• Español
  • English

Cars, vans, trucks, buses, buses, motorhomes and quads that are being type-approved in Europe, South Korea and Japan since July are required to have a certificate proving that they are cybersecure, according to UNECE/R155.

Knowing the UNECE/R155 regulation in detail will be vital for compliance. This regulation affects vehicle and component manufacturers, but also users, dealers, fleet managers, insurers, surveyors, workshops, public administrations… That is why Grupo CYBENTIA has developed the first ‘Vehicle Cybersecurity Regulation UNECE/R155 Course‘.

This is a 12-hour online training course, subsidised by FUNDAE, in which the student, after viewing the contents of six audiovisual modules, studying related reports, documentation and additional material, must pass an evaluation and will be awarded a diploma accrediting the student as an expert in the ‘UNECE/R155 Regulation on cybersecurity for vehicles’. The entire course has been supervised by staff with ANECA-qualified training in teaching quality.

2 August 2022

What are the requirements for a vehicle to be cybersecured? Why is a cybersecurity regulation for vehicles essential? Who can measure and certify the cybersecurity of any model so that it passes the homologation test conducted by the technical services of each country? What is the impact of the new regulation on all actors in the automotive sector? Why is the CSMS so important? These are just some of the questions answered in the ‘Vehicle Cybersecurity Regulation UNECE/R155 Course‘ developed by Grupo CYBENTIA.

The course, which can be accessed from the training area of the Grupo CYBENTIA website, has been developed in collaboration with the Basque technology enterprise EUROCYBCAR, a European benchmark in cybersecurity applied to automotive/mobility. In fact, they were the first in the world to develop and patent a test that measures and certifies the cybersecurity level of a vehicle – applying the ESTP methodology and according to the UNECE/R155 regulation – and they were also the pioneers in awarding, together with AENOR, the first voluntary certificate of ‘Cybersecurity in Vehicles’ to a NUUK motorbike.

This Grupo CYBENTIA training course provides a global vision of the sector, ranging from what current vehicles are like and what technologies they include to the risks they face, what kind of cyber-attacks have been occurring in recent years against vehicles or who is already testing vehicles to measure their cybersecurity, according to the requirements set by the regulations. It also explains the importance of having a CSMS that meets the requirements of UNECE/R155, because it will mean that the manufacturer and its suppliers manage the cybersecurity of their models throughout their lifecycle: development, production and post-production.

The course, which Grupo CYBENTIA has developed in collaboration with the technology enterprise EUROCYBCAR and the CyberQ-Testers team of HackerCar, is subsidised by FUNDAE, is taught online and consists of a total of 12 hours of audiovisual content divided into a total of six modules that break down in detail all aspects to be taken into account of the UNECE/R155 regulation.

  • Module 1: Why a cybersecurity regulation for vehicles: Concepts such as what the connected car is, what devices and technologies it includes, the particularities of electric models… are analyzed, and the cyber-attacks registered on vehicles in the last 10 years are studied, as well as their consequences.
  • Module 2: What cybersecurity requirements a vehicle must meet to be sold in the European Union: It focuses on the security regulations that have existed since 2000, the precedents of UNECE/R155 in Europe and the rest of the world, and who has been involved in defining and developing them, and how.
  • Module 3: The UNECE/R155 regulation: Everything you need to know: It defines the regulation and refers to its development phases, which countries are affected, what are the details of the ‘cyber secure vehicle’ label, what is the CSMS and what is needed to comply with it.
  • Module 4: The UNECE/R155 regulation: The 70 requirements a vehicle must meet to obtain the cybersecurity certificate: The processes for achieving ‘cybersecure vehicle’ certification, how cyber vulnerabilities are analyzed, the mitigations that must be implemented and the penalties for non-compliance with the regulation are developed here.
  • Module 5: How to measure and certify vehicle cybersecurity: The EUROCYBCAR Test. It shows how their cybersecurity is analyzed, what the EUROCYBCAR test is and the ‘Vehicle Cybersecurity Certificate’ awarded by AENOR and EUROCYBCAR.
  • Module 6: Impact of UNECE/R155 on the automotive sector: Analysis of the main players in the automotive/mobility world and how each of them is directly and indirectly affected by the new regulation.

At the end of the training, those who have completed all the modules are assessed. In case of passing, a diploma is awarded to the student as an expert in UNECE/R155 cybersecurity regulation – basic level – issued by Grupo CYBENTIA and EUROCYBCAR.

It should be remembered that from July 2022, all vehicles that are type-approved in the European Union, South Korea and Japan will have to be cybersecure by law. And from July 2024, all new vehicles on sale will also have to be cybersecure.


Research, awareness and strategic communication consultancy specializing in cybersecurity applied to connected vehicles and smart mobility, with headquarters in Vitoria-Gasteiz – Technology Park – and in Madrid – Parque Científico.
Grupo CYBENTIA is composed of two main areas:
1. STRATEGIC CONSULTANCY AREA whose success is based on producing high quality research reports on cybersecurity applied to mobility/automobility and on advising enterprises and institutions in their search for cybersecurity solutions.
2. AWARENESS AREA: HackerCar, the world’s first digital research and awareness-raising platform specializing in cybersecurity applied to automotive/smart mobility, led by Javier García.
TRAINING: Virtual courses, face-to-face courses, roundtables…
EVENTS for cybersecure mobility – Business Cybermobility and HackerCar Experiences -.

Click here to download the press release in word.
Click here to download the press release in PDF.
Click here to watch the video press released.
Click here if you want the press released image in high definition.


Pere Pons
Grupo CYBENTIA Head of Communication
Phone: +34 678 400 603
Mail: comunicacion@cybentia.com
Jonathan Bedoya
Grupo CYBENTIA Head of Training
Phone: +34 678 400 580
Mail: formacion@cybentia.com