Cybersecurity Monitoring for CAN Buses

Advanced Protection Integrated with EB tresos 9 Basic Software

Argus CAN IDPS is deeply integrated into the EB tresos 9 Basic Software (BSW), providing advanced cybersecurity monitoring for CAN buses. From detecting basic anomalies to advanced correlation analysis, it comprehensively defends against complex cyberattacks and reduces the security risks of in-vehicle networks.

CAN IDPS Cybersecurity

CAN IDPS Core Advantages

Provides real-time, accurate, and efficient intrusion detection for in-vehicle networks

PlaxidityX CAN IDPS (formerly Argus) is specifically designed for automotive electronic systems, effectively identifying unauthorized messages and diagnostic services to ensure the security and stability of vehicle communication networks.

route

Adapts to Various CAN Networks

Achieves tailor-made protection mechanisms for any CAN bus network, perfectly fitting the architectural needs of different automakers.

memory

Hardware Independence

Independent of the underlying hardware, ensuring the successful integration of appropriate security functions and reducing the difficulty of cross-platform porting.

troubleshoot

Accurate Anomaly Detection

Effectively detects basic and advanced anomalies in message IDs, diagnostic commands, communication signals, and network loads.

Advanced Protection Features

Comprehensive Monitoring and Optimized Resource Utilization

plumbing

Diagnostic Service Monitoring

Identifies the unexpected use of diagnostic services, including in-depth analysis of timing and status.

gpp_bad

Injection Attack Protection

Monitors injection attack attempts and correlates data types for advanced anomaly detection.

speed

Performance Optimization

Minimizes the impact on memory, CPU, and network latency, ensuring real-time communication.

Technology Integration Architecture

Seamless Integration Based on Classic AUTOSAR

The EB tresos AutoCore Generic (ACG) CAN stack routes messages received and transmitted on the CAN bus to the PlaxidityX CAN IDPS to check for any anomalies in the ECU.

This intelligent and efficient sensor checks all types of messages (e.g., communication, diagnostics), detecting violations of the ECU CAN frame in terms of periodicity, protocol control information (such as DLC, identifiers), and payload. Discovered anomalous activities will be reported as security events to the EB tresos ACG IdsM module. Together, they achieve intrusion detection under the Classic AUTOSAR architecture, reducing the security risks of the CAN bus.

account_tree

Architecture Highlights

  • share

    Message Routing

    The EB tresos ACG CAN stack seamlessly routes received and transmitted messages.

  • policy

    Comprehensive Sensing

    Checks the periodicity, control information, and payload of communications and diagnostics.

  • report

    Security Event Reporting

    Anomalous activities are reported to the IdsM module in real time, accelerating threat response.