Overview - Automotive SPICE® (ASPICE) for Cybersecurity

IMPORTANT HINT: Only Process Groups and Processes related to Cybersecurity are covered in the course!

The course gives an overview of Automotive SPICE® (ASPICE) for Cybersecurity.

The contents of the course are divided into three main chapters:

1. Basics of Automotive SPICE® (ASPICE)

2. Process Reference Model and related Process Groups

3. Capability Levels of Auotmotive SPICE® (ASPICE)

Chapter 1: Basics of Automotive SPICE® (ASPICE)

In this chapter you learn more about the motivation for the introduction and implementation of Automotive SPICE® (ASPICE). Also the history of Automotive SPICE® is explained, the strcuture of the Process Reference Model, the difference between ISO 21434 and ASPICE for Cybersecurity, the strcuture of the ASPICE for Cybersecurity Document and the Process Description Template.

Chapter 2: Process Reference Model and related Process Groups

In this chapter the six additional processes related to Cybersecurity and defined in Automotive SPICE® (ASPICE) for Cybersecurity are explained. The following processes are considered in the course:

- ACQ.2 Supplier request and selection

- MAN.7 Cybersecurity Risk Management

- SEC.1 Cybersecurity Requirements Elicitation

- SEC.2 Cybersecurity Implementation

- SEC.3 Risk Treatment Verification

- SEC.4 Risk Treatment Validation

Chapter 3: Capability Levels of Automotive SPICE® (ASPICE)

In this chapter you get an overview of the 5 capability levels defined in the Automotive SPICE® (ASPICE) standard. Also the template for process attribute description is explained and how the capability level of a process is determined during an ASPICE assessment.