Tempting the fate of the furious: Cyber security and autonomous cars

Scott Mclachlan, Burkhard Schafer, Kudakwashe Dube, Evangelia Kyrimi, Norman Fenton

Research output: Contribution to journalArticlepeer-review

Abstract / Description of output

The United Nations Economic Commission for Europe (UN ECE) has developed new aspects of its WP.29 agreement for harmonising vehicle regulations, focusing on the regulation of vehicle manufacturers’ approaches to ensuring vehicle cyber security by requiring implementation of an approved cyber security management system (CSMS). This paper investigates the background, framework and content of WP.29’s cyber security regulation. We provide an overall description of the processes required to become certified, discuss key gaps, issues and the impacts of implementation on stakeholders, and provide recommendations for manufacturers and the authorities who will oversee the operation. Putting the discussion into a broader theoretical framework on risk certification, we explore to the role of non-academic sources to shape public risk perception and to drive, for better or worse, legislative responses.

Original languageEnglish
Pages (from-to)181-201
JournalInternational Review of Law, Computers and Technology
Issue number2
Early online date25 May 2022
Publication statusPublished - 2022

Keywords / Materials (for Non-textual outputs)

  • automotive
  • cyber security
  • UN ECE WP.29
  • ISO/SAE 21434
  • vehicle regulation


Dive into the research topics of 'Tempting the fate of the furious: Cyber security and autonomous cars'. Together they form a unique fingerprint.

Cite this