Introduction

CycurRISK is a TARA software tool that helps you uncover and evaluate potential attack surfaces in automotive systems and architectures at an early stage.

It allows you to systematically identify and analyze threats via attack feasibility (based on attack potential) using attack trees. Damage scenarios are used to assess the impact on road users and your business.

Thus, this TARA software tool enables you to prioritize risks and countermeasures and to create a security concept that complies with the requirements of security engineering processes, and ISO/SAE 21434.

The main features of CycurRISK are as follows:

• Workflow-oriented guidance
• User-friendly GUI
• Direct comparison of initial and residual risks
• Automatic management summary
• Integrated attack tree editor
• Support of attack potential method with automatic attack potential computation
• Dedicated mode for TARA reuse
• Sophisticated functionality for variant handling to create and compare TARAs for numerous product variants in one project
• Models and analyses of hierarchical systems of features and components
• Collaboration on TARA projects on locally hosted servers
• Review functionality

CycurRISK highlights are as follows:

• Widely used solution with professional maintenance, support, and frequent updates.
• Compliant with the requirements of ISO/SAE 21434.
• Fully configurable report templates and methodologies.
• Tool classification according to ISO 26262 available and tool qualification for all use cases for TCL 2/3 performed.