This SAE Standard establishes practices to:
- a
Manage risk and ensure security of a cyber-physical system (CPS) throughout its life cycle by utilizing systems engineering principles;
- b
Assess the impact of cyber-physical systems security (CPSS) objectives and requirements;
- c
Assess the security risks to CPS technical effectiveness and functions, and address weaknesses and vulnerabilities;
- d
Address various domains of consideration (see 3.1) that take into account operating conditions of the system, command and control, configuration management (refer to SAE EIA649), etc., that could negatively impact CPSS or CPS-designed purpose;
- e
Perform design validation and verification to assess security and risk of the CPS.