Securing IoT Devices

What Is The Problem?

IoT merges the physical and IT worlds. Connected medical devices, printers, surveillance cameras, and smart factories, have no well-defined perimeter. Cloud, mobile and world-wide-web connectivity are punching holes in perimeter security, and enable hackers to gain access to those connected devices, jeopardizing data privacy and customer safety.

Product security standards such as NISTIR 8259, UL2900, US Executive Order 14028, and FDA endpoint directives require product manufacturers to protect their devices against cyberattacks, and assure supply-chain security. Applying those cybersecurity requirements have a significant toll on R&D processes -- hence time-to-market and revenue loss impact -- as well as on the device architecture.

How Karamba Secures IoT Devices

Automatically building security into the connected system is the foundation of Karamba Runtime Integrity technology for the automotive world. Addressing the broad IoT market, the XGuard suite provides unparalleled self-protection against device control loss. Buffer overflows can result in foreign malicious code or code-reuse attacks (such as return-oriented programming) which can be self-detected and self-blocked with Karamba XGuard.

After the attack is detected and blocked, XGuard provides a detailed report of the attack to the device manufacturer.

Automatically embedding cybersecurity into endpoints has always been a sought-after goal, but it has been hindered by performance restrictions. Karamba’s solution allows manufacturers to automatically apply this technology to seal systems during production. Furthermore, Karamba’s solution has proven to have negligible performance impacts in the resource constrained in-vehicle environment.