SOX Security Workflow (ISO 21434)

Scope

SOX developed by EnCo Software GmbH is a tool suite for safety and security engineering. It consists of different modules supporting requirements and test management, system design, and safety and security analysis such as HARA, TARA/ATA, FTA, FMEA or FMEDA.

This document describes a model-based approach for security analysis in accordance with standard ISO 21434. The procedures described are based on SOX version 4.0 or better.

To discover how to use SOX TARA, please refer to https://enco-software.atlassian.net/wiki/pages/createpage.action?spaceKey=WIPHC&title=C-SOX%20TARA%20%28starting%20from%20SOX%204.1%29.

SOX Security Workflow at a Glance

Requirements (Security)

Item Definition (System Design) in Security Analysis

Security Concept

Further Analyses

Creating Reports for Security Analysis