Argus’ Intrusion Detection and Prevention System for CAN networks monitors traffic, detects threats and anomalies, and offers prevention mechanisms for common attack methods such as denial of service and brute force. Now also available as an EB tresos component.
CAN bus (CAN) is the primary networking technology used in vehicles for safety-critical systems. But CAN technology has well-known security shortcomings. For vehicle homologation today, manufacturers and suppliers need cyber security capabilities in vehicle networks to meet industry standards and regulation and make sure that the CAN bus traffic is cyber-secure.
ASPICE (3.1) Level 2 capabilities for products and projects development
For vehicles and components coming to market in Europe and Asia (WP.29, GB)
To support different implementations architectures, and requirements
With minimal impact on memory, CPU, and network latency
Already on the road and trusted by manufacturers and suppliers worldwide
Argus CAN IDPS brings together advanced security features for robust network protection – from ongoing monitoring to proactive intrusion detection and prevention.
Argus has made integration cheaper, simpler, and repeatable.
Detect basic anomalies in message IDs, diagnostics, signals, and network load.
Identify unexpected use of diagnostics services including timing and stateful analysis.
Monitor for injection attempts and correlate data types for advanced anomaly detection.
Argus CAN IDPS is operating system and hardware agnostic. Whatever the component technologies are, Argus ensures successful integration of the appropriate security functionality.
Add advanced Intrusion Detection and Prevention to Posix-based ECUs to reduce the risk of software-defined vehicles and drive compliance.
Meet regulations and standards like UN R155 and ISO/SAE 21434 with lifecycle vulnerability management that reduces financial, safety, and privacy risk.
Leverage expertise that’s already protecting millions of vehicles with a Vehicle Security Operations Center that combines technology, processes, playbook, and knowledge.
Protect in-vehicle networks with comprehensive network monitoring, threat detection, and attack prevention as an ECU library or pre-integrated into switch firmware.