Security Testing Tools
AutoCrypt CSTP
Automotive cybersecurity testing platform for Vehicle Type Approval
Automotive cybersecurity testing on a comprehensive platform.
According to UNECE’s Regulation 155, automotive cybersecurity testing must be done periodically to identify and mitigate potential vulnerabilities. However, given the various sets of testing tools, managing all individual testing processes and results can be time-consuming and inefficient.
AutoCrypt® CSTP (Cybersecurity Testing Platform) is a comprehensive platform that offers a variety of security tests and validations and allows them to be executed and managed on one single platform. All proprietary test cases are made to meet UN R155/156 and GB (GB/T) criteria.
The platform also allows users to manage and share standardized test results between internal parties and external authorities, enabling faster decision-making and streamlining the Vehicle Type Approval (VTA) process.
Features
Three types of tests on a single platform
Penetration Testing
- Provides penetration testing scenarios crafted by AUTOCRYPT’s award-winning Red Team
- Security validation for all connection endpoints inside and outside the vehicle, including infrastructure, web, and cloud services
Fuzz Testing
- Fuzz testing in compliance with ISO/SAE 21434
- Regulatory compliance support for automotive OEMs and suppliers
- AI-based algorithm increases testing speed and improves detection rate
Functional Testing
- Validation of functionalities using specification analysis test cases composed in-house
- Error identification and correction improve the development process and ensure functional reliability
Highlights
AutoCrypt CSTP benefits
Universal test cases for worldwide compliance
AutoCrypt CSTP provides test cases compliant with UN R155/156 and GB (GB/T).
- Test cases made for a variety of scenarios and environments, increasing the overall stability and reliability of the vehicle
- Test cases configured to strictly comply with international regulations, generating results that can be used for any type approval process across the globe
- Test cases regularly updated to provide coverage for new standards and technologies
Optimized test cases for each environment
AutoCrypt CSTP provides optimized test case suggestions based on the target environment.
- Every vehicle environment is different, requiring different test cases
- AutoCrypt® CSTP scans the service ID to study the vehicle environment, then suggests an optimized list of test cases for that environment
- Users can further add or modify test cases based on their needs
Custom test case selection and economical licensing options
Users enjoy the freedom of selecting test cases based on their vehicular environments.
- Depending on the environment and testing objective, users can choose only the testing services they need without buying the full license
- Highly economical for users who want to focus on specific needs and do not want to purchase the full license
- Allows customers to make efficient use of their resources and maximize the benefits to the specific needs of their projects
Integrated result sharing with internal and external parties
Users can easily share testing results between testing centers and with type approval authorities.
- AutoCrypt® CSTP can be configured to share test results with vehicle type approval authorities, governments, suppliers, and research centers
- Results from different testing centers can be integrated, analyzed, and managed on a single platform, allowing for faster and more accurate decision-making
- Cybersecurity consulting and quality assurance support offered based on integrated test results
Continuous multi-ECU testing
AutoCrypt CSTP enables continuous and uninterrupted testing for entire projects.
- Conventional testing tools require manual execution for each ECU
- AutoCrypt® CSTP enables continuous testing for multiple ECUs grouped under the same project
- Less manual intervention and faster results
Components
AutoCrypt CSTP architecture
Hardware structure
User interface
