IoT
7/24/2018
10:27 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Continental Offers Cyber Security Solutions from Argus and Elektrobit for All Connected Vehicle Electronics

AUBURN HILLS, Mich., July 24, 2018 —Technology company Continental recently announced it is offering end-to-end cyber security and wireless software update solutions integrated into connected vehicle electronics including telematics units, infotainment systems, gateways and more from Argus Cyber Security (Argus) and Elektrobit (EB).

“Just as brakes are imperative for safe driving, connected vehicles require state-of-the-art cyber security as a basic feature,” said Werner Koestler, Head of Strategy, Interior division, Continental.  “Therefore, we have decided to offer end-to-end cyber security solutions from Argus and Elektrobit in all of our connected vehicle electronics and as a standalone solution for third party products.”

Continental, EB and Argus’ cyber security philosophy is focused on enabling OEMs to secure vehicles by preventing, understanding and responding to cyber threats. 

To prevent possible attacks, EB provides consultation, along with security components for the application layer, hardware-specific security products, AUTOSAR (AUTomotive Open System ARchitecture) basic software and security solutions for bootloaders launching various operating systems. Those components, on the road today in millions of vehicles, are designed for applications including secure communication, authenticated identification, secure updates and diagnostics.

Argus provides multi-layered solutions that offer additional state-of-the-art prevention from cyber attacks against the vehicle, as well as the ability to detect and respond to attacks in real-time with Argus Connectivity Protection installed on telematic and infotainment units and the Argus Intrusion Detection and Prevention System deployed in the in-vehicle network.

Argus Lifespan Protection, an automotive security operations center, offers an additional layer of prevention, understanding and response by providing OEMs visibility into the cyber health of their fleets, analysis of cross-fleet information to generate insights into the nature of attacks,  identification of emerging threats, and a rapid response to incidents by immunizing the fleet. To react as quickly as possible, and install software patches to resolve vulnerabilities in fleets around the world, vehicle manufacturers can rely on EB’s wireless software update service EB cadian Sync.

“Our multi-layered approach is an end-to-end offering for automotive cyber security, from the development of new products and ongoing monitoring, to the ability to resolve vulnerabilities via wireless updates to immunize fleets from future attacks,” Koestler explained.

Gateway and In-Vehicle Server: Mastering Cyber Security Today and Tomorrow

Continental is making the multi-layered solutions part of its portfolio, ensuring its components are as robustly secured against attacks as possible. In addition, Continental is also developing control units, which serve as important elements in the security chain themselves. Continental’s Gateway, for example, acts as a router within the vehicle computing network in classical distributed in-vehicle computing architectures or today’s domain architectures.

“For components that build an entry point for remote attacks, such as telematics units or infotainment systems, the requirements have been drastically increasing over the last couple of years. As an international automotive supplier, we see it as our duty to provide the best protection possible for our customers,” Koestler continued.

The Gateway integrates state-of-the-art security features from Argus and enables basic vehicle diagnostics and wireless software update capabilities via EB to monitor the vehicle’s cyber health and allow for immediate updates if needed.  In essence, Gateway takes over the role as security master.  For future server-based architectures, Continental is offering the In-Vehicle Server, a high-performance computing unit that acts as a network manager and communication interface. It also provides a central architectural element leveraging the full spectrum of wireless software updates for remote maintenance and cyber security for the entire vehicle.

About Continental

Continental develops pioneering technologies and services for sustainable and connected mobility of people and their goods. Founded in 1871, the technology company offers safe, efficient, intelligent and affordable solutions for vehicles, machines, traffic and transportation. In 2017, Continental generated sales of €44 billion and currently employs more than 240,000 people in 61 countries.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
12 Free, Ready-to-Use Security Tools
Steve Zurier, Freelance Writer,  10/12/2018
Most IT Security Pros Want to Change Jobs
Dark Reading Staff 10/12/2018
Most Malware Arrives Via Email
Dark Reading Staff 10/11/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Flash Poll
The Risk Management Struggle
The Risk Management Struggle
The majority of organizations are struggling to implement a risk-based approach to security even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-17534
PUBLISHED: 2018-10-15
Teltonika RUT9XX routers with firmware before 00.04.233 provide a root terminal on a serial interface without proper access control. This allows attackers with physical access to execute arbitrary commands with root privileges.
CVE-2018-17980
PUBLISHED: 2018-10-15
NoMachine before 5.3.27 and 6.x before 6.3.6 allows attackers to gain privileges via a Trojan horse wintab32.dll file located in the same directory as a .nxs file, as demonstrated by a scenario where the .nxs file and the DLL are in the current working directory, and the Trojan horse code is execute...
CVE-2018-18259
PUBLISHED: 2018-10-15
Stored XSS has been discovered in version 1.0.12 of the LUYA CMS software via /admin/api-cms-nav/create-page.
CVE-2018-18260
PUBLISHED: 2018-10-15
In the 2.4 version of Camaleon CMS, Stored XSS has been discovered. The profile image in the User settings section can be run in the update / upload area via /admin/media/upload?actions=false.
CVE-2018-17532
PUBLISHED: 2018-10-15
Teltonika RUT9XX routers with firmware before 00.04.233 are prone to multiple unauthenticated OS command injection vulnerabilities in autologin.cgi and hotspotlogin.cgi due to insufficient user input sanitization. This allows remote attackers to execute arbitrary commands with root privileges.