Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




282 posts

Ultimate Geek
+1 received by user: 76


Topic # 181399 14-Oct-2015 10:36
Send private message

In reading about the now infamous hacks on cars these days  it begs the question for me - why is this even remotely possible?

Why does a car need to be built in such a way that the brake pedal or steering wheel or any other driving component can be operated by the computer? I understand this may be helpful for diagnostics but surely the risk outweighs the benefit?

If, for some reason I cannot fathom, these capabilities must be in a car these days why is the entertainment and internet capable side of the system not air-gapped from the critical systems? Surely it's not hard to design things so these kind of hacks will be impossible.

Am I missing something here?

Create new topic
2001 posts

Uber Geek
+1 received by user: 588

Subscriber

  Reply # 1405551 14-Oct-2015 10:47
Send private message

Stability control and park assist are the main reasons the car can control the braking and steering. 

https://en.wikipedia.org/wiki/Electronic_stability_control

I
f you watch the full video on how those guys hacked a jeep (I think it was a jeep) what you and I assume to mean air gapped and what Jeep meant by air gapped were two very different things. 

2090 posts

Uber Geek
+1 received by user: 848


  Reply # 1405560 14-Oct-2015 10:59
Send private message

There was a biiiig long thread about this when the car hacking stories came out....

I believe the result was it is useful for some cases and more to the point, whoever designed the systems did a spectacularly bad job of securing them.

 
 
 
 


1248 posts

Uber Geek
+1 received by user: 299


  Reply # 1405563 14-Oct-2015 11:03
Send private message

Because car manufacturers haven't thought it through completely....basically.
There should be an isolation between 'outside world communications' and mission critical systems (brakes, drivetrain etc), like you suggest.

I'd imagine future systems will have this.

Part of the issue stems from the fact that many new "assets" these days are internet connected by default out of the factory, even if you didn't ask for/specify, or even pay for the 'feature'.

2463 posts

Uber Geek
+1 received by user: 907

Subscriber

  Reply # 1405575 14-Oct-2015 11:17
Send private message

Because some manufacturers didn't consider the possibility it could get hacked. Poor design. Some did, and aren't as at risk.




Windows 7 x64 // i5-3570K // 16GB DDR3-1600 // GTX660Ti 2GB // Samsung 830 120GB SSD // OCZ Agility4 120GB SSD // Samsung U28D590D @ 3840x2160 & Asus PB278Q @ 2560x1440
Samsung Galaxy S5 SM-G900I w/Spark



282 posts

Ultimate Geek
+1 received by user: 76


  Reply # 1405577 14-Oct-2015 11:19
Send private message

Thanks for the replies - I'll go hunt that thread down.

3382 posts

Uber Geek
+1 received by user: 325

Trusted

  Reply # 1405616 14-Oct-2015 12:22
Send private message

Cost, not bad design Id bet you'd find is the main reason.  To properly separate you'd need two CAN buses = cost.




Previously known as psycik

NextPVR/OpenHAB: 
Gigabyte AMD A8 Brix --> Samsung LA46A650D via HDMI, NextPVR,OpenHAB with Aeotech ZWave Controller
Media:Chromecast v2, ATV4, Roku3, Raspberry PI temperature Sensors and Bluetooth LE Sensors,HDHomeRun Dual
Windows 2012 
Host (Plex Server/Crashplan): 2x2TB, 2x3TB, 1x4TB using DriveBender, Samsung 850 evo 512 GB SSD, Hyper-V Server with 1xW10, 1xW2k8, 2xUbuntu 16.04 LTS, Crashplan, NextPVR channel for Plex,NextPVR Metadata Agent and Scanner for Plex


2073 posts

Uber Geek
+1 received by user: 327


  Reply # 1405704 14-Oct-2015 14:47
Send private message

Am i right in assuming though that without a wireless data connection to the car it would not be possible to hack?

3382 posts

Uber Geek
+1 received by user: 325

Trusted

  Reply # 1405707 14-Oct-2015 14:49
Send private message

Wade: Am i right in assuming though that without a wireless data connection to the car it would not be possible to hack?


Harder as you need physical access.  But I wouldn't say impossible.





Previously known as psycik

NextPVR/OpenHAB: 
Gigabyte AMD A8 Brix --> Samsung LA46A650D via HDMI, NextPVR,OpenHAB with Aeotech ZWave Controller
Media:Chromecast v2, ATV4, Roku3, Raspberry PI temperature Sensors and Bluetooth LE Sensors,HDHomeRun Dual
Windows 2012 
Host (Plex Server/Crashplan): 2x2TB, 2x3TB, 1x4TB using DriveBender, Samsung 850 evo 512 GB SSD, Hyper-V Server with 1xW10, 1xW2k8, 2xUbuntu 16.04 LTS, Crashplan, NextPVR channel for Plex,NextPVR Metadata Agent and Scanner for Plex


1298 posts

Uber Geek
+1 received by user: 526


  Reply # 1405710 14-Oct-2015 14:51
Send private message

Wade: Am i right in assuming though that without a wireless data connection to the car it would not be possible to hack?

Its still possible, but requires physical access to the vehicle. Sneak in, hook up the hackery equivalent of a mobile data stick to the ONT, and the car is yours remotely whenever you feel like it.

901 posts

Ultimate Geek
+1 received by user: 179


  Reply # 1407263 15-Oct-2015 13:37
Send private message

Every Geek knows - it is "Because you live in a Matrix"

Your Phone, Tablet, Laptop, PC, Electricity Meter, Smart Home System, your IP cameras in your CCTV system have already been hacked.

It is that old car with no internet connection is what makes YOU incompatible with the Matrix's OS.

The real question is - how long before Matrix will disallow you that uncontrolled ride? cool

4655 posts

Uber Geek
+1 received by user: 70

Trusted

  Reply # 1410931 22-Oct-2015 10:28
Send private message

Well this is a particularly germane example !

http://www.nzherald.co.nz/nz/news/article.cfm?c_id=1&objectid=11533005





System One: Popcorn Hour A200,  PS3 SuperSlim, NPVR running on Gigabyte Brix, Sony BDP-S390 BD player, Logitech Revue, Pioneer AVR, Panasonic 60" 3D plasma

System Two: Popcorn Hour A200 ,  Oppo BDP-80 BluRay Player with hardware mode to be region free, Vivitek HD1080P 1080P DLP projector with 100" screen. Harman Kardon HK AVR 254 7.1 receiver, Toshiba HD-A2 HD-DVD player, Samsung 4K player

 


My Google+ page 

 

 

 

https://plus.google.com/+laurencechiu

 

 


2038 posts

Uber Geek
+1 received by user: 212

Subscriber

  Reply # 1410932 22-Oct-2015 10:30
Send private message

lchiu7: Well this is a particularly germane example !

http://www.nzherald.co.nz/nz/news/article.cfm?c_id=1&objectid=11533005



Not if the reports of a "factory key" are correct.  If they are it is more like "thief stole car using master key".

Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

D-Link NZ launches professional Wireless AC Wave 2 Access Point for businesses
Posted 17-Aug-2017 19:25


Garmin introduces the Rino 700 five-watt two-way handheld radio
Posted 17-Aug-2017 19:04


Garmin announces the Foretrex 601 and Foretrex 701 Ballistic Edition for outdoor and tactical use
Posted 17-Aug-2017 19:02


Brightstar announces new distribution partnership with Samsung Knox platform in Australia
Posted 17-Aug-2017 17:07


Free gig-enabled WiFi network extends across Dunedin
Posted 17-Aug-2017 17:04


Samsung expands with connect Gear S3 Frontier
Posted 17-Aug-2017 15:55


Fact-checking Southern Cross Next cable is fastest to USA
Posted 17-Aug-2017 13:57


Thurrott says Microsoft Surface is dead last for reliability
Posted 16-Aug-2017 15:19


LibreOffice 5.4 works better with Microsoft Office files
Posted 16-Aug-2017 13:32


Certus launches Cognition
Posted 14-Aug-2017 09:31


Spark adds Cambridge, Turangi to 4.5G network
Posted 10-Aug-2017 17:55


REANNZ network to receive ongoing Government funding through to 2024
Posted 10-Aug-2017 16:05


Chorus backhaul starts with 2degrees
Posted 10-Aug-2017 15:49


New Zealanders cool on data analytics catching benefit fraud
Posted 10-Aug-2017 09:56


New Zealanders wary of wearable biometrics: Unisys
Posted 9-Aug-2017 09:39



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.