Security Abstraction Model

The Security Abstraction Model (SAM) is a model-based systems engineering (MBSE) approach designed for the EAST-ADL (Electronics Architecture and Software Technology - Architecture Description Language), a standard for automotive electronic systems. It systematically integrates cybersecurity considerations into the early stages of the vehicle development lifecycle. SAM allows engineers to define and analyze security-related information—such as assets, threats, security requirements, and mitigation mechanisms—at different levels of architectural abstraction, from the vehicle feature level down to the software and hardware component design. This structured approach is critical for implementing the Threat Analysis and Risk Assessment (TARA) methodology mandated by **ISO/SAE 21434:2021, Clause 15**. Unlike generic threat modeling techniques like STRIDE, SAM is domain-specific, providing a formal structure that directly maps security concepts onto the EAST-ADL architectural elements. This ensures traceability and consistency of security measures throughout the entire V-model development process, making it a powerful tool for achieving compliance and building secure-by-design systems.

In enterprise risk management, SAM is applied through a structured, multi-stage process aligned with the automotive development V-model. **Step 1: Asset and Goal Definition:** At the highest abstraction level (Feature Model), key assets (e.g., PII, vehicle control functions) and high-level security goals are identified, corresponding to the Item Definition phase in ISO 21434. **Step 2: Threat Analysis and Risk Assessment (TARA):** At the Analysis Level, SAM is used to systematically conduct TARA. Threats are identified, attack paths are modeled, and risks are assessed based on impact and feasibility, directly linking them to system functions. **Step 3: Security Control Allocation:** At the Design Level, cybersecurity requirements derived from TARA are allocated to specific hardware and software components. SAM ensures full traceability from goals to implementation, which is essential for verification and validation as required by ISO 21434. For example, a Tier 1 supplier can use SAM to demonstrate to an OEM how a specific ECU design mitigates risks identified at the vehicle level, improving audit pass rates for ISO 21434 by over 20%.

Taiwan enterprises, particularly in the automotive supply chain, face several challenges in adopting SAM. **1. Lack of Model-Based Systems Engineering (MBSE) Maturity:** Many companies still rely on document-centric processes and lack the expertise and tooling for MBSE frameworks like EAST-ADL. **2. High Toolchain Costs:** Implementing SAM requires investment in specialized modeling tools (e.g., Enterprise Architect, Papyrus) and integration efforts, which can be a barrier for SMEs. **3. Siloed Organizational Structures:** Effective SAM implementation demands close collaboration between systems, software, and security engineers, which is often hindered by departmental silos. To overcome these, firms should prioritize **phased adoption**, starting with a pilot project guided by external experts to build internal competency. For cost, leveraging open-source tools like Papyrus for an initial proof-of-concept can be a viable strategy. To break down silos, establishing a dedicated cross-functional cybersecurity team, championed by senior management, is a crucial first step to foster a collaborative security culture.

Winners Consulting specializes in Security Abstraction Model for Taiwan enterprises, delivering compliant management systems within 90 days. Free consultation: https://winners.com.tw/contact