service service service service

IdSafe Automotive Cyber Security.

IdSafe Founder:Swapnil Kale worked as a cyber crime investigation consultant with Pune Police for 2 years."Intelligence Gathering on Al Qaeda, SIMI in Kashmir & Terrorist Groups from Chechnya, Online Credit Card Fraud Detection, Internet Banking Crimes and other Cyber Crimes".He has vast expereince in cyber security.Later he spent couple of years in automotive cyber security Research and Development in Silicon Valley, Sunnyvale, California at the first office in PlugandPlayTechcenter. Idsafe can conduct automotive systems penetration testing and discover loopholes which hackers may exploit and provide customised solutions based on risk/performance tradeoffs
Identisafe offers the following Automotive Cyber Security solutions. 1) Real-time In-Vehicle Protection. 2) Cloud-based IDS & Trusted Mobility. 3) Threat Intelligence & Cloud Analytics Platform. 4) Secure OTA. 5) Secure External Interfaces and Communication. 6) Secure In-Vehicle Network. 7) Secure ECUs. 8) Risk Assessment Services like Threat Intelligence & Vulnerability Analysis.
Navigating the challenging field of automotive cybersecurity might be a daunting task. Therefore, you need a well-trusted cybersecurity company that will help you.Automotive manufacturers and suppliers rely on IdSafe as trusted partner. We support you with services, embedded software and tools for securing embedded systems against cyber-attacks.Protect your product reliably by taking advantage of IdSafe's many years of experience and knowledge. We offer thorough consulting on security issues, from threat analysis to security strategies and architectures to the implementation and testing of all security functions. In the implementation of security functions in ECU software, Idsafe supports a wide range of hardware trust anchors from various hardware manufacturers. The well-known Idsafe tools are also designed for the entire development process of cyber-security-relevant systems.Protecting vehicle functions against unauthorized access and manipulation is a central challenge for current and future ECUs.Idsafe has already been working closely with automotive OEMs and suppliers for a number of years in this area.By using our consultation services, we can make a contribution toward protecting your valuable data by using fast and resource-efficient cryptographic functions in the ECU. Contact us :Idsafe, Swapnil Kale, info@automobile-security.com

Secure In-Vehicle Network
The third level of defense is an advanced intelligent in-vehicle network-based intrusion detection and prevention solution (IDPS) based on proven network security mechanisms adapted to vehicle networks. It uses different deterministic and machine learning techniques to monitor network traffic and uses this intelligence for real-time identification of malicious or anomalous activity. Again, our solution allows both the detection and/or prevention of attacks on the vehicle network. This solution is best deployed on a centralized gateway (similar to traditional network Firewall/IDS) to monitor the entire network, though it can also be deployed in a “host-based” manner on individual components. The solution works equally well in consumer vehicles as well as commercial vehicle networks. Some of the key features include: Network behavior learning-based real-time detection/prevention.Protection from diagnostic message-based attacks (CAN).Deep packet inspection-based detection with attack contextual info.

Secure External Interfaces & Communication
In a connected vehicle, external interfaces are the most exposed to attacks, and therefore Idsafe protection starts with these interfaces. An external interface is what connects the vehicle and its occupants to the outside world, for example, Bluetooth, GSM/Cellular, cameras and sensors, OBD-II, etc. Our solutions protect both remote and physical interfaces, with the ultimate goal of preventing malicious data and code from compromising the vehicle. Our solution uses proven cyber security approaches to protect telematics and infotainment units from cyberattacks originating from both external and internal connections. Our solution monitors different types of communication protocols including Cellular communication, IP, Bluetooth, GPS, RF, CAN, and Ethernet. Our solution can operate in signature and behavior-based modes and can be configured for prevention and/or detection. Our behavior-based approach applies expert knowledge and machine learning to traffic to protect against threats. Some of the protections include:Prevent malicious inbound or outbound traffic.Traditional stateful packet filter rules.Protection based deep packet inspection.Secured Bluetooth framework.

Secure ECUs
The second layer of Idsafe solution protects device integrity and provides protection from memory-based attacks (e.g., buffer overflow attack, memory corruption). Our solution uses proven security technologies as well as novel algorithms based on expert system knowledge to help protect code and memory of devices. Idsafe can provide application protection built-in at compile time as well as runtime protections to detect and prevent malicious operations injected at runtime. Part of this protection includes learning the behavior of approved applications and then either alerting (conservative mode) or blocking (strict mode) when anomalous actions are detected. Coupled with our monitoring solutions this ECU protection allows the discovery of new attack patterns for analysis and inclusion in our static protection.

Threat Intelligence
Idsafe's threat intelligence service gathers intelligence constantly and updates customers (OEMs, governments, fleet management providers, etc.) with specific actionable items. We gather intelligence from different sources – external Threat Intelligence Services, in-vehicle agents,Idsafe's novel vehicle honeypots, and finally the continuous research done by Idsafe's Research Lab.Idsafe's cloud-based Threat Intelligence service helps to identify specific vulnerable vehicles within an entire fleet to take action. Idsafe's Threat Intelligence service can also be integrated with theIdsafe's Security Operations Center, where our analysts can analyze alerts and intelligence across the automotive spectrum.

Cloud Analytics
The Analytics platform provides intelligent insights and trends by correlating the alert data generated from any vehicle equipped with the Idsafe's agent. It performs alert aggregation and correlation to provide insights that can help understand attacker behavior and the weak links within the vehicle ecosystem. This is a cloud-based solution but can also be deployed in a Security Operations Center (SOC) for live monitoring and data correlation. Included with our platform is a dashboard that provides different at-a-glance views of the threat landscape across the fleet as well as the ability to drill-down to any specific vehicle.Idsafe's Automotive Intelligence provides awareness and insights to the OEMs and suppliers to make a well-informed business decision to avoid costly vehicle recalls and can also help in identifying future architectural changes that can improve safety and security.

Cloud Based ID's and Trusted Mobility
Idsafe's in-vehicle network protection and monitoring can be configured to feed data into our own (or customer-specific) cloud-based platform to detect emerging network threats as well as provide new rule sets for vehicle protection. Our trusted mobility platform ensures that vehicle to cloud communication is protected from eavesdroppers or man-in-the-middle attacks using industry-standard cryptographic protection. Our cloud-based monitoring solution allows the following:Provide trusted vehicle data to use within the Fleet Management services.Trusted mobility platform (secured communication) between the fleet and backend system.Analytics platform to provide intelligent insights and trends.Cloud-based analytics solution that can be deployed in a Security Operations Center (SOC) for live monitoring and data correlation.

Secure OTA
Idsafe's Secure Over the Air Update architecture can help in minimizing any attack as well as providing a highly secure way to update the vehicle framework to clean the system.Idsafe can help customers protect their OTA infrastructure in multiple ways. First, the Idsafe's OTA reference architecture captures best practices and common implementation vulnerabilities so we can identify issues with customer implementations. Secondly, the Idsafe's OTA platform can be leveraged by customers to manage and coordinate software updates. Upon seeing even a single instance of an attack, the OTA platform can inform all the potentially impacted vehicles within the fleet to disable the attack chain path (as applicable) so that the cyber criminal cannot exploit the vulnerability (this use case requires the full Idsafe's stack to be deployed on the fleet). A new updated firmware image can be created, and an OTA campaign can be deployed to update the vehicles. Once vehicles get an updated image to fix a particular exploit, the disabled feature can be enabled again. Idsafe's OTA update solution provides a high level of security, potentially protecting from threats like attackers reversing and deploying malicious binaries or firmware images into a vehicle.
Contact us :Idsafe, Swapnil Kale, info@automobile-security.com