The First Auto-Generated IoT Device-Specific Security Agent Is Tailored for Each Device Based on the Analysis of Its Firmware Binary by Vdoo’s Analysis Platform
Vdoo, the leader in embedded device security, has announced the availability of its ERA™ – Embedded Runtime Agent for ongoing connected device security. The Vdoo agent is automatically tailored for each device based on an analysis of its firmware binary by Vision – Vdoo’s analysis platform, focusing on the device’s threat landscape and resources, while avoiding any significant performance or functionality impact to the device.
“While the Vdoo analysis solution, Vision, provides the ultimate tools to properly implement security building blocks and mitigate threats on connected devices, attack methods always evolve and one must have evolving countermeasures that can deal with the unknown. For that we offer ERA, the first and only runtime security solution for IoT that takes in account each devices’ specific attributes and threat landscape,” said Netanel Davidi, co-founder and co-CEO at Vdoo.
Based on Vdoo’s analysis of more than 4,000 IoT device firmware binaries, 98% of firmware files contain at least one vulnerability that scored higher than 7.0 (High) on the Common Vulnerability Scoring System (CVSSv3) scale. This level of vulnerability is typically reserved for items with actionable exploits which can be executed with minor or no authentication, either locally or remotely. In addition, in the past year, IoT makers have been able to quickly address and mitigate more than 120 zero-day vulnerabilities using Vdoo’s Vision™ analysis platform.