VicOne and Saphira tie supply chain vulnerability data to live TARA updates

By AI, Created 6:26 AM UTC, May 28, 2026, /AGP/ – VicOne and Saphira have teamed up to connect automotive supply chain vulnerability detection with live Threat Analysis and Risk Assessment updates. The integration is meant to help OEMs and suppliers keep cybersecurity and compliance records current as supplier risks change across vehicle programs.

Why it matters: - Automotive OEMs and Tier 1 suppliers are dealing with more supplier-driven cyber risk as software and components come from dozens of vendors. - VicOne said its 2026 Automotive Cybersecurity Report counted 1,384 automotive vulnerabilities reported in 2025. - The integration is meant to reduce manual work and keep cybersecurity cases, compliance evidence and risk decisions current as new vulnerabilities appear. - Regulations and standards including UN R155 and ISO/SAE 21434 make current risk management and supporting evidence a requirement, not an option.

What happened: - VicOne and Saphira announced a collaboration that links supply chain vulnerability detection with live TARA updates. - The partnership connects VicOne’s xZETA platform with Saphira’s model-driven TARA software. - The system is built to help automotive OEMs and Tier 1 suppliers update cybersecurity cases as supplier component risks change.

The details: - When xZETA identifies a vulnerability in a supplier component, including zero-day and undisclosed vulnerabilities, Saphira triggers reassessment of affected assets, attack paths, risk ratings, cybersecurity goals and mitigation workflows. - The workflow cross-references vulnerabilities against a vehicle’s SBOM using CycloneDX or SPDX identifiers. - Updated system impact context flows back into VicOne’s VVIR-based prioritization engine. - VVIR adds vehicle system context on top of CVSS severity scoring. - VicOne says that helps teams separate a critical risk in a safety-relevant controller from a lower-priority exposure in a less connected component. - The collaboration uses SBOM-based component identity to map vulnerabilities to a specific vehicle program instead of treating every CVE as fleet-wide. - The workflow includes role-based access control, configurable automation gates and human-in-the-loop approval steps for risk treatment decisions. - VicOne’s William Dalton said the companies are helping teams move directly from supply chain vulnerability signal to live TARA updates. - Saphira CEO Akshay Chalana said TARA should function as a living record for safety and cybersecurity decisions, not a static audit artifact. - VicOne is an automotive cybersecurity solutions provider and a Trend Micro subsidiary. - Saphira provides AI-driven safety, cybersecurity and compliance workflow software for automotive, robotics, industrial automation and other regulated engineering domains. - Saphira’s platform supports dynamic TARA, HARA, FMEA, safety case development, change impact analysis and continuous compliance monitoring.

Between the lines: - The collaboration reflects a shift from treating vulnerability management and compliance documentation as separate workflows. - The real value is context. A vulnerability only becomes actionable at the vehicle level when teams can see how that issue affects architecture, safety relevance and compliance posture. - The feedback loop matters because vulnerability intelligence improves the TARA, and TARA context improves vulnerability prioritization.

What’s next: - Joint customers can use the integration to keep cybersecurity cases current as components, architectures and software risks evolve. - Automotive security teams can automate reassessment while keeping final compliance calls under engineering review. - The setup is positioned for ongoing updates as new supplier vulnerabilities emerge across vehicle programs and model years. - More information is available through VicOne and Saphira.