[svlug] (forw) [Lug-nuts] EFF article on Vehicle Security Research and that crazy remote controlled jeep!

Ivan Sergio Borgonovo mail at webthatworks.it
Sat Jul 25 03:51:32 PDT 2015

Previous message: [svlug] (forw) [Lug-nuts] EFF article on Vehicle Security Research and that crazy remote controlled jeep!
Next message: [svlug] (forw) [Lug-nuts] EFF article on Vehicle Security Research and that crazy remote controlled jeep!
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 07/25/2015 02:28 AM, Mike Castle wrote:
> If you have an infotainment system that can do things like both control
> your radio and tell you your gas mileage or any vehicle history, they
> are probably connected.
> 
> And like all connections, probably susceptible to some sort of exploits,
> be they buffer overruns, eavesdropping, or whatever.

> While there may be explicit design that say component X is not allowed
> to control component Y, that doesn't mean that component Y, or even the
> bus, actually implements that correctly.

Didn't they say there was an air gap between entertainment and control
system in planes?

http://www.telegraph.co.uk/news/worldnews/northamerica/usa/11611058/Cybersecurity-researcher-made-plane-climb-after-hacking-in-flight-entertainment-system.html

Was this news actually verified? I didn't follow up.

While it is not that hard to design something that actually permit only
read operations from the infotainment of the car the temptation to
control suspension settings or lights from the same lcd may be high.

-- 
Ivan Sergio Borgonovo
http://www.webthatworks.it

Previous message: [svlug] (forw) [Lug-nuts] EFF article on Vehicle Security Research and that crazy remote controlled jeep!
Next message: [svlug] (forw) [Lug-nuts] EFF article on Vehicle Security Research and that crazy remote controlled jeep!
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the svlug mailing list