Vehicle Access Version
Testers have a high technical threshold
The automotive industry is accelerating towards intelligence, networking, and electrification, making it increasingly difficult to maintain automotive information security. Traditional automotive information security testing places extremely high demands on testers, both in terms of testing threshold testing capabilities and understanding of testing standardization standards.
High standardization of testing requirements
How to effectively test a vehicle information security system and systematically benchmark relevant security standards to achieve standardized and procedural compliance testing has become a common issue in automotive information security testing.
Solutions
  • Test automation
    The compliance testing process for vehicle information security requirements and testing methods in accordance with the "Technical Requirements and Testing Methods for Vehicle Information Security" and the UN ECE WP.29 R155 Act is highly automated.
  • Improve testing efficiency and standardization level
    Referring to the ISO/SAE 21434 process, unify the management of test objects and testing processes, conduct automated comprehensive testing of the entire vehicle, reduce the ability threshold of testing personnel, improve testing efficiency and standardization.
  • Automated generation of detection and statistical reports
    Adopting a software and hardware integrated design, supporting third-party tool integration and expansion, customizable test items, and automated generation of detection statistics reports.
Highlights of the plan
Built in standardized testing process
Integrate multiple domestic and international regulatory standards to reduce the difficulty of testing management and improve the degree of testing systematization.
Automated penetration testing technology
One click identification of various vehicle information security risks, reducing the professional threshold for testers and shortening testing time.
Highly integrated
Covering six major threat scenarios, with over ten built-in detection items and hundreds of test cases, comprehensively verifying vehicle information security threats and significantly improving testing effectiveness.
Featured Features
Vehicle remote communication security testing
  • Communication hijacking
  • Code injection/deletion
  • Denial of service
  • Access Permissions
  • Spoofing
  • Trojan injection
Vehicle near-field communication security detection
  • Application program
  • Communication signal interference
  • USB
  • OBD
  • Remote key, charging station, anti-theft lock operation
  • NFC
  • WIFI
Software OTA security detection
  • Upgrade program integrity
  • Denial of service attacks on OTA servers or networks
  • Malicious tampering of upgrade package
  • Attacked during OTA process
Server security detection
  • Information cracking
  • Unauthorized Access
  • Insider attack
Data and code security testing
  • Firmware extraction
  • Unauthorized access to private data
  • Key extraction
  • Unauthorized operation of important data
  • Unauthorized deletion/operating system logs
  • Unauthorized alteration of diagnostic data
  • Malicious program injection
Vehicle safety reinforcement inspection
  • Weak password
  • Encryption algorithms
  • Using non compliant components
  • Software vulnerabilities
  • System backdoor
  • Non essential port opening
  • Man-In-The-Middle