AUTOSAR Cybersecurity Breakthrough
Photo Gallery
AUTOSAR Cybersecurity Breakthrough
Additional Info
Job title of nominated professional (or team name) | AUTOSAR team |
Company (where nominated professional or team is working) | Cybellum |
Website | http://www.cybellum.com |
Company size (employees) | 50 to 99 |
Country | Israel |
Headquarters Region | Middle East |
Overview
To secure connected vehicles in line with the latest automotive cybersecurity regulations and standards, OEMs and their suppliers must gain visibility into the makeup of their software. However, many vehicle ECUs are based on the AUTOSAR framework– one which only approved vendors have access to, yet the entire industry relies on.
While AUTOSAR benefits cybersecurity professionals by streamlining processes and industry collaboration, it falls short of visibility, creating an opportunity for software supply chain vulnerabilities that can remain in software indefinitely if not identified.
We integrated AUTOSAR into our Product Security Platform to identify all software components and generate detailed SBOMs to better secure connected components. We even identified previously unknown software components that came from a non-approved vendor downstream.
As vehicles contain a greater number of lines to secure, we integrated these AUTOSAR component identification directly into our Product Security platform. This enables teams to secure their connected vehicle components while managing increasingly complicated code, integrations, and growing regulations.
When teams use Cybellum, they are ensuring uptime for their mission-critical components, which drivers rely on for reliable operations.
Accomplishments
Cybellum is the only security tool focused on full management of connected products.
As opposed to working with various tools with limited integration, Cybellum provides a comprehensive Product Security Platform that focuses on the needs of managers and teams who are tasked with keeping devices and products secure in compliance with growing regulations.
Complete product-specific risk coverage- Automatically detect, prioritize and mitigate software vulnerabilities, zero-days, malware, and security gaps throughout the product development lifecycle. Use this information to ensure industry regulations, standards, and your own security and licensing policies are validated and enforced.
Reduce time with fewer resources- Automated workflows and systems allow teams to shift from reactionary to proactive product security. Our virtual analyst means product security teams can sift through long lines of vulnerabilities in no time.
Customizable policies to your internal needs- Designed to fit specific industries, our default settings or configure Cybellum with your risk scoring logic, thresholds, security policies, automated workflows and more.
As our competitors offer similar bits and pieces of what we do, we are the only ones to offer it all, within one application– allowing teams to focus on security, not combining data from various non-synchronized applications.