PlaxidityX Intrusion Detection and Prevention System for in-vehicle Ethernet networks provides network monitoring, threat detection, and attack prevention options. It can be integrated into an ECU as an AUTOSAR firewall or a library, or embedded in a switch firmware such as EB zoneo SwitchCore Shield.
Software-defined vehicles are increasing the demand for automotive Ethernet and its protocols (such as SOME/IP). This change significantly increases the number of potential malicious actors as well as the types of risk that vehicles and manufacturers are exposed to. To achieve vehicle homologation and manage risk, manufacturers must balance the opportunities offered by in-vehicle Ethernet with cyber security controls.
Including deep packet and stateful inspection
Based on network topology and architecture
Ethernet Protection is ASPICE Level 2 certified including the cyber security extension
With regulations like UN155 and GB/T
Fully complies with the AUTOSAR Firewall standard
Ethernet IDPS offers a comprehensive feature set for every aspect of Ethernet security, leveraging PlaxidityX’s domain expertise in the automotive space and network protection.
PlaxidityX has made integration cheaper, simpler, and repeatable.
Limit network access based on vehicle state, e.g. disabling diagnostic traffic while driving.
Automotive application protocols inspection (E.g DoIP, SOME/IP)
Track stateful protocols’ connections and alert on or discard state violations
Support AUTOSAR firewall standard features and platforms
Monitor CAN network traffic, detect anomalies and the signs of a threat, and prevent major risks including denial-of-service and brute-force attacks.
Add advanced Intrusion Detection and Prevention to Posix-based ECUs to reduce the risk of software-defined vehicles and drive compliance.