x404.co.uk
http://www.x404.co.uk/forum/

Cars hacked through wireless tire sensors
http://www.x404.co.uk/forum/viewtopic.php?f=19&t=9953		 Page 1 of 2
Author:  ProfessorF [ Wed Aug 11, 2010 6:28 pm ]
Post subject:  Cars hacked through wireless tire sensors
Further to my personal theory that very computerised, complicated cars are a Bad Thing...

Quote:
Cars hacked through wireless tire sensors

By Peter Bright | Last updated about 22 hours ago

The tire pressure monitors built into modern cars have been shown to be insecure by researchers from Rutgers University and the University of South Carolina. The wireless sensors, compulsory in new automobiles in the US since 2008, can be used to track vehicles or feed bad data to the electronic control units (ECU), causing them to malfunction.

Earlier in the year, researchers from the University of Washington and University of California San Diego showed that the ECUs could be hacked, giving attackers the ability to be both annoying, by enabling wipers or honking the horn, and dangerous, by disabling the brakes or jamming the accelerator.

The new research shows that other systems in the vehicle are similarly insecure. The tire pressure monitors are notable because they're wireless, allowing attacks to be made from adjacent vehicles. The researchers used equipment costing $1,500, including radio sensors and special software, to eavesdrop on, and interfere with, two different tire pressure monitoring systems.

The pressure sensors contain unique IDs, so merely eavesdropping enabled the researchers to identify and track vehicles remotely. Beyond this, they could alter and forge the readings to cause warning lights on the dashboard to turn on, or even crash the ECU completely.

Unlike the work earlier this year, these attacks are more of a nuisance than any real danger; the tire sensors only send a message every 60-90 seconds, giving attackers little opportunity to compromise systems or cause any real damage. Nonetheless, both pieces of research demonstrate that these in-car computers have been designed with ineffective security measures.

The Rutgers and South Carolina research will be presented at the USENIX Security conference later this week.


http://arstechnica.com/security/news/20 ... mpaign=rss
Author:  Amnesia10 [ Wed Aug 11, 2010 7:24 pm ]
Post subject:  Re: Cars hacked through wireless tire sensors
Well makes it susceptible to hacking, but using wifi. The hacker only needs time to do it. If they use WEP then seconds literally are enough to get in to the system.
Author:  JJW009 [ Wed Aug 11, 2010 9:14 pm ]
Post subject:  Re: Cars hacked through wireless tire sensors
I doubt very much if they use WiFi, Amnesia. It's needlessly complicated, and the sensors probably don't have enough power. It'll be something a lot simpler, much like cordless doorbells use.
Author:  l3v1ck [ Wed Aug 11, 2010 11:00 pm ]
Post subject:  Re: Cars hacked through wireless tire sensors
So that's what happened to all those Toyota Pryus's.
Author:  Amnesia10 [ Wed Aug 11, 2010 11:57 pm ]
Post subject:  Re: Cars hacked through wireless tire sensors
JJW009 wrote:
I doubt very much if they use WiFi, Amnesia. It's needlessly complicated, and the sensors probably don't have enough power. It'll be something a lot simpler, much like cordless doorbells use.

It could be BT. Though what ever system they use they have a problems if it allows hackers access to the rest of the cars computers.
Author:  dogbert10 [ Thu Aug 12, 2010 7:15 am ]
Post subject:  Re: Cars hacked through wireless tire sensors
Glad my BMW doesn't use them then....
Author:  big_D [ Thu Aug 12, 2010 7:46 am ]
Post subject:  Re: Cars hacked through wireless tire sensors
Amnesia10 wrote:
JJW009 wrote:
I doubt very much if they use WiFi, Amnesia. It's needlessly complicated, and the sensors probably don't have enough power. It'll be something a lot simpler, much like cordless doorbells use.

It could be BT. Though what ever system they use they have a problems if it allows hackers access to the rest of the cars computers.

BT is also too power hungry, it is also a big mistake to use any standard protocol for such things. Hopefully, they have their own (or automotive industry standard) protocol, which is very low power and uses its own encryption - although it sounds like the failboat is coming into harbour on that one... :?
Author:  Amnesia10 [ Thu Aug 12, 2010 7:49 am ]
Post subject:  Re: Cars hacked through wireless tire sensors
dogbert10 wrote:
Glad my BMW doesn't use them then....

There have been cases of BMW's being stolen by hackers cracking the key system.
Author:  okenobi [ Thu Aug 12, 2010 8:21 am ]
Post subject:  Re: Cars hacked through wireless tire sensors
If I had an IROC, I wouldn't care about modern cars either ;)
Author:  ProfessorF [ Thu Aug 12, 2010 9:37 pm ]
Post subject:  Re: Cars hacked through wireless tire sensors
What I don't like is this assumption that you need a computer to tell you what your tyre pressures are up to.
I assume that once a week, most people take a trip to the petrol station - if you're there, just check the pressures. Hell, you could go crazy and do it at home.
Author:  HeatherKay [ Fri Aug 13, 2010 7:28 am ]
Post subject:  Re: Cars hacked through wireless tire sensors
ProfessorF wrote:
What I don't like is this assumption that you need a computer to tell you what your tyre pressures are up to.


I suspect most people never consider their tyres until the MOT is due.

I will be checking my tyres this morning, because I'm driving a fair distance. Usually, the tyres are lucky to get more than a cursory glance for obvious damage, and a swift prod to check how soft they are. That's sufficient for the "round the town" driving I do. :lol:
Author:  saspro [ Fri Aug 13, 2010 8:09 am ]
Post subject:  Re: Cars hacked through wireless tire sensors
ProfessorF wrote:
I assume that once a week, most people take a trip to the petrol station - if you're there, just check the pressures. Hell, you could go crazy and do it at home.


I only fill my car once a month but I check my pressures regularly.
I still need sensors though as the runflats don't change too much with a puncture so I need the notification that there could be a problem.
Author:  okenobi [ Fri Aug 13, 2010 8:28 am ]
Post subject:  Re: Cars hacked through wireless tire sensors
saspro wrote:
ProfessorF wrote:
I assume that once a week, most people take a trip to the petrol station - if you're there, just check the pressures. Hell, you could go crazy and do it at home.


I only fill my car once a month but I check my pressures regularly.
I still need sensors though as the runflats don't change too much with a puncture so I need the notification that there could be a problem.


Runflats are for gays and BMW drivers though. They feel awful.

I check my tyres whenever I fill up. That works fine for me.
Author:  JJW009 [ Fri Aug 13, 2010 3:25 pm ]
Post subject:  Re: Cars hacked through wireless tire sensors
I kick mine every so often. Then I usually shrug.
Author:  saspro [ Fri Aug 13, 2010 3:33 pm ]
Post subject:  Re: Cars hacked through wireless tire sensors
okenobi wrote:
saspro wrote:
ProfessorF wrote:
I assume that once a week, most people take a trip to the petrol station - if you're there, just check the pressures. Hell, you could go crazy and do it at home.


I only fill my car once a month but I check my pressures regularly.
I still need sensors though as the runflats don't change too much with a puncture so I need the notification that there could be a problem.


Runflats are for gays and BMW drivers though. They feel awful.

I check my tyres whenever I fill up. That works fine for me.


I drive a brand new BMW, can't change the tires until I wear them out (won't be long the way I drive/drift)
Page 1 of 2 All times are UTC
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/