Safety by design and security in-depth

ISO 26262 Certified and ASIL-D Rated

The only ISO 26262 certified (by UL) over-the-air software update product with an ASIL-D rating for deploying software and firmware updates to any ECU with safety and confidence.

Customizable "safe state" checks to ensure road vehicles are in a safe state (not in motion) before and after performing any ECU software updates that could result in a human safety hazard.

Sibros' system ensures only valid versions of OEM signed software or firmware can be installed to mitigate risks of incorrect parameter settings or malware intrusion.

Continuous monitoring of ECUs to ensure they are fully and correctly programmed, operating as intended.

We ensure the functional safety of all new products and concepts with extensive concept testing and analysis prior to customer release.

WP.29 R155 & R156 Compliance

Technology features and mechanisms for Cybersecurity Management Systems (CSMS) and Software Update Management Systems (SUMS) to help OEMs achieve R155 and R156 regulatory compliance.

Our systems employ the compromise-resistant Uptane framework, designed to provide multi-layer cybersecurity and threat protection against bad actors for over-the-air software updates in ground vehicles.

Utilization of HTTPS/MQTTS to ensure secure and reliable data exchange between vehicles and the cloud.

Approval and authentication of commands and updates to require signature keys across multiple access points and users to prevent tampering and unauthorized usage.

All software versions, update packages, system changes, and associated vehicles utilize unique identifiers for consistency, transparency, verification, and traceability.

Sibros’ multi-layer authentication & security approach protects against a multitude of malicious activities such as eavesdropping, drop-request, slow-retrieval, freeze attacks, rollback attacks, and more.

GDPR Compliance

Compliance with user privacy and data rights as outlined in the EU General Data Protection Regulation (GDPR) and other comparable international data protection standards.

CCPA Compliance

Compliance with customer consent and right-to-use requirements for data collection and storage as outlined in the California Consumer Privacy Act.

ISO 27001

Certified for Information Security Management Systems and best practices that safeguard all forms of information and protect the integrity, confidentiality and availability of data.

TISAX

Compliance with the European automotive standard for a consistent approach to enterprise information security systems.

SOC 2 Type I  

Certified by the American Institute of CPAs (AICPA) Systems and Organization Controls (SOC) for security, availability, processing integrity, confidentiality, privacy of customer information.

SOC 2 Type II

Certification by the American Institute of CPAs (AICPA) Systems and Organization Controls (SOC) for internal controls and efficacy of how we safeguard customer data.

ISO 9001:2015

Certified for Quality Management Systems (QMS) and frameworks to continually improve our products and services we deliver to you.

Our dedicated Risk Committee oversees the detection, assessment, and documentation of potential threats per the guidelines outlined in our Incident Response Policy.

Ongoing communication and training is required across the organization on all new operational procedures, obligatory compliance topics and related best practices.

All employees undergo a thorough vetting process, including multiple interviews, a criminal background check, and introductory training. Upon departure, employee access to company systems, services, and applications is immediately disabled.