25. The expert from Japan, Co-Chair of the Task Force on Cyber Security and Over-the-Air issues (TF CS/OTA) presented GRVA-01-19 introducing GRVA-01-17 and GRVA-01-18 with recommendations on software updates and on cyber security. He invited the experts to send comments on the recommendations until 28 October 2018. The expert from France congratulated the Task Force for the work done. The expert from the United States of America confirmed that they had participated in the last meeting of the group and explained that both recommendations would require amendments to make them compatible with the 1998 Agreement (especially in the self-certification context) and offered to provide comments.

26. The expert from Japan also mentioned that the recommendations contained proposals for a draft UN Regulation for cyber security and a draft generic Annex that could be added to relevant UN Regulations with regards to software number management. He added that the innovative approaches proposed would probably require some verification before adoption and that these activities would require an extension of the group’s mandate or the creation of a new group.

27. GRVA invited the Task Force to use the remaining time on their current mandate to develop a verification programme that could be considered at the second session of GRVA. GRVA also requested the Chair to report on these activities at WP.29.

25. The expert from Japan, Co-Chair of the Task Force on Cyber Security and Over-the-Air issues (TF CS/OTA) presented GRVA-01-19 introducing GRVA-01-17 and GRVA-01-18 with recommendations on software updates and on cyber security. He invited the experts to send comments on the recommendations until 28 October 2018. The expert from France congratulated the Task Force for the work done. The expert from the United States of America confirmed that they had participated in the last meeting of the group and explained that both recommendations would require amendments to make them compatible with the 1998 Agreement (especially in the self-certification context) and offered to provide comments.

26. The expert from Japan also mentioned that the recommendations contained proposals for a draft UN Regulation for cyber security and a draft generic Annex that could be added to relevant UN Regulations with regards to software number management. He added that the innovative approaches proposed would probably require some verification before adoption and that these activities would require an extension of the group’s mandate or the creation of a new group.

27. GRVA invited the Task Force to use the remaining time on their current mandate to develop a verification programme that could be considered at the second session of GRVA. GRVA also requested the Chair to report on these activities at WP.29.

28. This agenda item was addressed together with agenda item 6 (b) above.

25. The expert from Japan, Co-Chair of the Task Force on Cyber Security and Over-the-Air issues (TF CS/OTA) presented GRVA-01-19 introducing GRVA-01-17 and GRVA-01-18 with recommendations on software updates and on cyber security. He invited the experts to send comments on the recommendations until 28 October 2018. The expert from France congratulated the Task Force for the work done. The expert from the United States of America confirmed that they had participated in the last meeting of the group and explained that both recommendations would require amendments to make them compatible with the 1998 Agreement (especially in the self-certification context) and offered to provide comments.

26. The expert from Japan also mentioned that the recommendations contained proposals for a draft UN Regulation for cyber security and a draft generic Annex that could be added to relevant UN Regulations with regards to software number management. He added that the innovative approaches proposed would probably require some verification before adoption and that these activities would require an extension of the group’s mandate or the creation of a new group.

27. GRVA invited the Task Force to use the remaining time on their current mandate to develop a verification programme that could be considered at the second session of GRVA. GRVA also requested the Chair to report on these activities at WP.29.

28. This agenda item was addressed together with agenda item 6 (b) above.

(Duplicate of document TFCS-12-20.)

Cybersecurity and OTA updates task force summary review of the draft proposal for a UN Regulation on cybersecurity requirements (Annex A of the "recommendations paper) comparing the previous document TFCS-ahRCSP3-04 with the proposal as restructured by this cybersecurity ad hoc review group.

Draft text from the Cybersecurity task force effort.

Version of the recommendations paper draft text as edited during the third ad hoc recommendations paper review session (held on 16 July 2018).

Draft text following the second day discussions of the 13th TFCS session.

Japan proposes the modification of the relevant parts (especially chapter 6.,7. and 9.) in the regulation annexes of the draft UN Regulations on cybersecurity and software updates to describe that both AA and TS can carry out the testing.

Draft regulation contained in Annex A of the draft Recommendations Paper on cybersecurity, including comments from OICA-CLEPA and Japan.

Comparison of draft UN Regulation and example GTR proposal