McLachlan SSchafer BDube KKyrimi EFenton N27/05/202227/05/2022International Review of Law, Computers and Technology, 2022, pp. ? - ? (22)1360-0869https://hdl.handle.net/10179/17147(c) The Author/sThe United Nations Economic Commission for Europe (UN ECE) has developed new aspects of its WP.29 agreement for harmonising vehicle regulations, focusing on the regulation of vehicle manufacturers’ approaches to ensuring vehicle cyber security by requiring implementation of an approved cyber security management system (CSMS). This paper investigates the background, framework and content of WP.29’s cyber security regulation. We provide an overall description of the processes required to become certified, discuss key gaps, issues and the impacts of implementation on stakeholders, and provide recommendations for manufacturers and the authorities who will oversee the operation. Putting the discussion into a broader theoretical framework on risk certification, we explore to the role of non-academic sources to shape public risk perception and to drive, for better or worse, legislative responses.? - ? (22)Automotivecyber securityvehicle regulationJournal article10.1080/13600869.2022.2060466453428Massey_Dark0806 Information Systems1605 Policy and Administration1801 Law