Enabling Heightened Vehicle Cybersecurity with Garrett’s Intrusion Detection Systems
Connectivity presents huge opportunities for vehicle system control and data analytics, but it can also create security risks and fleet-wide vulnerability to cyber-attack.
Every day, millions of bytes of data are processed within vehicles and by third party systems to optimize performance and enhance driver safety. From adaptive cruise control, automatic emergency braking and lane assist to app communication, GPS navigation and much, much more, reliance on the security of CAN, Ethernet protocols and high-performance computers that connect sophisticated electrical and electronic architectures has never been greater.
“As we move towards the era of autonomous driving, the demands placed on connectivity – and on safeguarding driver information – will only increase,” said Balaji Arumugam, General Manager of Cybersecurity at Garrett Motion. “Which is why automotive manufacturers are rightly fixed on safeguarding data integrity by investing in onboard and cloud enabled cybersecurity platforms that shield vehicles from hostile actors.”
In this environment, Garrett’s Connected Vehicle Software team is playing a vital role in the development and application of multi-layered intrusion detection systems (IDS), which when combined with advanced analytics cloud-based tools allow original equipment manufacturers (OEMs) to monitor and protect the safety and security of entire fleets.
Garrett’s Multi-layered Cybersecurity Solutions:
Garrett’s IDS and Security Operations Center (SOC) make it possible for OEMs to bolster resilience through full lifecycle security management. The IDS deploys over 50 advanced algorithms to detect and block malicious messages, while attack profiles are continuously updated through the SOC.
The IDS platform comprises numerous components:
- Network-Based Intrusion Detection: Garrett’s network-based IDS analyses communication protocols, data packets, and network behavior to detect anomalies indicative of cyber threats. It covers CAN, CAN FD, Ethernet (IDS), Ethernet (Firewall) and all relevant protocols (IPv4, IPv6, DoIP, AVB etc).
- Host-Based Intrusion Detection: Host-based IDS directly monitors the internal components of individual vehicle systems, looking for fingerprints of unauthorized access, malicious activities within the operating system, software applications, or firmware.
- Anomaly Detection Algorithms: These algorithms spot deviations from normal behavior or predefined patterns and can differentiate routine activities from suspicious events. The ability to learn and adapt to evolving threats makes the IDS more effective in detecting novel attack vectors and zero-day exploits.
- Signature-Based Detection: These mechanisms recognize predefined signatures and known cyber threats, which enables IDS to block malicious activities. When paired with anomaly algorithms, the result is comprehensive defense against pernicious actions, both known and novel.
- Real-time Monitoring and Response: Effective cybersecurity requires real-time monitoring to launch timely countermeasures that can include blocking network connections, isolating compromised systems, and initiating automated security responses.
- Ecosystem Integration: Garrett’s IDS integrates with onboard vehicle systems, ECUs, and in-vehicle networks as well as with interfaces such as telematics and over the air updates. This is increasingly critical in a Vehicle-to-Everything communication environment on the road to autonomous driving.
- Scalable, Flexible, Compliant: Garrett cybersecurity systems require low onboard CPU usage, which aids scalability in often resource-constrained environments. To stay flexible, Garrett also provides advanced configuration tools, enabling manufacturers to test and ‘tune’ algorithms to safeguard multiple vehicle variants and to simulate cyber-attacks in a desktop environment. Its systems also meet the requirements of UNECE and country-specific lifecycle cybersecurity management regulations that ensure connected vehicle integrity is protected and continuously monitored.
“Vehicle Connectivity makes this an exciting but also challenging time for the automotive industry,” said Arumugam. “Garrett’s world-class software engineers are working tirelessly in partnership with automakers to design and apply the advanced protocols that will help keep the hackers at bay. We recognize that this is a constantly evolving space, but thanks to our continuous investment in our multilayered IDS, and the associated SOC, we provide a scalable solution and pathway for safeguarding data integrity and vehicle security.”
To explore even more details about Garrett’s cybersecurity solutions, click here.