Rethinking Automotive Defenses: Self Protecting ECUs
At the 2017 EcoMotion conference in Tel Aviv, a panel on automotive cybersecurity featured Ami Dotan, CEO and Co Founder of Karamba Security. He presented an alternative approach to protecting connected vehicles. Instead of relying on network based detection systems common in data centers, Karamba advocates for equipping individual Electronic Control Units (ECUs) with the ability to defend themselves.
The proposed method involves locking down ECUs to only accept operations that match their original factory settings. This technique aims to eliminate the need for constant signature updates or vulnerability patching. Dotan argued that this approach sidesteps major industry pain points, such as false positives that could endanger passengers, and the exposure window between a vulnerability discovery and patch deployment.
Impact and Scope for the Automotive Industry
The panel discussion highlighted a key shift in how the automotive sector is approaching cybersecurity. Industry consensus is moving away from reliance on detection based methods, which cannot guarantee protection for vehicle occupants. Car manufacturers are increasingly recognizing the need for prevention systems that block attacks before they compromise the vehicle.
Dotan also shared insights on Karamba’s recent fundraising success, noting that strategic investors including Fontinalis Partners, Paladin Capital, Liberty Mutual, and Sumitomo approached the company based on its market traction. This suggests that the automotive industry and its investors are actively seeking out new prevention focused security solutions that can operate with zero false positives, a critical requirement for safety critical vehicle systems.
Source: Karambasecurity
