Argus In-Vehicle Network Protection

Monitors and analyzes in-vehicle network communication in real time to detect cyber security attacks and suspicious network activity. Argus Network Protection uses various techniques, such as deep packet inspection and timing and context analysis, to provide accurate, detailed alerts of suspicious events in CAN and Ethernet networks.

The solution may be integrated on every ECU as an IDS sensor to support intrusion, detection, and response (IDRS) capabilities.

Note: our intrusion detection solutions are available in prevention mode (IDPS) upon request by the customer. This mode will enable real-time blocking of malicious communication when requested.


Argus CAN Intrusion Detection System (IDS)

Argus CAN IDS identifies attacks and suspicious activity in CAN networks:

  • Sophisticated advanced decision tree enables deterministic detection of attacks
  • Generates detailed logs, pinpointing the malicious message and fine points of each anomaly to accelerate in-depth analysis
  • Quick to deploy with autonomous configuration tools and the option for advanced offline traffic analysis
  • High-performance, low-latency, and small footprint
  • Easy integration with CPU architecture and OS agnostic library

Argus Ethernet Intrusion Detection System (IDS)

Argus Ethernet IDS identifies attacks and suspicious activity in Ethernet transport and application (e.g. DoIP and SOME/IP) layers of the network communication.

  • Successfully integrated, with minimal impact on performance, into multiple system on chips (SoCs) and switches
  • Built from the ground up to identify automotive cyber attacks with knowledge based on Argus’ extensive research in automotive Ethernet security and architectures
  • Can be deployed as an IDS sensor in various ECUs such as gateways, switches, classic Autosar and POSIX-based ECUs
  • Pre-integrated and embedded in switch firmware such as EB zoneo SwitchCore Shield with hardware optimization for effective threat detection and prevention

Argus CAN Firewall

Deployed on a gateway, domain controller, or any other component Argus CAN firewall inspects and prevents malicious communication from harming ECUs and other network segments.

  • Flexible protocol and data filtering tailored to OEM requirements
  • Blocks suspicious communication from reaching safety-critical in-vehicle systems
  • Prevents diagnostics attacks with diagnostic communication filtering