A new report highlights several security deficiencies in modern automototive electronics systems.
The report was released by McAfee in partnership with embedded security firm Escrypt and mobile/embedded software company Wind River.
According to the report, potential risks range from tracking a vehicle's location using RFID tags embedded in tires to remotely disabling critical systems ... [ read the full article ]
Please read the original article before posting your comments.
I don't mind electronics...if they are done correctly. When a company makes a security system that can be controlled by bluetooth, and which uses a 4-digit code that is standardized for the entire model line, this is an engineering mistake. You might as well say that you don't like any kind of engine because old Oldsmobile V8's have a defective rocker arm design.
Originally posted by KillerBug: I don't mind electronics...if they are done correctly. When a company makes a security system that can be controlled by bluetooth, and which uses a 4-digit code that is standardized for the entire model line, this is an engineering mistake. You might as well say that you don't like any kind of engine because old Oldsmobile V8's have a defective rocker arm design.
Unfortunately, I don't think the manufacturers will fix it until they are forced to have some skin in the game. An example would be if a motor vehicle is stolen using a hacked four digit Bluetooth pin, and then the vehicle is involved in an incidence where there was a great loss of life and/or property. Theoretically, the company could be on the hook for providing inadequate security for their product, especially if it was widely known at the time that the implementation was vulnerable to compromise.
This would be like the credit card companies. The only reason the CC companies employ such great security is because they have skin in the game, and could stand to loose millions on stolen credit card numbers. If they were *not* responsible for them, and the consumer was forced to shoulder any losses from a stolen credit card, the security would not be as great, and the company would not be as involved in it.
