Cybersecurity Monitoring for CAN Buses
Advanced Protection Integrated with EB tresos 9 Basic Software
Argus CAN IDPS is deeply integrated into the EB tresos 9 Basic Software (BSW), providing advanced cybersecurity monitoring for CAN buses. From detecting basic anomalies to advanced correlation analysis, it comprehensively defends against complex cyberattacks and reduces the security risks of in-vehicle networks.
CAN IDPS Core Advantages
Provides real-time, accurate, and efficient intrusion detection for in-vehicle networks
PlaxidityX CAN IDPS (formerly Argus) is specifically designed for automotive electronic systems, effectively identifying unauthorized messages and diagnostic services to ensure the security and stability of vehicle communication networks.
Adapts to Various CAN Networks
Achieves tailor-made protection mechanisms for any CAN bus network, perfectly fitting the architectural needs of different automakers.
Hardware Independence
Independent of the underlying hardware, ensuring the successful integration of appropriate security functions and reducing the difficulty of cross-platform porting.
Accurate Anomaly Detection
Effectively detects basic and advanced anomalies in message IDs, diagnostic commands, communication signals, and network loads.
Advanced Protection Features
Comprehensive Monitoring and Optimized Resource Utilization
Diagnostic Service Monitoring
Identifies the unexpected use of diagnostic services, including in-depth analysis of timing and status.
Injection Attack Protection
Monitors injection attack attempts and correlates data types for advanced anomaly detection.
Performance Optimization
Minimizes the impact on memory, CPU, and network latency, ensuring real-time communication.
Technology Integration Architecture
Seamless Integration Based on Classic AUTOSAR
The EB tresos AutoCore Generic (ACG) CAN stack routes messages received and transmitted on the CAN bus to the PlaxidityX CAN IDPS to check for any anomalies in the ECU.
This intelligent and efficient sensor checks all types of messages (e.g., communication, diagnostics), detecting violations of the ECU CAN frame in terms of periodicity, protocol control information (such as DLC, identifiers), and payload. Discovered anomalous activities will be reported as security events to the EB tresos ACG IdsM module. Together, they achieve intrusion detection under the Classic AUTOSAR architecture, reducing the security risks of the CAN bus.
Architecture Highlights
-
share
Message Routing
The EB tresos ACG CAN stack seamlessly routes received and transmitted messages.
-
policy
Comprehensive Sensing
Checks the periodicity, control information, and payload of communications and diagnostics.
-
report
Security Event Reporting
Anomalous activities are reported to the IdsM module in real time, accelerating threat response.