HydraVision

HydraVision is a platform as a service that enables automated security testing over the entire lifecycle of an ECU and ensures compliance with the latest industry-specific guidelines and standards such as UNECE R155 and ISO 21434. With our intelligent security test environment, manufacturers and suppliers can not only easily comply with the new directives and standards, but also carry out practical cybersecurity tests on their products – automatically and remotely. We proactively develop test cases for new threats (CVEs) reported by developers, dissecto Research or third parties such as Auto-ISAC or ASRG. This allows attack vectors against your system to be verified and validated in a timely manner. In addition, you gain full control and transparency over all components of the platform in order to review and audit them and to design your work process as individually as possible.

Features


  • Customizable User Dashboard: Intuitive user dashboard that allows each user to tailor their interface according to their preferences and workflow
  • Full Remote Access: All project participants can manage and monitor security tests conveniently from their location 
  • Notifications & Alerts: Receive immediate updates on the status of your safety tests and be informed of any status changes
  • Security Reports:  HydraVision produces detailed and insightful security reports that provide a comprehensive overview of test results, vulnerabilities and security gaps 
  • Testcase Editor: Easily create, modify and customize test cases to ensure they cover the unique requirements of your system and organization 
  • User- & Group Management : Assign roles based on responsibilities, control access to system relevant data, and optimize collaboration within the security testing environment
  • CI/CD Integration: Seamlessly integrate HydraVision into your CI/CD pipeline and automate security testing processes to identify vulnerabilities early in the lifecycle

Applications

  • Embedded Systems
  • Automotive Systems
  • Industrial Systems
  • Aviation & Aerospace Systems
  • Maritime Systems
  • Defense Systems
  • IoT (Internet of Things) Devices
  • Medical Devices

V-Model

Benefits for Project Managers:
  • Verification and validation of security functions 
  • Time- & cost-saving
  • Easy User Management
  • Status & Reports
Benefits for Developers:
  • Rapid detection through logfiles
  • Immediate feedback after fixes
  • A-Spice conformity
Benefits for Testers:
  • Overview over all DUTs and Projects
  • Debugging functions against target
  • Testcase Editor
  • Intuitive IDE 
Benefits for Serial Support:
  • New threats are automatically reported by third parties (e.g. Auto-ISAC & ASRG)
  • Continuous supervision
  • UNECE conformity

Test Cases (Excerpt)

The test cases displayed here are just a small selection of what we offer. With HydraVision, we provide many more test cases and continuously update them to address the latest threat scenarios. If you would like to learn more about our full range of test cases, feel free to schedule a personal consultation.

IsotpScan

Testcase basic scan for ISOTP endpoints of the ECU on the CANSocket, returns a List of all found ISOTP endpoints of the ECU

ObdScan

Testcase scan of the OBD protocol, iterates over all services that contain information, sequence of ids: 01, 02, 06, 08, 09, 03, 07, 0A.

UdsDtcScan

Testcase scan of the UDS protocol for all available DTC information, uses UdsSystemStates to scan in every
available UDS session.

UdsRdbiScan

Testcase scan of the UDS ReadDataByIdentifier service, uses UdsSystemStates to scan in every available UDS session.

SomeIpSniff

Testcase basic scan for SomeIpEndpoint of the ECU on the eth, will create a list of
SomeIpEndpoints with values it got.

DoipPortTest

Testcase test if a port of PortScanResults supports Doip, will create a list od found DoIPEndpoints.

TlsScanTestSsl

Testcase scan for TLS security of the ECU on the eth with testssl.sh tool, will create .json files and List of TLSScanResults

EthDoipTest

Testcase test if an IP next to the source of a Vehicle Announcement Messages will get a connection to the target.

EthArpEndpointPortScan

This test case conducts a comprehensive port scan on the provided ArpEndpoint, examining the whole rangeof ports and generating PortScanResults based on the findings. The difference to the IpEndpoint portscan is, that the test can’t use an IP configuration that did get an imcp answer from the target.

EthDoipSniff

Testcase basic scan for Vehicle Announcement Messages over DoIP of the ECU on the eth, will create a list of
DoIPAnnouncement with values it got.

EthArpSniff

Testcase basic sniffer for ARP request of the ECU on the eth, will create a List of ArpEndpoints with all the messages it got. The Testcase will remove duplicates automatically.

EthIPEndpointPortScan

This test case conducts a comprehensive port scan on the provided IPEndpoint, examining a specified range of ports and generating PortScanResults based on the findings.

CanWakeupTest

Test if the ECU can be kept awake by CAN messages, logs results and writes summary.Returns CanBusKeepAliveBehaviour if successful.

PowerBehaviourTest

Testcase to analyze PowerBehaviour of ECU while running. Returns new objects of PowerBehaviour, a PowerMonitoring configured to the PowerBehaviour of the ECU.

UdsStateScan

Testcase scan of the UDS protocol for all available states in DiagnosticSessionControl and SecurityAccess. Returns a UdsSystemStates object containing routes to all available states of the ECU.

UdsSecurityAccess

This test case iterates through all sub-test cases defined in the test plan and executes them sequentially.The test plan includes tests such as Penalty Time Check, Immediate Key Try, Seed Analysis, and more, each aimed at verifying specific aspects of the UDS SecurityAccess service.

UdsWdbiScan

Testcase scan of the UDS WriteDataByIdentifier service, uses UdsSystemStates to scan in every available UDS session.

UdsRoutineControlScan

Testcase scan of the UDS RoutineControl service, uses UdsSystemStates to scan in every available UDS session.

UdsServiceScan

Testcase scan of the UDS protocol for all available services, uses UdsSystemStates to scan in every available UDS session

UdsRmbaScan

Testcase scan of the UDS ReadMemoryByAddress service, uses UdsSystemStates to scan in every available UDS session.

UdsEcuResetScan

Testcase scan of the UDS ECUReset service, uses UdsSystemStates to scan in every available UDS session.

Customer journey

By combining penetration testing with our HydraVision PaaS you can continuously evaluate the integrity and security of a given system. Whether you’re in development or at the very end of the product life cycle. The image below describes the usual order of events in this case:

Validation & Security Testing

HydraVision is a robust security validation and testing solution, comprising four integral layers to fortify digital defenses: 

Commencing with interface-level tests, HydraVision scans low-level drivers for potential vulnerabilities. The second layer involves comprehensive testing of protocols, assessing their robustness and identifying potential weaknesses. Additionally, HydraVision introduces fuzzing techniques to enhance the precision of security evaluations.

The third layer encompasses the evaluation of complex security controls and functions, ensuring a comprehensive examination of the system’s defensive capabilities. 

Finally, HydraVision addresses the tip of the cybersecurity iceberg by providing dedicated security tests for known Common Vulnerabilities and Exposures (CVEs), fortifying the system against identified threats. 

This multifaceted approach positions HydraVision as a feature-rich library, offering automation for security tests across diverse levels, effectively safeguarding against a spectrum of potential risks.

FAQ

What is HydraVision, and who is it for?

HydraVision is a cybersecurity testing platform specifically designed for Electronic Control Units (ECUs) in the automotive industry. It is suitable for automotive OEMs, Tier 1 suppliers, penetration testers, and developers involved in ECU security testing.


How does HydraVision automate ECU security testing?

HydraVision automates the process of penetration testing by using a unique software middle layer that enables the creation and reuse of security tests across different ECUs. This automation makes the testing process reproducible, scalable, and traceable, saving time and reducing manual efforts.


What types of tests does HydraVision support?

HydraVision supports a wide range of tests, including interface-level testing (CAN, CAN-FD, automotive Ethernet, JTAG, etc.), protocol-level testing (UDS, DoIP, XCP, GMLAN, etc.), and security control testing (access control, fuzzing tests). It also includes specific tests for known vulnerabilities in automotive systems.


Can HydraVision be used remotely?

Yes, HydraVision supports remote access through a web-based UI, allowing global teams to collaborate efficiently. Remote penetration testers, developers, and managers can access the platform from any location, providing real-time visibility into testing activities.


What is the Platform as a Service HydraVision offer?

HydraVision offers a Platform as a Service (PaaS) model, where ECUs and Hydra Probes can be hosted in a TISAX-certified environment managed by Dissecto. This model allows continuous security testing and monitoring of ECUs for extended periods, reducing the maintenance burden on users.


How can HydraVision help with regulatory compliance?

HydraVision helps organizations comply with global cybersecurity regulations like ISO 21434 and UNECE R155 by providing detailed, traceable, and reproducible test results. The platform generates comprehensive reports that document compliance with industry standards.


Can I customize test cases in HydraVision?

Yes, HydraVision allows users to modify existing test cases or develop their own using a web-based IDE. The platform supports full transparency and flexibility, enabling users to adapt tests to specific security requirements.


How does HydraVision handle test data and reporting?

HydraVision provides real-time monitoring of all test activities and generates detailed reports that include power trace data, test results, log messages, and user comments. Reports can be exported in formats such as Markdown and JSON, making them easy to integrate with other tools.


Does HydraVision integrate with other tools?

Dissecto is working on providing an API for better integration with other tools. It currently supports deep linking, allowing users to reference test runs and results in external requirements management or test case documentation tools.


What is the licensing model for HydraVision?

HydraVision’s licensing model includes three main components: the HydraVision backend instance (licensed annually), the Hydra Probe hardware (purchased separately), and runner licenses (required for each probe). The licensing is flexible, allowing users to scale based on the number of projects and probes in use.


Can HydraVision be used for different types of ECUs?

Yes, HydraVision is highly versatile and can be used across various types of ECUs at different stages of their lifecycle, including development, production, and serial support phases.


What kind of support and services are offered with HydraVision?

Dissecto provides professional services, including the development of custom test cases tailored to specific security requirements. Users can also receive support for integrating HydraVision with their existing workflows and systems.


How does HydraVision facilitate debugging and analysis?

HydraVision offers an integrated debugging environment where users can set breakpoints, inspect variables, and conduct live analysis. It provides a full shell access to the system, allowing testers to execute and modify test cases in real time.


What level of test coverage can be expected from HydraVision?

The level of test coverage varies depending on the type of ECU. For standard ECUs, HydraVision can cover approximately 70% of penetration testing requirements, particularly for CAN and Ethernet based protocols. For more complex ECUs, like those in infotainment systems, additional customization may be required.

*product specifications and features are subject to change without prior notice as we continuously strive to improve our products