Trusted Information Security Assessment Exchange is the automotive industry's information security assessment standard, operated by the ENX Association, which requires OEM suppliers to demonstrate compliance with VDA ISA controls — covering data protection, prototype protection, and connected vehicle cybersecurity — as a condition of receiving design data, specifications, and prototypes from automotive manufacturers. Zero Trust access controls are central to TISAX compliance: the framework specifically requires access restrictions based on need-to-know, multi-factor authentication for remote access, and network segmentation between supplier and OEM design environments.
Related: Auto · Manufacturing · GDPR · NIS2 · MFA