← Compliance Hub

COMPLIANCE · INDIA

AIS 190

India's vehicle-level cybersecurity and software-update standard, designed to interoperate with UNECE R155 / R156. Build once for global, extend cleanly into India.

See KAVACH On Your ArchitectureRequest A Compliance Readiness Discussion
Regulator: Government of India / ARAIScope: India's vehicle-level cybersecurity assessment and software-update standard

WHAT IS AIS 190?

AIS 190 is India's standard for vehicle-level cybersecurity assessment and software-update governance — India-ready, globally aligned with UNECE R155 and R156.

CONTEXT

AIS 190 defines vehicle-level cybersecurity and software-update assessment for Type Approval in India. It is designed to interoperate with UNECE R155 / R156 evidence, so programmes built for global Type Approval extend into Indian readiness without rebuilding the underlying engineering chain.

WHAT ENGINEERING TEAMS PRODUCE

Outputs that go into the evidence chain

  • 01

    Vehicle-level TARA outputs and risk-treatment decisions for the Vehicle Type

  • 02

    Cybersecurity Case evidence structured for the Indian assessment authority

  • 03

    Software-update governance evidence — authorisation, dependency analysis, RxSWIN equivalents

  • 04

    Evidence that cybersecurity is engineered across the vehicle, not retrofitted

  • 05

    Supplier-side cybersecurity evidence via Interface Agreements

  • 06

    Post-production vulnerability response evidence

WHERE TEAMS STRUGGLE

Friction points that show up at audit time

  • AIS 190 interpretations and assessment cadence are still settling in India

  • Programmes built primarily for India struggle to extend into UNECE markets without reworking evidence

  • Programmes built primarily for UNECE markets struggle to translate evidence into Indian assessment language

  • Supplier evidence across Indian and global tiers diverges in format and depth

HOW AGNILE AND KAVACH HELP

Engineering evidence prepared for review

We support evidence preparation, structure work products, and help engineering teams ready themselves for assessment discussions. Final review and approval rest with the relevant authority.

  • KAVACH produces one engineering evidence chain mapped to ISO/SAE 21434, UNECE R155 / R156, and AIS 190 readiness language

  • Architecture-aware TARA aligned with Clause 15 — supports the vehicle-level threat coverage AIS 190 expects

  • Software-update evidence linked to cybersecurity evidence — supports R156 and AIS 190 alignment

  • Agnile services support AIS readiness sprints, gap reviews, and pre-assessment preparation

RELATED CAPABILITIES

RELATED RESOURCES

Detailed reference reading

PILLAR GUIDE

In-depth AIS 190 reference guide

Long-form technical reference — work-product enumeration, clause-level walkthroughs, and worked examples.

Read the guide →

INDUSTRY

Automotive Cybersecurity in India: The Growing Opportunity

India’s AIS 189/190 regulations, Bengaluru’s emerging cybersecurity hub, and the opportunity for Indian automotive companies.

Read article →

COMPANY NEWS

Agnile Technologies and Dayananda Sagar University Forge Strategic MoU

A strategic partnership to advance Cybersecurity research for the mobility sector.

Read article →

CYBERSECURITY

UNECE R155 Compliance Roadmap: From CSMS Audit to Type Approval

A practical 12–18 month UNECE R155 compliance roadmap for vehicle programmes — CSMS audit, Annex 5 threats, Type Approval, and post-2024 enforcement reality.

Read article →

FAQ

Common questions about AIS 190

Move from architecture to AIS 190 evidence with engineers who do this work.

Bring a programme scope. We'll show where KAVACH fits cleanly, where integration work is, and what evidence is already in good shape for review.