Current Event: Lexus to begin sending messages directly to drivers
According to a recent article in USA Today, Lexus will begin including new technology to allow the company to send audio messages to the computers present in their cars. It appears to be similar to an e-mail system, where the user receives messages and can play them at his/her own discretion. This inclusion is simply part of an even larger electronic upgrade to the autos, simply known as Enform for now. While this definitely raises some concerns about how far into our lives marketing messages (i.e. spam) are allowed to be, it’s even more critical to be worried about what sorts of security measures will be implemented in their system.
If the auto manufacturer has the capability to send messages to drivers, it seems very possible to spoof a Lexus Corporation ID and then send whatever you wish to a car. Especially considering the Bluetooth vulnerability of a few years ago, who knows what other security holes the Lexus computer’s operating system could have. Altering the car’s GPS data, planting scamming messages, installing malware, stealing contact data – all are not immediately life-threatening, but are still great security risks. Lexus needs to implement strong security to prevent these – including, but not restricted to, encryption of data transmitted to on-dash computers, limitation of the operating system with regards to file and program permissions, and more basic things like restricting buffer write size and strong password creation and use.
While this isn’t a security hazard yet, the drive to keep upgrading our existing possessions with computing technology to entice buyers is only a good one if done carefully. The overall impact of this introduction will ultimately depend on how secure the technology is as well as how many people decide to adopt and use it. Admittedly, the messaging service is completely optional, but who knows what other services Lexus will bundle together in Enform? And further from that, what capabilities those services could give malicious hackers? Lexus needs to secure this system well ahead of time – and people should adopt this technology with caution and the foreknowledge of possible security hazards.
Comment by Ryan Tucker
January 8, 2009 @ 9:59 pm
From above, “Altering the car’s GPS data, planting scamming messages, installing malware, stealing contact data – all are not immediately life-threatening, but are still great security risks.” It is also important to consider how these systems integrate with other critical systems that are controlled by embedded devices. Though stealing contact data is not life-threatening, manipulation of the embedded devices necessary for control of the vehicle (such as steering or breaking) most certainly is. Security holes in one system may open up access to other more vital systems.
Comment by Eriel Thomas
January 9, 2009 @ 9:32 am
Although it is admittedly troubling from a privacy perspective that Lexus would try to take advantage of its costumers, I have to disagree with Ryan Tucker about the possible compromise of mission critical systems. As is the case currently and probably will continue to be the case, the computers controlling the various systems within the car (engine, braking, etc) are controlled by computers that are completely separate and independent from the systems controlling extraneous features such the in board dash system (audio, gps, etc). I believe a larger concern for this system is the safety of the users from distraction. Besides just the Lexus sent messages causing distraction, if the system was compromised by a third party the messages could become extremely distracting (loud, random noise) and could lead to accidents.
I think with the further integration of technology into cars, security must be considered from the start. With the cars usage becoming highly dependent upon the various technologies, safety becomes one of the biggest concerns. Although the users privacy are important and need to be protected against, my greatest concern is the compromise of the drivers safety through the insecurity of these new systems.
Comment by suskizor
January 9, 2009 @ 6:06 pm
I agree that Toyota needs to worry about the security of their systems. It appears that Toyota is launching Enform in conjunction with “Safety Connect”, which is designed to compete with General Motors’ Onstar service. I’m more worried about the security risks from Safety Connect and Onstar, since both provide features such as automatic collision notification, GPS tracking, emergency assistance, and roadside assistance. As more companies offer similar services, they’ll become more tempting targets for troublemakers. One thing such an adversary could do is hack into many such equipped vehicles and tell them to all call emergency services simultaneously, which they could use to execute some other attack while emergency services are occupied on false errands. Alternatively, an adversary could redirect or block legitimate calls from equipped cars to emergency services, or use the GPS tracking feature to stalk someone.
I can’t tell from Toyota’s press release whether the features of Safety Connect and Enform are mutually exclusive, but if they are, for now I’m more concerned about the vulnerabilities of Safety Connect than Enform.
You can read more about Safety Connect and Enform in Toyota’s official press release.
Comment by gertanya
January 9, 2009 @ 8:41 pm
I disagree with the author of the post that altering car’s GPS data is not life threatening situation. It easily might be. We tend to trust the devices and some adversaries can use this trust. GPS data can be changed in the way that instead of the right destination the car will be given a route to the broken old bridge and will end up in the river. Lexus cars are not cheap and show that the owner has some money. This knowledge can be used to change GPS data in the way that will help criminals to kidnap an owner for ransom. Both situations are life threatening enough and manufacturers has to pay close attention to provide this service with maximum security.
I completely agree with comment of Eriel Thomas that this service will provide additional distraction and can threaten the safeness of the driver and passengers if used maliciously. Adversaries can start sending messages that will take the driver’s attention out of the road and, therefore, causing an accident. And even though Jon Bucci, vice president of Toyota’s U.S. advanced technology unit, promises that they are not going to “to barrage customers with marketing messages”, this can be done by a malicious third party that will hack the system. Therefore, the security of such system has to be considered to be a top priority and should be provided before the systems is available to the customers.
Comment by Evil Rocks
January 12, 2009 @ 2:01 am
I knew that this feed was a great idea. Do you know how little good, narrowly focused current event coverage there is out there? Class blogs are where it’s at.