Self-Defending ECUs

Always On
Always Secure
Always High Performance

Karamba Carwall™ hardens ECU functionality based on factory settings—to block attacks, even unknown threats.
Carwall image

Karamba Carwall:
ECU Protection Blocks
Hackers at the Gate

Karamba Carwall automatically hardens your electronic control units (ECUs) based on factory settings, eliminating the risks of false positives, detection delays, and performance drag—issues that typically hinder vehicle security.

Blocks In-Memory Attacks

Performing lightweight Control Flow Integrity (CFI), Carwall continuously monitors function calls and return pointers to ensure your ECU programs stay within the expected execution flow. If the program deviates from factory settings, Carwall detects a fileless threat and blocks the command.

Stops Malicious Downloads

Carwall automatically generates and enforces an application whitelist to prevent dropper attacks. If an application attempts to load, and it does not exist in your list of approved signatures, Carwall stops it from loading.

Lifts the Burden off Your Developers

During the build process, our patented technology autonomously maps all call sequences to create your customized security policy. It requires little or no effort. And unlike other security, there’s no need for constant updates.

Ensures Top Performance

While most security imposes a heavy footprint, Carwall runs in resource-limited systems—within the ECUs’ performance requirements. Our patented algorithms ensure there is no performance drag. There is no need for heavy processing or continual security updates.

Carwall autonomous security Animation

Carwall Advantages

ECU Protects Itself

Protects Itself

Carwall security is embedded in the ECUs—so threat protection is local, autonomous and always on. There are no updates required and no dependencies on the vehicle’s connectivity to the cloud.

Zero False Positives

Eliminates Detection Errors

Our deterministic algorithms are inherently precise. Only legitimate function calls and authorized apps are permitted to run. Everything else is blocked. There are no false positives.

Supports all ECUs

Supports all ECUs

Carwall can protect any ECU—it’s hardware and OS agnostic. It supports ARM, Intel, Infineon, TriCore, and PowerPC processors; Linux, QNX, and AUTOSAR operating systems. Karamba is also compliant with NHTSA, the SELF-DRIVE Act, and others.

See Why Our ECU Protection Wins Awards

Figure

White Paper

What is autonomous automotive security, and how does it provide superior ECU protection? In this white paper, we explain how deterministic methods harden the runtime environment to prevent car hacking.

Figure

Datasheet

Carwall features CFI, whitelisting, on-premise or cloud-based management, customizable reporting and forensics. Plus it’s easy to deploy, supporting almost any platform, build environment and architecture.

Figure

Carwall at a Glance

How does ECU hardening prevent car hacking? See a diagram of connected car cybersecurity. And learn how Carwall eliminates the risks of false positives, performance drag, and security gaps.

Grant Courville

We are pleased that Karamba has extended their support to include our platform. Karamba Carwall adds another layer of security to BlackBerry QNX’s already highly secure software offering. The combination provides customers with stronger cybersecurity for in vehicle systems.

Grant Courville, Vice President of Product Management and Strategy, BlackBerry QNX

Want to see a demo?

Get Karamba’s Autonomous Security White Paper

Loc

USA

41000 Woodward Ave
Building East, Suite 350
Bloomfield Hills, MI 48304
Tel: +1 248-574-5171

Loc

Israel

24 HaNagar Street
Hod Hasharon
45277-13
Tel: +972 9 88 66 113

Loc

Germany

Wasserburger
Landstr. 264, Munich
81827
Tel: +49 151 1471 6088