Solution

Transportation Cybersecurity

Building security into connected vehicles and intelligent transport systems

The Product

Intelligent systems are everywhere - controlling road and rail infrastructure, improving vehicle performance and enhancing the passenger and driver experience. The proliferation of ECUs etc inside vehicles, interfacing with external data sources including entertainment, GPS, and diagnostics, creates new vulnerabilities and opportunities for cyber-intrusion. A fundamentally fresh and holistic design approach, building security into vehicles and transportation from the ground up, is required.

Unità SCU (Secure Communications Unit)

Una piattaforma software affidabile e flessibile, basata e rafforzata da KasperskyOS, che consente ai produttori di autoveicoli di sviluppare e implementare un singolo gateway protetto nelle unità ECU del veicolo connesso, combinando la protezione contro le cyber-intrusioni con le tecnologie di diagnosi avanzata tramite link OTA (over-the-air).

Sicurezza integrata a livello di sistema operativo

Il sistema operativo KasperskyOS è pensato appositamente per proteggere diversi e complessi sistemi embedded dalle conseguenze di codici dannosi, virus e attacchi di hacker. Ciò si ottiene in parte attraverso una forte separazione e applicazione delle policy, utilizzando tecniche brevettate e metodologie di sicurezza affidabili.

Servizio di Threat Intelligence per i trasporti

Una gamma di servizi di cybersecurity per il settore automobilistico, ferroviario e il settore dei trasporti più ampio, in grado di fornire l’analisi e le informazioni necessarie per migliorare la sicurezza delle operazioni e consentire un approccio proattivo da adottare contro minacce avanzate

The Use

  • The Secure Connected Car

    A more holistic approach to building the secure connected, and soon the driverless, car, based on:

    • The SCU - a single secure gateway between internal ECUs, TCUs etc and the external services and resources with which they interface
    • KasperskyOS, ensuring safe software execution and protecting against random software errors, as well as cyber-intrusion and malware
    • Threat Intelligence Services to help uncover, analyze and rectify any shortcomings in vehicular cybersecurity
  • Rail and Rapid Transit Systems

    The introduction of Communication Based Train Control (CBTC) and European Train Control Systems (ETCS) means manufacturers and transportation system operators must pay even more serious attention to the cybersecurity of locomotive, floor and station automation systems.
    Our rail and rapid transit solutions work on different stages of the base automation components lifecycle – from analysis to managed security services, and from embedded Automatic Train Control to online ticket sales portals.

  • Security Assessment and Penetration Testing

    The Security Assessment and Analysis of:

    • Vehicle internals (ECUs, TCUs, TPMS, RKE, PATS etc) and interfaces
    • Applications, including source code and architecture
    • Cloud-based and datacenter systems with telematics (remote control parking, entertainment, real-time traffic updates  etc)
    • Telecom Client-side security assessment – external communications with connected vehicle service platforms

    Penetration testing, emulating systems bypass approaches by external and internal intruders

24/7

Premium Support and Professional Services

Professional help is available whenever you need it. Operating in more than 200 countries, from 34 offices worldwide, we have you covered 24/7/365. Take advantage of our Premium support packages, or call on our Professional Services to ensure that you derive maximum benefit from your Kaspersky security installation.

White Papers

Learn more, with thought leadership from our globally recognized cybersecurity experts

The Risk

Kaspersky Transportation solutions secures software-based the of connected vehicles and intelligent transport systems against unauthorized access and ongoing damage caused by cyberattacks including:

  • <p>The theft and exploitation of driver and passenger credentials and confidential data</p>

    The theft and exploitation of driver and passenger credentials and confidential data

  • <p>The implemention of unauthorized firmware</p>

    The implemention of unauthorized firmware

  • <p>USB and OBD2 based attacks</p>

    USB and OBD2 based attacks

  • <p>Remote access and attacks via mobile devices</p>

    Remote access and attacks via mobile devices

  • <p>Data sniffing and Man-in-the-Middle-attacks</p>

    Data sniffing and Man-in-the-Middle-attacks

  • <p>The exploitation of software vulnerabilities in generic and industry-specific applications</p>

    The exploitation of software vulnerabilities in generic and industry-specific applications

Relativo a questa soluzione