Security Products
Karamba's Total IoT Security
Karamba's Total IoT Security is a comprehensive solution that can be applied seamlessly across the entire lifecycle of IoT products by combining:
(1) XGuard Protect, an autonomous security product that protects embedded software on devices from cyberattacks;
(2) VCode, a secure development platform that visualizes risk through code vulnerability analysis, and
(3) XGuard Monitor, which enables large-scale IoT security monitoring.
In addition, for IoT devices and vehicles that are already in operation, security monitoring can be enabled without modifying the firmware by adding the Xguard Monitor agant during firmware updates using OTA*1 capabilities. This allows EDR-based monitoring of network borne attacks, making it possible to effectively secure existing IoT devices and in-serve vehicles that were previously difficult to protect.
*1 OTA (Over The Air): Function that sends and receives data over wireless communication when performing software updates, etc.
*2 Firmware: Software used to control hardware.
Main Functions and Features
-
XGuard Protect
- Automatically strengthens the security of connected systems through embedded runtime integrity protection.
- Defends against a wide range of attacks, including droppers that use files or scripts, as well as fileless attacks that exploit memory vulnerabilities such as buffer overflows.
- Prevents attacks that exploit zero-day and other vulnerabilities while minimizing false positives through Control Flow Integrity (CFI) and application whitelisting
- The runtime layer complements static code analysis and defends mission-critical connected systems such as network equipment against advanced attacks.
-
Vcode
- Visualizes security issues by performing binary analysis on IoT device firmware.
- Proposes prioritized remediation measures based on platform-specific information.
- Manages security posture and progress, and performs compliance verification using checklists, with the results output as reports.
- Easily integrates with Continuous Integration / Continuous Delivery (CI/CD) pipelines.
- Can be installed as a virtual machine in both on-premises and cloud environments (image file provided).
-
XGuard Monitor
- Collects OS, applications, and network events via an agent and uses AI-driven correlation analysis to detect early indicators of failures and threats.
- Minimizes event noise and reduces throughput by more than 90%, enabling support for millions of deployed devices.
- Detects and analyzes a wide range of threats by comparing IoT device behavior with predefined policies, historical baselines, and profiles of similar devices.
- Integrates logs and events with leading SOC platforms through well-defined APIs.
- Delivered as a cloud-based SaaS solution.
- By simply adding the agent to target devices, enables implementation of security monitoring without modifying the firmware.
Security Products
- Next-Generation Firewall
- Targeted Attack Protection
- Cloud Security / Virtualization
- Mobile / Endpoint Security
- Email Security
- Anti-Phishing
(Business Email Compromise Protection, etc.) - Application Security
- Server Security
- Sandbox
- Malware Sanitization
- Log Analysis
- Server Monitoring
- Encryption
- Security Policy
- Industrial Control System Security
- Connected Car Security
- WAAP
- Browser Security
- Cloud Backup
- SASE
- Vulnerability Management
