What are the steps to determine the appropriate CAL for a component?

To determine a CAL, assess the component's risk profile based on its functionality, exposure to threats, and potential impact of a breach. Then, choose a CAL that aligns with this risk level and the manufacturer's overall cybersecurity strategy.

How often should CALs be reviewed or updated?

CALs should be reviewed regularly, especially when there are significant changes in the threat landscape, technology, or operational environment. An annual review is a common practice, but some situations may warrant more frequent assessments.

Code Intelligence Blog | Embedded/Automotive Security

Natalia Kazankova Jul 11, 2024 3:53:17 PM 2 min read

FDA’s cybersecurity requirements for medical devices and when to comply with them

Discover FDA's cybersecurity standards for ...

Start Reading

Khaled Yakdan Jul 11, 2024 3:10:50 PM 7 min read

From simulation to success: the impact of fuzzing in software-in-the-loop testing

Learn how to enable software-in-the-loop testing ...

Start Reading

Natalia Kazankova May 17, 2024 1:57:23 PM 4 min read

Why Static Analysis (SAST) isn’t enough to prevent critical bugs in embedded software

The best security practice involves leveraging ...

Start Reading

Natalia Kazankova May 14, 2024 10:26:56 AM 6 min read

Protect your Hardware Security Module against edge cases with Code Intelligence

Interested in securing your Hardware Security ...

Start Reading

Natalia Kazankova May 3, 2024 12:53:39 PM 5 min read

Securing medical devices: The role of fuzz testing in cybersecurity

Everything you need to know about the strengths ...

Start Reading

Natalia Kazankova Apr 24, 2024 12:00:00 PM 5 min read

How to write 30% fewer tests with fuzzing

Curious how to write 30% fewer tests or replace ...

Start Reading

Natalia Kazankova Apr 19, 2024 4:52:45 PM 4 min read

From DAST to dawn: why fuzzing is the better solution

Security testing is an essential element of ...

Start Reading

Natalia Kazankova Apr 9, 2024 4:58:37 PM 3 min read

Protocol Fuzzing vs. Code Fuzzing

In this article we explore the different fuzzing ...

Start Reading

Sergej Dechand Mar 18, 2024 2:33:59 PM 4 min read

ISO/SAE 21434 compliance in 2024: what’s new and how to act

The ISO/SAE 21434 standard provides ...

Start Reading

Antonio Mimmo Feb 13, 2024 5:27:05 PM 7 min read

Top 8 Cybersecurity Trends for 2024

Don't get caught off guard by the ever-evolving ...

Start Reading

Sergej Dechand Jan 23, 2024 3:46:11 PM 6 min read

7 Challenges of Embedded Software Security Testing in 2024

Learn about 7 challenges to look out for during ...

Start Reading

Sergej Dechand Jan 11, 2024 9:21:42 AM 4 min read

The Role of Cybersecurity Assurance Levels in ISO 21434

Explore the role of cybersecurity assurance ...

Start Reading