GenX Toolchain

Automotive Cybersecurity

ANCIT IDS for CAN

Integrated within SmartWheels GenX — runs directly on the ECU

A lightweight, real-time software stack designed to detect and prevent unauthorized activities within your vehicle's CAN network. The IDS continuously monitors CAN messages, identifies abnormal behaviour, and triggers instant alerts — protecting your ECU from replay attacks, flooding, spoofing, and signal tampering.

Request Access Learn about GenX

IDS Dashboard — Real-time CAN Network Monitoring

Real-time
Monitoring
6
Detection Rules
S32K144
Validated
GenX
Integrated
Where IDS fits

Part of the SmartWheels GenX Toolchain

IDS runs on the ECU alongside your application code. Once your firmware is flashed via GenX, the IDS layer activates automatically — monitoring every CAN frame in real time with zero additional tooling required.

VxNet
CAN Network
GenX Config
ECU Behaviour
Code Gen
Production Ready
Flash ECU
SmartWheels
IDS Active
Real-time Guard
Capabilities

Lightweight Security Built for Automotive ECUs

Rule-based, real-time detection without heavy computational overhead — purpose-built for resource-constrained automotive microcontrollers.

Real-time Monitoring

Continuous monitoring of every CAN frame with instant detection of anomalies and security threats — no buffering, no delay.

Lightweight Integration

Optimized for resource-constrained ECUs. Minimal memory and CPU footprint — runs alongside your application without impacting performance.

Customizable Rules

Flexible rule-based detection logic tailored to specific vehicle architectures. Define whitelists, timing windows, and signal ranges per ECU.

Alert Notifications

Visual (LED) and software alert notifications for immediate threat awareness. Each intrusion type maps to a structured error code.

Hardware Validated

Tested and validated on the NXP S32K144 with TSMaster for bus stimulation — ready for integration on SmartWheels V1 Pro and GenX ECUs.

DBC-Based Visualization

Anomalies are reported over CAN with a provided DBC file — visualize threats in real time on CANoe, PCAN-View, TSMaster, or custom dashboards.

Detection Logic

Six Layers of CAN Protection

Each detection layer targets a distinct attack vector — together they cover the full spectrum of CAN intrusion threats.

1
ID Whitelisting

Only authorized CAN IDs are permitted. Any unknown message identifier is flagged instantly and blocked from propagating through the network.

2
DLC Validation

Ensures the correct data length for each CAN message. Malformed frames with unexpected DLC values are detected and reported.

3
Timing Checks

Monitors message periodicity to detect flooding and replay attacks. Messages arriving too fast or too slow trigger a timing violation alert.

4
Payload Range Validation

Catches out-of-range signal values such as engine speed, temperature, or voltage. Physically implausible values indicate spoofing or sensor faults.

5
Signal Consistency Checks

Detects logically inconsistent signal combinations that indicate tampering — e.g., conflicting gear and speed signals.

6
Structured Error Reporting via CAN

Every detected anomaly is assigned a structured error code and reported back over CAN — enabling full traceability and post-incident analysis.

Real-time Visualization

IDS anomalies are transmitted back over CAN with a provided DBC file. Plug into your preferred monitoring tool and get an instant live view of your vehicle network's security status — no extra software needed.

Compatible With
TSMaster CANoe PCAN-View Custom Dashboards
Validated Hardware
NXP S32K144 — primary validation platform
SmartWheels V1 Pro — production ECU integration
TOSUN TC1016 — HIL-ready bus stimulation
Request Access via GenX
ANCIT IDS for CAN

Secure Your Vehicle Network

IDS is part of SmartWheels GenX. Request access through the GenX install portal to get the IDS layer with your ECU firmware.

Download GenX Setup Request Access Learn about GenX