Karamba Security joins Automotive Grade Linux project

AGL_logo

Karamba Security has joined the Automotive Grade Linux (AGL) Project and The Linux Foundation to help develop its cybersecurity best practices.

The AGL initiative is the only collaborative open source project that plans to address all in-vehicle software, including functional safety and autonomous driving, in its effort to build a Linux-based, open software platform for automotive applications that can serve as the de facto industry standard.

The project is hosted at The Linux Foundation, a nonprofit that spurs innovation through open source by assembling the world’s top developers and firms to build ecosystems that accelerate open technology development and commercial adoption.

AGL Project goals include:

  • Building a single platform for the entire industry
  • Developing 70-80 percent of the starting point for a production project
  • Reducing fragmentation by combining the best of open source
  • Developing an ecosystem of developers, suppliers and expertise using the single platform

Assaf Harel, Karamba Security’s chief technology officer, will serve on the AGL App Framework & Security Expert Group to help with developing, guiding and influencing cybersecurity best practices.

Industry researchers estimate that the software for premium connected and autonomous vehicles’ electronic control units (ECUs) contains up to 65,000 bugs – including 5,000 security defects. These bugs potentially allow malicious hackers to take over the ECU, which is connected to the internet and external networks, and manipulate critical components such as steering and brakes.

The best way to protect those externally connected controllers is to ensure that only factory settings are allowed to run on them. There are now open source and commercial technologies that can be used by car makers and system providers to allow only the code and applications that were approved in the factory to run on the controller.

Karamba’s Autonomous Security software seamlessly protects connected and autonomous cars by hardening ECUs based on their factory settings. This is the industry’s first prevention solution with zero false positives, because it blocks hacking attempts from executing as they would deviate from the car’s factory settings.

Source: AGL

Banner space