols/ https://uraeus.io/resources/service-discovery-protocols/ Tue, 10 Feb 2026 00:00:00 +0000 A complete guide to SOME/IP-SD, DoIP, and service-oriented communication in modern vehicle architectures. https://uraeus.io/resources/automotive-certificate-management/ https://uraeus.io/resources/automotive-certificate-management/ Thu, 15 Feb 2026 00:00:00 +0000 How to implement robust X.509 certificate lifecycle management for ECUs, V2X, and OTA update channels. https://uraeus.io/resources/automating-tara-with-ai/ https://uraeus.io/resources/automating-tara-with-ai/ Wed, 11 Feb 2026 00:00:00 +0000 How AI and machine learning automate TARA asset identification, threat scenario generation, attack feasibility assessment, and risk calculation per ISO/SAE 21434. https://uraeus.io/resources/cyclonedx-vs-spdx-automotive/ https://uraeus.io/resources/cyclonedx-vs-spdx-automotive/ Fri, 13 Feb 2026 00:00:00 +0000 Deep comparison of CycloneDX and SPDX SBOM formats for automotive use cases, covering schema differences, VEX support, and regulatory alignment. https://uraeus.io/resources/csms-audit-preparation/ https://uraeus.io/resources/csms-audit-preparation/ Sat, 14 Feb 2026 00:00:00 +0000 Comprehensive checklist for CSMS audit preparation covering organizational, process, and documentation requirements per ISO/SAE 21434 and UNECE R155. https://uraeus.io/resources/attack-trees-vs-attack-paths/ https://uraeus.io/resources/attack-trees-vs-attack-paths/ Thu, 12 Feb 2026 00:00:00 +0000 When to use attack trees vs attack paths in automotive threat modeling, with practical examples and ISO/SAE 21434 alignment guidance. https://uraeus.io/resources/mapping-stride-to-automotive/ https://uraeus.io/resources/mapping-stride-to-automotive/ Thu, 12 Feb 2026 00:00:00 +0000 Practical guide to applying STRIDE threat categories to automotive attack surfaces including CAN bus, OBD-II, Ethernet, OTA, and V2X interfaces. https://uraeus.io/resources/building-vehicle-soc/ https://uraeus.io/resources/building-vehicle-soc/ Tue, 17 Feb 2026 00:00:00 +0000 Guide to building a Vehicle Security Operations Center covering architecture layers, staffing, tool stack, IT SOC integration, and R155 compliance. https://uraeus.io/resources/anomaly-detection-can-bus/ https://uraeus.io/resources/anomaly-detection-can-bus/ Tue, 17 Feb 2026 00:00:00 +0000 Deep technical guide on CAN bus anomaly detection covering rule-based, statistical, and ML-based approaches for automotive intrusion detection systems. https://uraeus.io/resources/eu-cra-vs-unece-r155/ https://uraeus.io/resources/eu-cra-vs-unece-r155/ Sun, 15 Feb 2026 00:00:00 +0000 Comparison of the EU Cyber Resilience Act and UNECE R155 for automotive companies, covering overlap areas, key differences, and dual compliance strategies. https://uraeus.io/resources/ota-update-security/ https://uraeus.io/resources/ota-update-security/ Wed, 18 Feb 2026 00:00:00 +0000 Guide to securing over-the-air updates for vehicles covering PKI code signing, secure boot, SBOM tracking, and compliance with ISO/SAE 21434 and UNECE R156. https://uraeus.io/resources/v2x-security-monitoring/ https://uraeus.io/resources/v2x-security-monitoring/ Wed, 18 Feb 2026 00:00:00 +0000 Comprehensive guide to V2X security covering PKI trust models, misbehavior detection, monitoring approaches, and regulatory landscape across US, EU, and China. https://uraeus.io/resources/x509-certificates-automotive/ https://uraeus.io/resources/x509-certificates-automotive/ Wed, 11 Feb 2026 00:00:00 +0000 End-to-end guide to X.509 certificate infrastructure for connected vehicles covering PKI architecture, certificate pinning, OCSP stapling, and secure boot chains. https://uraeus.io/resources/cybersecurity-goals-vs-requirements/ https://uraeus.io/resources/cybersecurity-goals-vs-requirements/ Fri, 13 Feb 2026 00:00:00 +0000 How to correctly distinguish cybersecurity goals from security requirements in ISO/SAE 21434, with practical examples and traceability guidance. https://uraeus.io/resources/third-party-component-risk-scoring/ https://uraeus.io/resources/third-party-component-risk-scoring/ Fri, 13 Feb 2026 00:00:00 +0000 How to build a risk scoring framework for third-party software components in automotive, covering SBOM-driven vulnerability analysis and contextualised CVSS scoring. https://uraeus.io/resources/supplier-cybersecurity-questionnaire/ https://uraeus.io/resources/supplier-cybersecurity-questionnaire/ Sat, 14 Feb 2026 00:00:00 +0000 How to design evidence-based supplier cybersecurity assessments tied to ISO/SAE 21434 Clause 7 and automate SBOM collection and vulnerability tracking. https://uraeus.io/resources/iso-pas-5112-audit-guide/ https://uraeus.io/resources/iso-pas-5112-audit-guide/ Sun, 15 Feb 2026 00:00:00 +0000 Comprehensive guide to ISO/PAS 5112 automotive cybersecurity audit standard covering audit stages, competence requirements, and common non-conformities. https://uraeus.io/resources/automotive-fuzz-testing/ https://uraeus.io/resources/automotive-fuzz-testing/ Mon, 16 Feb 2026 00:00:00 +0000 Deep technical guide on fuzz testing for automotive systems covering CAN, UDS, DoIP, SOME/IP fuzzing, ECU firmware testing, and CI/CD integration. https://uraeus.io/resources/penetration-testing-connected-vehicles/ https://uraeus.io/resources/penetration-testing-connected-vehicles/ Mon, 16 Feb 2026 00:00:00 +0000 Structured methodology for penetration testing connected vehicles covering wireless, wired, cloud, and OTA attack surfaces aligned with ISO/SAE 21434. https://uraeus.io/resources/fleet-incident-response-playbooks/ https://uraeus.io/resources/fleet-incident-response-playbooks/ Tue, 17 Feb 2026 00:00:00 +0000 How to build and operationalize incident response playbooks for connected vehicle fleets with templates for common scenarios and RACI matrices. https://uraeus.io/resources/scaling-vehicle-telemetry/ https://uraeus.io/resources/scaling-vehicle-telemetry/ Thu, 19 Feb 2026 00:00:00 +0000 Architecture guide for ingesting and processing vehicle telemetry at fleet scale covering edge preprocessing, transport protocols, and data lake architecture. https://uraeus.io/resources/tara-to-runtime-detection/ https://uraeus.io/resources/tara-to-runtime-detection/ Thu, 19 Feb 2026 00:00:00 +0000 How to bridge the gap between design-time TARA threat scenarios and runtime detection rules for continuous automotive security monitoring. https://uraeus.io/resources/vulnerability-management-lifecycle/ https://uraeus.io/resources/vulnerability-management-lifecycle/ Thu, 19 Feb 2026 00:00:00 +0000 End-to-end vulnerability management lifecycle for connected vehicles from discovery through remediation, with automotive-contextualised CVSS scoring and PSIRT operations. https://uraeus.io/resources/cybersecurity-monitoring-r155-evidence/ https://uraeus.io/resources/cybersecurity-monitoring-r155-evidence/ Fri, 20 Feb 2026 00:00:00 +0000 How cybersecurity monitoring serves as evidence for UNECE R155 post-production compliance with practical evidence packaging and KPI guidance. https://uraeus.io/resources/sdv-cybersecurity-debt/ https://uraeus.io/resources/sdv-cybersecurity-debt/ Fri, 20 Feb 2026 00:00:00 +0000 How the shift to software-defined vehicles creates new patterns of cybersecurity debt, with metrics, management strategies, and architectural choices to reduce it. https://uraeus.io/resources/automotive-cybersecurity-maturity-model/ https://uraeus.io/resources/automotive-cybersecurity-maturity-model/ Sat, 21 Feb 2026 00:00:00 +0000 A practical 5-level maturity model for automotive cybersecurity organizations with self-assessment framework and roadmap planning guidance. https://uraeus.io/resources/vehicle-cybersecurity-recall-cost/ https://uraeus.io/resources/vehicle-cybersecurity-recall-cost/ Sat, 21 Feb 2026 00:00:00 +0000 Comprehensive analysis of cybersecurity-triggered vehicle recall costs covering direct, indirect, regulatory, reputational, and opportunity costs with ROI case for proactive investment.