skip to main contents skip to main menu
KOTRA Trade-Investment Promotion Agency buy korea For Seller Inverst KOREA
Korean

FOREIGN INVESTMENT OMBUDSMAN

FOREIGN INVESTMENT OMBUDSMAN

Korean

Government Legislation

  • [Other] Draft Notice on the Establishment of Automotive Cybersecurity Management System Certification, etc.
    • Competent Ministry : Ministry of Land, Infrastructure and Transport
    • Advance Publication of Legislation :
    • Opinion Submission Deadline :

[Background]
A law requiring automotive manufacturers and others to establish a cybersecurity management system certification and ensure the safety of software updates has been amended (Amendment on February 13, 2024, with implementation on August 14, 2025). 

As a result, this notice is intended to establish the necessary details regarding the certification application process, the applicant's certification application, and the review methods and procedures.


[Regulatory Content]
The notice includes requirements for the submission of documents for automotive cybersecurity management system certification and re-certification, minor changes, the correction period for non-compliance results, suspension of reviews, and criteria for appeals.


[Reason for Establishment]
As core automotive technologies rapidly shift from hardware-based to software-based systems and as the functionality of external communication through connectivity expands, 

there is an increased need to ensure cybersecurity in vehicles and manage software updates that could affect automotive safety due to cyberattacks or threats such as hacking.
Therefore, in line with the newly established automotive cybersecurity management system certification system under Article 30-9 (Automotive Cybersecurity Management System Certification) and 

Article 30-10 (Request for Submission of Automotive Cybersecurity Management System Data) of the Motor Vehicle Management Act, this notice aims to regulate necessary items related to the application documents, certification review procedures, certification issuance, reissuance processes, and post-certification data submission.


[Key Contents]
a. Introduction of pre-application requirements and certification application procedures for automotive cybersecurity management system certification (Article 3 and Article 4).
b. Establishment of criteria for automotive cybersecurity management system certification (Article 6 and Appendix 1).
c. Regulation of automotive cybersecurity management system certification review methods, suspension and resumption of reviews, and conditions for appeals (Articles 7 to 9).
d. Development of management regulations for certification issuance, reissuance, and return (Articles 10 and 11).
e. Introduction of procedures for submitting operating data related to the automotive cybersecurity management system certification (Article 12).
Regulatory effect assessment
  • 자동차 사이버보안 관리체계 인증 등에 관한 고시(규제영향분석서)_20250704.hwp [download]
Legislative proposal (draft)
  • (행정예고문) 자동차 사이버보안 관리체계 인증 등에 관한 고시 행정예고.hwpx [download]
Kotra - Korea Trade-Investment Promotion Agency
Foreign Investor Aftercare Office, 6th floor, Invest Korea Plaza, 7, Heolleungno, Seocho-gu, Seoul, 06792, Republic of Korea TEL : 1600-7119
Copyight(c) All Rights Reserved. OFFICE OF FOREIGN INVESTMENT OMBUDSMAN [OFIO], KOTRA