- Products and Solutions
- Why Callisto?
- Join us
- News and Blogs
TARA analysis AI agent
An intelligent TARA analysis product designed for OEMs automates the identification of network threats, assesses asset risks, and formulates defense strategies to comprehensively enhance network security protection capabilities.
From one-time tasks to continuous iteration
As software-defined vehicles (SDVs) evolve, Threat Analysis and Risk Assessment (TARA) has become an ongoing, iterative process. Each new model and its core components are subject to detailed TARA analysis. Risk assessments are also updated with every software update to maintain continuous security and compliance.The dual challenges of talent and cost
TARA analysis, essential for evaluating threats and risks in software-defined vehicles, requires experts skilled in both automotive operations and information security, which increases labor costs. This thorough process examines the vehicle's complex electronic and electrical systems, focusing on at least four core and ten key components.Frequency and maintenance costs of OTA updates
As OTA (over-the-air) update frequency increases, TARA analysis must be updated and maintained concurrently, raising the operating costs for automakers. This frequent maintenance requirement poses significant challenges for car companies in terms of cybersecurity management and cost control.As the development cycle for new models shortens and the frequency of software updates increases, OEMs and Tier 1 suppliers face a growing need for efficient TARA analysis tools. The Callisto TARA agent, an innovative solution, meets this demand by using human-like intelligent analysis to automatically generate TARA analysis reports. It also details the six key steps and their logical thought process throughout the analysis, enhancing both the transparency and depth of the analysis.
TARA report generation
The data flow diagram is processed with OCR and NLP to extract asset information and data flow directions. This data is used by the TARA AI agent, which identifies potential threats and analyzes risk levels to produce a detailed report.
TARA Q&A
Users can ask TARA-related questions about parts via voice or text and receive real-time information on potential risks and cybersecurity measures for each ECU component, enhancing their understanding of product network security.
TARA content update
TARA analysis is regularly revised and updated based on new cyber threats and corporate assets. This process keeps the analysis current, accurately reflecting the latest security conditions and requirements, and assists automakers in adjusting their security strategies promptly to address new challenges.
TARA content review
Systematic evaluation and feedback are conducted on existing TARA analysis results to assess their validity, accuracy, and reliability. This evaluation helps identify deficiencies, provides a foundation for future improvements, and ensures that TARA analysis remains effective in meeting evolving security needs and standards.
'%3e%3ccircle%20cx='19.0016'%20cy='19.0001'%20r='2.4'%20fill='white'/%3e%3c/g%3e%3ccircle%20cx='19'%20cy='19'%20r='5.5'%20stroke='white'/%3e%3cdefs%3e%3cfilter%20id='filter0_f_1906_673'%20x='0.601562'%20y='0.600098'%20width='36.8008'%20height='36.8'%20filterUnits='userSpaceOnUse'%20color-interpolation-filters='sRGB'%3e%3cfeFlood%20flood-opacity='0'%20result='BackgroundImageFix'/%3e%3cfeBlend%20mode='normal'%20in='SourceGraphic'%20in2='BackgroundImageFix'%20result='shape'/%3e%3cfeGaussianBlur%20stdDeviation='8'%20result='effect1_foregroundBlur_1906_673'/%3e%3c/filter%3e%3c/defs%3e%3c/svg%3e)
Compliance assurance
TARA intelligence enables automakers to easily meet the compliance requirements of WP.29 R155 and GB strong vehicle standards, ensuring that risk assessment covers 100% of input assets and providing comprehensive compliance assurance for vehicle cybersecurity.
Improve efficiency
The TARA agent, through intelligent assistance, enhances the TARA analysis efficiency of security personnel by more than 40% and helps non-security professionals increase efficiency by over 80%. This significantly reduces analysis time and optimizes resource allocation.
Intelligent iterative update
The TARA agent is seamlessly integrated with the OTA platform. It automatically updates the risk analysis with each OTA update, ensuring that the security assessments remain accurate in real time as the software evolves. This integration reduces maintenance costs and improves response speed.
Use Case
During the vehicle concept design stage, complete vehicle and component assets will be passed to the TARA AI agent as input. The agent can automatically generate a TARA analysis report and notify the person in charge of TARA for review and confirmation. This process significantly shortens the time of the conceptual design phase and improves work efficiency.
In the OTA upgrade scenario of automobile cybersecurity operations, the TARA AI agent automatically sorts out relevant assets based on the upgrade details, updates the TARA analysis in real time, and notifies the person in charge of TARA for review and confirmation, thereby ensuring that the security risks after each upgrade are efficiently and timely assessed and control.
