Networked Cars Are Coming, But Their Hacks Are Already Here

By Lisa Raffensperger | July 30, 2013 2:52 pm

Courtesy US Department of Transportation.

Vehicles on the road today are already joining our larger “Internet of things.” They sync up with our phones through Bluetooth; they register on GPS satellites for navigation; and their mechanical difficulties can be diagnosed at a distance with services like On Star. But future technology that allows cars to talk to each other directly promises to be much more disruptive still. And that technology has gotten a new push in the last week—at the same time that its potential security weaknesses have been highlighted.

The approach, called “connected-vehicle technology,” would make use of the car’s onboard computers to send information such as the car’s orientation, speed and location anonymously to all other vehicles in a certain range via WiFi-like signals—what the Department of Transportation calls a “Here I Am” message. The aim of this information is to give drivers warnings of oncoming vehicles in time to let them avoid collisions. Last week the National Transportation Safety Board, in an investigation of recent fatal bus accidents, recommended that federal agencies lay the groundwork for all highway vehicles to eventually be equipped with this technology.

A prototype of a vehicle-to-vehicle communication system is being trialled now in Michigan, according to NBC:

Last August, the NHTSA began conducting a yearlong study of 3,000 connected vehicles in Ann Arbor, Mich., using WiFi-like components that send electronic data messages back and forth and translate the data into a hazard warnings for the drivers. The test is focusing on safety at intersections, lane changes and rear-end accidents involving vehicles stopped at intersections.

Beyond informing drivers, connected cars could someday take appropriate avoidance actions themselves. Thus communications networks are an important step toward fully autonomous cars, such as those that Google is testing on roads across the country.

Cars more connected, more exposed

But, as is true elsewhere in our increasingly networked world, cars’ new communications grid will also make them more vulnerable. That vulnerability has been highlighted this week, with the announcement by two well-known hackers that they have successfully attacked critical automotive systems in the Toyota Prius and Ford Escape by way of the cars’ computers.

The hackers, Charlie Miller and Chris Valasek, are so-called white hats—hackers who try to uncover weaknesses before they can be exploited by criminals. In their testing the duo was able to yank the Prius’s steering wheel, control its acceleration, and cause the car to brake suddenly at 80 mph. On the Escape, they were able to disable the brakes when the SUV was driving slowly. They say they will demonstrate these attacks at the Def Con hacking convention in Las Vegas this week.

These attacks were carried out by a laptop physically wired into the car’s system—an unlikely scenario in the real world. But past research has shown that remote access is possible via existing car communications systems. In 2011 researchers successfully hacked into cars using Bluetooth and cellular phone networks. In their paper (pdf) they explain:

An adversary could use such means to compromise a vehicle’s systems and install code that takes action immediately (e.g., unlocking doors) or in response to some environmental trigger (e.g., the time of day, speed, or location as exported via the onboard GPS).

The scrutiny brought about by these latest hacks will, Miller and Valasek hope, pressure regulators and car companies to increase security in the coming age of the networked car. And someday soon, when we’re broadcasting all sorts of information about ourselves in the mobile WiFi hotspots that are our cars, we’ll be glad they did.

CATEGORIZED UNDER: Technology, top posts
MORE ABOUT: cars
  • Buddy199

    Imagine your car suddenly accelerating to 90 mph and veering off the road because its control system was hacked by a virus created by some 15 year old Ukranian misfit. Look at how our personal computers are routinely infected.

    • Gary Kreie

      Yet you use them for your banking.
      There can be enough redundancy and other sensors built in that this problem can be solfved. Think Google car with just a little more info from the car in front of the truck in front of your car.

      • Yoikes

        Yeah, but a car traveling at 90 mph that suddenly makes a break for a cliff is a long way from the ATM not giving you a couple of 20’s! I think this technology has a loooong way to go. How it will ever be considered “safe” enough by this Administration is beyond me. Everything has come down to safety first.

  • M_1

    Cars don’t “register on GPS satellites” for navigation any more than your FM radio registers with the radio station for music.

  • Hasham Abbas

    I gave this idea in google science fair this year

NEW ON DISCOVER
OPEN
CITIZEN SCIENCE
ADVERTISEMENT

Discover's Newsletter

Sign up to get the latest science news delivered weekly right to your inbox!

D-brief

Briefing you on the must-know news and trending topics in science and technology today.
ADVERTISEMENT

See More

ADVERTISEMENT
Collapse bottom bar
+

Login to your Account

X
E-mail address:
Password:
Remember me
Forgot your password?
No problem. Click here to have it e-mailed to you.

Not Registered Yet?

Register now for FREE. Registration only takes a few minutes to complete. Register now »