Don’t take my word for it. Tear into any one of the dozens of black boxes in your car and take it apart. Analyze the chips soldered on the boards. You might get lucky and find all standard chips with information available from suppliers.
Try looking at the data going across any one of the several buses transiting your vehicle. OBD is easy. The others are usually encrypted and much higher speed.
Cars are legitimately complex. Don’t just listen to the manufacturers and scoff. Look up some research into breaking the communication protocols that MB or BMW use. Compare that with GM’s newest standard. Go ahead and practice your reverse engineering skills, because these things aren’t published.
If nothing else, it increases the time to attack and own the system. Networked modules are more efficient and higher performing than old systems. This is the price of progress.
Just one example is the ECU. Old analog engines were crude and inflexible. Simple environmental changes would cause engines to run out of their efficient zones and dump more or less fuel than is appropriate for the conditions they’re experiencing. Modern engines take pressures and temperatures (from several locations) into account, along with throttle desired by the user and calculated load to change the engine parameters on the fly. This is why a modern Mustang can hit 30 mpg on the highway with 500hp and the 80’s model struggles with 20mpg and less power than a current Civic.
These ECUs can be the difference between safely driving and unsafe unintended acceleration into a truck in front of you. We haven’t seen any attacks which turn ordinary occupied vehicles into missiles… yet. I have absolutely no doubt that we will experience one in the next 10 years. Encryption and security may be the difference between this being a rare occurrence conducted by powerful nation state actors and something script kiddies can perform with a laptop and a weekend.
The problem with the black box approach is not only does it mess with right to repair, competition, and home build jobs, but even people who make cars! I’ve literally been to talks in car manufacturing events where a speaker from a large car manufacturing give talks about how hard it is making life for them. Does that car manufacturer do anything different? Nope. Whole culture is infected with “my secrets” thinking which makes everyone’s life hard. Things are at a complexity now, everything should be built to be debugged.
Don’t take my word for it. Tear into any one of the dozens of black boxes in your car and take it apart. Analyze the chips soldered on the boards. You might get lucky and find all standard chips with information available from suppliers.
Try looking at the data going across any one of the several buses transiting your vehicle. OBD is easy. The others are usually encrypted and much higher speed.
Cars are legitimately complex. Don’t just listen to the manufacturers and scoff. Look up some research into breaking the communication protocols that MB or BMW use. Compare that with GM’s newest standard. Go ahead and practice your reverse engineering skills, because these things aren’t published.
They’re made that way so you can’t repair them. They don’t need to be that complex and nothing on a car needs to be encrypted.
Idk person, encryption on cars has a valid place.
If nothing else, it increases the time to attack and own the system. Networked modules are more efficient and higher performing than old systems. This is the price of progress.
Just one example is the ECU. Old analog engines were crude and inflexible. Simple environmental changes would cause engines to run out of their efficient zones and dump more or less fuel than is appropriate for the conditions they’re experiencing. Modern engines take pressures and temperatures (from several locations) into account, along with throttle desired by the user and calculated load to change the engine parameters on the fly. This is why a modern Mustang can hit 30 mpg on the highway with 500hp and the 80’s model struggles with 20mpg and less power than a current Civic.
These ECUs can be the difference between safely driving and unsafe unintended acceleration into a truck in front of you. We haven’t seen any attacks which turn ordinary occupied vehicles into missiles… yet. I have absolutely no doubt that we will experience one in the next 10 years. Encryption and security may be the difference between this being a rare occurrence conducted by powerful nation state actors and something script kiddies can perform with a laptop and a weekend.
The problem with the black box approach is not only does it mess with right to repair, competition, and home build jobs, but even people who make cars! I’ve literally been to talks in car manufacturing events where a speaker from a large car manufacturing give talks about how hard it is making life for them. Does that car manufacturer do anything different? Nope. Whole culture is infected with “my secrets” thinking which makes everyone’s life hard. Things are at a complexity now, everything should be built to be debugged.
Encryption is a must if your car has anything-by-wire on it.
Acceleration is already commonly used this way.
If the car has internet, even more so.
I know, cars don’t need internet, but it’s there and it’s convenient and it’s easier to collect data that way…