According to the paper authored by the joint team of
researchers from University of California, San Diego and University of
Washington — “Comprehensive Experimental Analyses of Automotive Attack
Surfaces” (http://www.autosec.org/pubs/cars-usenixsec2011.pdf), the
remote hacking of automobile computer system is not just possible but also
quite accessible for people who know their trade.
The potential attack access points are (1) vehicle on board diagnostic OBD-II port, through physical connection to a laptop computer or through a “pass-through” device (typically directly via USB or WiFi ); (2) vehicle entertainment system, such as CD Player, iPod port, etc; (3) short-range wireless access through blue tooth, Remote Keyless Entry, etc; (4) long-range wireless access through broadcast channels, such on board GPS and Satellite Radio system, etc., and addressable channels, such as remote telematics systems ( OnStar, mBrace, etc) that provide continuous connectivity via cellular communication networks.
Some of their findings are:
(1) It is possible to compromise the “pass-through” devices through dealer WiFi network, and the malicious codes would be injected into the every vehicle that connects to the infected devices. This type of attack is similar to the Stuxnet worms.
(2) It is possible to inject malicious codes/programs through CD players or IPod connectors.
Modern automobiles are controlled by diverse sets of digital components, the Electronic Control Units (ECUs). They are all interconnected so that malicious codes/programs embedded in a song, when played in the CD player, could be spread from Media ECU to other components without much restrictions.
(3) “To be clear, for every vulnerability we demonstrate, we are able to obtain complete control over the vehicle’s system.” That includes “forcibly engaging and disengaging individual brakes independent of driver input”.
…
These findings are really appalling. I wonder why it has not yet garnered enough media attention. But they answer my question earlier about whether the potential malicious programs would have higher privilege than the manual operation conducted by the driver. Apparently if remote hacker takes over control of the brake or engine, there is nothing the driver can do about it. That could be what have killed Michael Hastings.
Thank you,
JitL
www.disclosurebypeople.com
The potential attack access points are (1) vehicle on board diagnostic OBD-II port, through physical connection to a laptop computer or through a “pass-through” device (typically directly via USB or WiFi ); (2) vehicle entertainment system, such as CD Player, iPod port, etc; (3) short-range wireless access through blue tooth, Remote Keyless Entry, etc; (4) long-range wireless access through broadcast channels, such on board GPS and Satellite Radio system, etc., and addressable channels, such as remote telematics systems ( OnStar, mBrace, etc) that provide continuous connectivity via cellular communication networks.
Some of their findings are:
(1) It is possible to compromise the “pass-through” devices through dealer WiFi network, and the malicious codes would be injected into the every vehicle that connects to the infected devices. This type of attack is similar to the Stuxnet worms.
(2) It is possible to inject malicious codes/programs through CD players or IPod connectors.
Modern automobiles are controlled by diverse sets of digital components, the Electronic Control Units (ECUs). They are all interconnected so that malicious codes/programs embedded in a song, when played in the CD player, could be spread from Media ECU to other components without much restrictions.
(3) “To be clear, for every vulnerability we demonstrate, we are able to obtain complete control over the vehicle’s system.” That includes “forcibly engaging and disengaging individual brakes independent of driver input”.
…
These findings are really appalling. I wonder why it has not yet garnered enough media attention. But they answer my question earlier about whether the potential malicious programs would have higher privilege than the manual operation conducted by the driver. Apparently if remote hacker takes over control of the brake or engine, there is nothing the driver can do about it. That could be what have killed Michael Hastings.
Thank you,
JitL
www.disclosurebypeople.com
No comments:
Post a Comment