| Most modern keys already have cryptographic rfid transponders which must be in place to turn off the Immobilizer system. Unfortunately, Immo can be trivially disabled/bypassed/reprogrammed on many cars using the canbus or odb2 interface. Also trivially editable in many ICUs is the mileage, airbag (crash) history, etc. The main vector is that this data typically exists alongside performance parameters and user data like registered keys and fobs, so is accessible either by catching the ecu in bootup/program mode, by buffer overrun attacks, or often just by asking nicely. This is basically doable by anyone who can to chip tuning or ECU remaps. It’s technical, but not that technical. Many ECUs require JTAG access inside the ECU housing or even desoldering the serial flash chip, but many do not. I just bought a whole setup for this from AliExpress for about 100 dollars and it’s worked well for me so far, just a specialised JTAG adapter with some cables really. Pretty sure if you wrote drivers for chip tuning software to use a buspirate it would work just as well if not better. |