ESCRYPT CycurRISK

Software tool for threat analysis and risk assessment

ESCRYPT CycurRISK enables you to uncover and evaluate potential attack surfaces in your automotive systems.

It allows you to systematically identify and analyze threats using attack trees, while damage scenarios show the impact on road users and your business. Moreover, the tool provides a structured documentation, allowing comparability and reuse of knowledge from previous analyses.

A woman engineer is reviewing a 3D model of a car on her laptop. She appears to be analyzing the car's design and technical specifications.

Your benefits

Established and reliable

Widely used solution with professional maintenance, support, and frequent updates.

Fully compliant

Compliant with the requirements of ISO/SAE 21434 and UN R 155.

Highly flexible

Fully configurable report templates and methodologies.

Features

Efficient TARAs creation

graphic showing attack tree editor of etas' cycurrisk

Efficient TARAs creation

Workflow-oriented guidance
User-friendly GUI
Direct comparison of initial and residual risks
Automatic management summary
Integrated attack tree editor
Support of attack potential method with automatic attack potential computation
Dedicated mode for TARA reuse

Numbers zero and two with two people discussing

High-level collaboration

Graphic showing configuration and comparison of the variants in ESCRYPT cycurrisk

High-level collaboration

Sophisticated functionality for variant handling to create and compare TARAs for numerous product variants in one project
Models and analyses of hierarchical systems of features and components

Numbers zero and three with a woman sitting with a laptop on a chair

Collaborative analyses

Graphic shows the Automotive Threat Matrix (ATM) of Auto-ISAC in a library in CycurRISK

Collaborative analyses

Collaboration on TARA projects on locally hosted servers
Review functionality

The graphic shows the official CycurRISK icon: a shield on squares in a circle.

Newly available: Automotive Threat Matrix

The Automotive Threat Matrix (ATM) is now freely available as a threat library in ESCRYPT CycurRISK. It lists adversary tactics and supporting techniques specifically tailored to the automotive industry. The matrix is built on real-world observations, validated automotive attacks, and peer-reviewed, reproducible automotive exploit research. You can leverage the ATM as a starting point for robust threat modeling.

> 600 TARA projects

500+ experts at a major Tier1 manage on more than 600 TARA projects in CycurRISK per year.

ETAS service: uncover the vulnerable points of your automotive systems

The image shows two professionals working together at a computer, looking at a screen. One points at the monitor while the other closely observes. A shield icon in the background signifies security, symbolizing threat analysis and risk assessment activities in a cybersecurity context

ETAS service: uncover the vulnerable points of your automotive systems

Long product lifecycles often require you to respond to new demands and security risks even if development is already advanced. Our ESCRYPT threat analysis and risk assessment service supports you during the whole TARA process for embedded products. At ETAS we help you determine the data and functions to be protected, identify potential attacks, and define appropriate protection requirements.

ESCRYPT Threat analysis and risk assessment