Glossary · ISO/SAE 21434

Cybersecurity Interface Agreement (CIA)

Also known as: CIA, Supplier Cybersecurity Agreement

ISO/SAE 21434 Clause 7 contract that allocates cybersecurity activities between customer and supplier.

A Cybersecurity Interface Agreement names points of contact, allocates each cybersecurity activity via a RASIC matrix, defines information-sharing and audit rights, and specifies incident-response SLAs and end-of-cybersecurity-support. Required whenever cybersecurity activities are distributed between OEM and supplier.

Related terms

Cybersecurity Management System (CSMS)
Organisational management system that governs cybersecurity activities for road-vehicle programmes.
ISO/SAE 21434
International standard for road-vehicle cybersecurity engineering across the lifecycle.

Cybersecurity Interface Agreements (Clause 7)

Need help applying Cybersecurity Interface Agreement (CIA) on a programme? Use the contact form or request a KAVACH demo.

Cybersecurity Interface Agreement (CIA)

Cybersecurity Management System (CSMS)

ISO/SAE 21434