Hacker News new | ask | show | jobs
by t-3 1194 days ago
What incentives do automakers have to provide you with a secure product? "Old-school" key ignitions work perfectly fine, so why were they replaced with the obviously-flawed dongle?

How complex would a device have to be to not be trivially defeated by a replay attack? How do you get both ends to reliably communicate without requiring an always-on internet connection in both the dongle and the vehicle to sync timing or some other state? What do you do when the manufacturer no longer exists or doesn't want to pay for servers to enable people to drive "old models"?
5 comments
toast0 1193 days ago
> Old-school" key ignitions work perfectly fine, so why were they replaced with the obviously-flawed dongle?

It's more convenient to leave your keys in your pocket or your bag, then to rummage around for them.

There's a terminology problem here. I don't believe this is a replay attack (same open command is replayed later and works), those are largely solved with rolling codes. This is most likely a relay attack, the distance from the car to the key is bridged with a repeater. That's harder to solve --- you could measure distance by round trip time, rather than by limiting tx power, but the distances in question are small, and the timing difference between keys at car door and keys at house door isn't very much. Probably the crypto takes longer and may vary more than the difference in transmission time.

link
qmsdfjkc 1194 days ago
Actually the said car has a continuous internet connection, using a sim card, so I guess syncing time wouldn't be that difficult.

Also I remember some Renault Espace in France which had a dongle but then you had to put it somewhere specifically in the car to start it. Adding an NFC/RFID chip could solve part of the problem maybe...

But yes you are right this require maintenance.

link
giantg2 1193 days ago
If you had to put it somewhere specific, why not just put a key in an ignition?
link
qmsdfjkc 1193 days ago
Oh I don't know, it looked futuristic maybe? No idea
link
c7DJTLrn 1194 days ago
>How complex would a device have to be to not be trivially defeated by a replay attack?

Not very.

>How do you get both ends to reliably communicate without requiring an always-on internet connection in both the dongle and the vehicle to sync timing or some other state?

You don't need an Internet connection or server. TLS would do the job just fine.

link
wruza 1194 days ago
How complex would a device have to be to not be trivially defeated by a replay attack?

Around $5 complex (though I lost track of actual prices for few years).

How do you get both ends to reliably communicate

You choose a suitable networking stack and communicate. Secure messaging is a solved problem and doesn’t require “internet”.

link
afiori 1194 days ago
I guess that the major source of complexity would be that both the car need both a transmitter and a receiver, instead on only one each.

But it seems like a risible source of complexity.

link