Car-hacking at Defcon 2013

[Ryan_R]

Software experts attack cars, to release code as hackers meet | Reuters

VAG group key slicing hack leak possible?
http://www.guardian.co.uk/technology...ing-codes-cars

Also regarding KESSY:
http://www.digitaltrends.com/computi...y-study-shows/

[sVWatt]

Just read article on the VAG issue. Looks like the company that makes the technology, Thales, has left a fault in the algorithm.

BBC News - Car key immobiliser hack revelations blocked by UK court

I suspect the university will appeal and win.

[Ryan_R]

I don't get why commenters want the codes published, sure it increases the pressure on VAG but surely there's no doubt that they're working on it either way. Alo it was mentioned that other manufacturers would also be likely be affected.


Personally I'm not super worried since I know these types of high-tech car thefts are much more common in the UK and Europe compared to the smaller market here. Funny how not too long ago VW won a bunch of Security awards as well - maybe this prompted the further 'research'?

[sVWatt]

I think because they work in academia - they want to publish to get peer reviewed.
It seems extra equipment is needed, and the computer needed 48 hours to crack the code.

With those conditions I agree, I don't think the average VAG driver needs worry.

[Ryan_R]

They seem like a very serious bunch

Car hacking code released at Defcon | Security & Privacy - CNET News




I assume if this ever happened to me I'd just have to turn the car off and remove whatever they had somehow plugged into the OBD2 port without me noticing. Although there's a growing trend where you can view/set car stats over the Internet using a phone app (if the car has wireless connectivity).