SlideShare une entreprise Scribd logo

Gentlemen, Start Your Engines 20120419

Mattias Jidhage
Mattias Jidhage

Short overview of the current security status on the automotive telematics security arena. Presented at the ISACA Scandinavian Conference April 23-24th 2012

Technologie
1  sur  24
Télécharger pour lire hors ligne
Gentlemen, Start your engines Mattias Jidhage
Omegapoint - Founded in 2001 - 170 consultants - e-Business & Security Falun New York Stockholm Göteborg Kalmar Helsingborg Malmö
Agenda
Telematics “integrated use of telecommunications and informatics” ECU  =  Electronic  C BCM=Brake   ECU=Engine   ontrol   CCU=Convenience  ontrol   ACU=Airbag  CC ontrol   odule   CTM=Central   Ciming  Module   GEM=General  Electronic   M SCM=Suspension   ontrol  U odule   TCM=Transmission   M Module   BCM=Body  CCTontrol  ontrol  odule   ECM=Engine  ontrol  CUodule  M PCM=Powertrain  CC Mnit  MUnit   CCM=Central  ontrol  ontrol  nit odule   ~100  Bosch,  Siemens,  Delphi..  
Telematics Potentially less than great security?
Eh, What's up Doc? •  The Car •  Transport •  Server •  Client
The Car - Research •  Experimental Security Analysis of a Modern Automobile –  OBD-II •  Comprehensive Experimental Analyses of Automotive Attack Surfaces –  CD –  OBD-II (PassThru) –  Bluetooth –  GSM
The Car – Reality •  War Texting: Identifying and Interacting with Devices on the Telephone Network –  Method for attacking telematics •  In general: GSM Baseband + uC Chip •  UART -> RE -> Firmware -> Vulnerability –  How2 find targets? •  FindMe •  WhoIs
The Car – Reality •  Put it to the test –  Zoombak Tracking Device •  Zoombak Scanner •  Ask nicely via SMS –  Subaru Outback 1998 •  after market telematics unit •  unlock and start engine •  http://youtu.be/bNDv00SGb6w
Transport - GSM •  A5/1 •  SRLabs –  CCC 2009, BlackHat 2010 –  Rainbow tables (100.000 years to 1 month) –  Decode voice •  100-300m upstream •  5-35km downstream
Transport – GPRS/EDGE No encryption •  GEA/0 •  GEA/1 •  GEA/2 •  GEA/3 •  GEA/4 No users •  SRLabs –  CCC 2011, Crypto analysis (weak crypto) –  Decode GPRS -> Wireshark
Transport – cell USRP H W
Server •  Car interface –  Proprietary protocol •  ASN.1 – Touring complete •  GPRS, EDGE, SMS and data over voice –  “We use a Private APN” •  Generic Routing Encapsulation •  Node to Node communication •  Operator web application •  Smartphone interface: REST/JSON
Client - browser •  Web application –  no news –  move on –  there is nothing to see –  DriveBy Trojan Download & Install •  Starring Windows •  Guest appearance by Mac OSX
Client – smart phone •  Few real vulnerability tests performed •  iOS –  Continous Jailbreak –  iOS 5.0.1 - iPhone 4GS and iPad2 –  iOS 5.1 – iPad3 •  Android –  Rouge apps –  Android Market - ‘Bouncer’
Conclusion •  All components are possible targets •  Very few has the complete picture •  Activity in the security arena •  This is going to get worse before it gets better –  2012 models CAN bus is unprotected –  New tools arriving every day –  Larger attack surface than ever •  Use fast shoes
What’s to come? •  “Internet of Things”
The Future
The Future •  Telematics – M2M –  “integrated use of telecommunications and informatics” Insulin pump Prescription medication
The Future ABB IRB 6640 Industrial robot
The Future Three Gorges Infrastructure - SCADA – Stuxnet
The Future Home Metering Unit - SmartGrid 270 000 HMU using ZigBee
“Everything is a computer” @mjidhage mattias.jidhage@omegapoint.se Thank You!
References •  http://www.autosec.org/publications.html •  http://www.isecpartners.com/storage/docs/presentations/ isec_bh2011_war_texting.pdf •  http://events.ccc.de/congress/2009/Fahrplan/ attachments/1519_26C3.Karsten.Nohl.GSM.pdf •  https://srlabs.de/blog/wp-content/uploads/ 2010/07/100729.Breaking.GSM_.Privacy.BlackHat1.pdf •  http://events.ccc.de/camp/2011/Fahrplan/attachments/ 1868_110810.SRLabs-Camp-GRPS_Intercept.pdf

Recommandé

Gentlemen, Start Your Engines 20120514
Gentlemen, Start Your Engines 20120514Gentlemen, Start Your Engines 20120514
Gentlemen, Start Your Engines 20120514Mattias Jidhage
 
VT10_olympia_SAFRICA
VT10_olympia_SAFRICAVT10_olympia_SAFRICA
VT10_olympia_SAFRICALloyd Brink
 
Vehicle Tracking System (VTS)
Vehicle Tracking System (VTS)Vehicle Tracking System (VTS)
Vehicle Tracking System (VTS)Pentode Technologies Pvt. Ltd.
 
Tansportation engineering
Tansportation engineeringTansportation engineering
Tansportation engineeringErBikal
 
OCT600
OCT600OCT600
OCT600Matt To
 
Vts ppt( new)
Vts ppt( new)Vts ppt( new)
Vts ppt( new)mangal das
 
Abusing the Train Communication Network or What could have derailed the North...
Abusing the Train Communication Network or What could have derailed the North...Abusing the Train Communication Network or What could have derailed the North...
Abusing the Train Communication Network or What could have derailed the North...Moshe Zioni
 
Robotic car project presentation
Robotic car project presentationRobotic car project presentation
Robotic car project presentationAkshay Parmar
 

Recommandé

Gentlemen, Start Your Engines 20120514
Gentlemen, Start Your Engines 20120514Gentlemen, Start Your Engines 20120514
Gentlemen, Start Your Engines 20120514Mattias Jidhage
 
VT10_olympia_SAFRICA
VT10_olympia_SAFRICAVT10_olympia_SAFRICA
VT10_olympia_SAFRICALloyd Brink
 
Vehicle Tracking System (VTS)
Vehicle Tracking System (VTS)Vehicle Tracking System (VTS)
Vehicle Tracking System (VTS)Pentode Technologies Pvt. Ltd.
 
Tansportation engineering
Tansportation engineeringTansportation engineering
Tansportation engineeringErBikal
 
OCT600
OCT600OCT600
OCT600Matt To
 
Vts ppt( new)
Vts ppt( new)Vts ppt( new)
Vts ppt( new)mangal das
 
Abusing the Train Communication Network or What could have derailed the North...
Abusing the Train Communication Network or What could have derailed the North...Abusing the Train Communication Network or What could have derailed the North...
Abusing the Train Communication Network or What could have derailed the North...Moshe Zioni
 
Robotic car project presentation
Robotic car project presentationRobotic car project presentation
Robotic car project presentationAkshay Parmar
 
Suns Out Guns Out: Hacking without a Vehicle by Charlie Miller & Chris Valasek
Suns Out Guns Out: Hacking without a Vehicle by Charlie Miller & Chris ValasekSuns Out Guns Out: Hacking without a Vehicle by Charlie Miller & Chris Valasek
Suns Out Guns Out: Hacking without a Vehicle by Charlie Miller & Chris ValasekShakacon
 
Connected car solution and E-call system for OEM by Smartdriving
Connected car solution and E-call system for OEM by SmartdrivingConnected car solution and E-call system for OEM by Smartdriving
Connected car solution and E-call system for OEM by SmartdrivingNikita Kasyanenko
 
Self driving and connected cars fooling sensors and tracking drivers
Self driving and connected cars fooling sensors and tracking driversSelf driving and connected cars fooling sensors and tracking drivers
Self driving and connected cars fooling sensors and tracking driversVivek chan
 
Need and value for various levels of autonomous driving
Need and value for various levels of autonomous drivingNeed and value for various levels of autonomous driving
Need and value for various levels of autonomous drivingHeiko Joerg Schick
 
I.c ingine ppt
I.c ingine pptI.c ingine ppt
I.c ingine pptpradeep kumar
 
20140311 cisec-automotive systems
20140311 cisec-automotive systems20140311 cisec-automotive systems
20140311 cisec-automotive systemsCISEC
 
E call ppt
E call pptE call ppt
E call pptPrince Nani
 
Transit-Protect presentation 2014
Transit-Protect presentation 2014Transit-Protect presentation 2014
Transit-Protect presentation 2014Transit-Protect
 
Vehicle Tracking System
Vehicle Tracking SystemVehicle Tracking System
Vehicle Tracking SystemVikas Agarwal
 
T062500000 p003050ppte
T062500000 p003050ppteT062500000 p003050ppte
T062500000 p003050pptePhani Kumar
 
MIPI IP Modules for SoC Prototyping
MIPI IP Modules for SoC PrototypingMIPI IP Modules for SoC Prototyping
MIPI IP Modules for SoC PrototypingArasan Chip Systems
 
Automation on Traffic Signals
Automation on Traffic SignalsAutomation on Traffic Signals
Automation on Traffic SignalsMphasis
 
Automated Driving: Innovative Product Development & Safety
Automated Driving: Innovative Product Development & SafetyAutomated Driving: Innovative Product Development & Safety
Automated Driving: Innovative Product Development & SafetyAssociationofEquipmentManufacturers
 
GSM Based Anti theft system
GSM Based Anti theft systemGSM Based Anti theft system
GSM Based Anti theft systemKshitij Rokde
 
Gsm based advance security and rtealtime vehicle tracking using gps technolgy
Gsm based advance security and rtealtime vehicle tracking using gps technolgyGsm based advance security and rtealtime vehicle tracking using gps technolgy
Gsm based advance security and rtealtime vehicle tracking using gps technolgyHardik Patel
 
RFC6749 et alia 20130504
RFC6749 et alia 20130504RFC6749 et alia 20130504
RFC6749 et alia 20130504Mattias Jidhage
 
Who Are You 20120922
Who Are You 20120922Who Are You 20120922
Who Are You 20120922Mattias Jidhage
 
Futuristische demonstratie uit de autosector (Bosch) - Belgian Insurance Conf...
Futuristische demonstratie uit de autosector (Bosch) - Belgian Insurance Conf...Futuristische demonstratie uit de autosector (Bosch) - Belgian Insurance Conf...
Futuristische demonstratie uit de autosector (Bosch) - Belgian Insurance Conf...Wolters Kluwer Belgium
 
Fast and Vulnerable
Fast and VulnerableFast and Vulnerable
Fast and Vulnerablemrlanrat
 
The Six Highest Performing B2B Blog Post Formats
The Six Highest Performing B2B Blog Post FormatsThe Six Highest Performing B2B Blog Post Formats
The Six Highest Performing B2B Blog Post FormatsBarry Feldman
 
The Outcome Economy
The Outcome EconomyThe Outcome Economy
The Outcome EconomyHelge Tennø
 
Research skills
Research skillsResearch skills
Research skillsDarshan Bhatt
 

Contenu connexe

Tendances

Suns Out Guns Out: Hacking without a Vehicle by Charlie Miller & Chris Valasek
Suns Out Guns Out: Hacking without a Vehicle by Charlie Miller & Chris ValasekSuns Out Guns Out: Hacking without a Vehicle by Charlie Miller & Chris Valasek
Suns Out Guns Out: Hacking without a Vehicle by Charlie Miller & Chris ValasekShakacon
 
Connected car solution and E-call system for OEM by Smartdriving
Connected car solution and E-call system for OEM by SmartdrivingConnected car solution and E-call system for OEM by Smartdriving
Connected car solution and E-call system for OEM by SmartdrivingNikita Kasyanenko
 
Self driving and connected cars fooling sensors and tracking drivers
Self driving and connected cars fooling sensors and tracking driversSelf driving and connected cars fooling sensors and tracking drivers
Self driving and connected cars fooling sensors and tracking driversVivek chan
 
Need and value for various levels of autonomous driving
Need and value for various levels of autonomous drivingNeed and value for various levels of autonomous driving
Need and value for various levels of autonomous drivingHeiko Joerg Schick
 
20140311 cisec-automotive systems
20140311 cisec-automotive systems20140311 cisec-automotive systems
20140311 cisec-automotive systemsCISEC
 
Transit-Protect presentation 2014
Transit-Protect presentation 2014Transit-Protect presentation 2014
Transit-Protect presentation 2014Transit-Protect
 
Vehicle Tracking System
Vehicle Tracking SystemVehicle Tracking System
Vehicle Tracking SystemVikas Agarwal
 
T062500000 p003050ppte
T062500000 p003050ppteT062500000 p003050ppte
T062500000 p003050pptePhani Kumar
 
MIPI IP Modules for SoC Prototyping
MIPI IP Modules for SoC PrototypingMIPI IP Modules for SoC Prototyping
MIPI IP Modules for SoC PrototypingArasan Chip Systems
 
Automation on Traffic Signals
Automation on Traffic SignalsAutomation on Traffic Signals
Automation on Traffic SignalsMphasis
 
GSM Based Anti theft system
GSM Based Anti theft systemGSM Based Anti theft system
GSM Based Anti theft systemKshitij Rokde
 
Gsm based advance security and rtealtime vehicle tracking using gps technolgy
Gsm based advance security and rtealtime vehicle tracking using gps technolgyGsm based advance security and rtealtime vehicle tracking using gps technolgy
Gsm based advance security and rtealtime vehicle tracking using gps technolgyHardik Patel
 

Tendances (15)

Suns Out Guns Out: Hacking without a Vehicle by Charlie Miller & Chris Valasek
Suns Out Guns Out: Hacking without a Vehicle by Charlie Miller & Chris ValasekSuns Out Guns Out: Hacking without a Vehicle by Charlie Miller & Chris Valasek
Suns Out Guns Out: Hacking without a Vehicle by Charlie Miller & Chris Valasek
 
Connected car solution and E-call system for OEM by Smartdriving
Connected car solution and E-call system for OEM by SmartdrivingConnected car solution and E-call system for OEM by Smartdriving
Connected car solution and E-call system for OEM by Smartdriving
 
Self driving and connected cars fooling sensors and tracking drivers
Self driving and connected cars fooling sensors and tracking driversSelf driving and connected cars fooling sensors and tracking drivers
Self driving and connected cars fooling sensors and tracking drivers
 
Need and value for various levels of autonomous driving
Need and value for various levels of autonomous drivingNeed and value for various levels of autonomous driving
Need and value for various levels of autonomous driving
 
I.c ingine ppt
I.c ingine pptI.c ingine ppt
I.c ingine ppt
 
20140311 cisec-automotive systems
20140311 cisec-automotive systems20140311 cisec-automotive systems
20140311 cisec-automotive systems
 
E call ppt
E call pptE call ppt
E call ppt
 
Transit-Protect presentation 2014
Transit-Protect presentation 2014Transit-Protect presentation 2014
Transit-Protect presentation 2014
 
Vehicle Tracking System
Vehicle Tracking SystemVehicle Tracking System
Vehicle Tracking System
 
T062500000 p003050ppte
T062500000 p003050ppteT062500000 p003050ppte
T062500000 p003050ppte
 
MIPI IP Modules for SoC Prototyping
MIPI IP Modules for SoC PrototypingMIPI IP Modules for SoC Prototyping
MIPI IP Modules for SoC Prototyping
 
Automation on Traffic Signals
Automation on Traffic SignalsAutomation on Traffic Signals
Automation on Traffic Signals
 
Automated Driving: Innovative Product Development & Safety
Automated Driving: Innovative Product Development & SafetyAutomated Driving: Innovative Product Development & Safety
Automated Driving: Innovative Product Development & Safety
 
GSM Based Anti theft system
GSM Based Anti theft systemGSM Based Anti theft system
GSM Based Anti theft system
 
Gsm based advance security and rtealtime vehicle tracking using gps technolgy
Gsm based advance security and rtealtime vehicle tracking using gps technolgyGsm based advance security and rtealtime vehicle tracking using gps technolgy
Gsm based advance security and rtealtime vehicle tracking using gps technolgy
 

En vedette

RFC6749 et alia 20130504
RFC6749 et alia 20130504RFC6749 et alia 20130504
RFC6749 et alia 20130504Mattias Jidhage
 
Futuristische demonstratie uit de autosector (Bosch) - Belgian Insurance Conf...
Futuristische demonstratie uit de autosector (Bosch) - Belgian Insurance Conf...Futuristische demonstratie uit de autosector (Bosch) - Belgian Insurance Conf...
Futuristische demonstratie uit de autosector (Bosch) - Belgian Insurance Conf...Wolters Kluwer Belgium
 
Fast and Vulnerable
Fast and VulnerableFast and Vulnerable
Fast and Vulnerablemrlanrat
 
The Six Highest Performing B2B Blog Post Formats
The Six Highest Performing B2B Blog Post FormatsThe Six Highest Performing B2B Blog Post Formats
The Six Highest Performing B2B Blog Post FormatsBarry Feldman
 
The Outcome Economy
The Outcome EconomyThe Outcome Economy
The Outcome EconomyHelge Tennø
 

En vedette (6)

RFC6749 et alia 20130504
RFC6749 et alia 20130504RFC6749 et alia 20130504
RFC6749 et alia 20130504
 
Who Are You 20120922
Who Are You 20120922Who Are You 20120922
Who Are You 20120922
 
Futuristische demonstratie uit de autosector (Bosch) - Belgian Insurance Conf...
Futuristische demonstratie uit de autosector (Bosch) - Belgian Insurance Conf...Futuristische demonstratie uit de autosector (Bosch) - Belgian Insurance Conf...
Futuristische demonstratie uit de autosector (Bosch) - Belgian Insurance Conf...
 
Fast and Vulnerable
Fast and VulnerableFast and Vulnerable
Fast and Vulnerable
 
The Six Highest Performing B2B Blog Post Formats
The Six Highest Performing B2B Blog Post FormatsThe Six Highest Performing B2B Blog Post Formats
The Six Highest Performing B2B Blog Post Formats
 
The Outcome Economy
The Outcome EconomyThe Outcome Economy
The Outcome Economy
 

Similaire à Gentlemen, Start Your Engines 20120419

Gsm based advance security and rtealtime vehicle tracking using gps technolgy 2
Gsm based advance security and rtealtime vehicle tracking using gps technolgy 2Gsm based advance security and rtealtime vehicle tracking using gps technolgy 2
Gsm based advance security and rtealtime vehicle tracking using gps technolgy 2Hardik Patel
 
Internet of Things
Internet of ThingsInternet of Things
Internet of Thingscumulocity
 
ITS "Intelligent Transportation System" Guided Vehicle using IOT Project
ITS "Intelligent Transportation System" Guided Vehicle using IOT ProjectITS "Intelligent Transportation System" Guided Vehicle using IOT Project
ITS "Intelligent Transportation System" Guided Vehicle using IOT ProjectMohamed Abd Ela'al
 
Smart infrastructure for autonomous vehicles
Smart infrastructure for autonomous vehicles Smart infrastructure for autonomous vehicles
Smart infrastructure for autonomous vehicles Jeffrey Funk
 
SIMATIC manager سيماتك منجر سيمنز
SIMATIC manager سيماتك منجر سيمنزSIMATIC manager سيماتك منجر سيمنز
SIMATIC manager سيماتك منجر سيمنزEssosElectronic
 
SMART ANTI THEFT SYSTEM FOR VECHILE SECURITY USING GSM
SMART ANTI THEFT SYSTEM FOR VECHILE SECURITY USING GSMSMART ANTI THEFT SYSTEM FOR VECHILE SECURITY USING GSM
SMART ANTI THEFT SYSTEM FOR VECHILE SECURITY USING GSMArun balaji
 
Aplicacions de 5G al IoT i la Indústria 4.0: mMTC i URLLC
Aplicacions de 5G al IoT i la Indústria 4.0: mMTC i URLLCAplicacions de 5G al IoT i la Indústria 4.0: mMTC i URLLC
Aplicacions de 5G al IoT i la Indústria 4.0: mMTC i URLLCTICAnoia
 
Internet of things basics
Internet of things basicsInternet of things basics
Internet of things basicscumulocity
 
OBD 2 Car GPS Tracker – A simple Plug & Play Device
OBD 2 Car GPS Tracker – A simple Plug & Play Device OBD 2 Car GPS Tracker – A simple Plug & Play Device
OBD 2 Car GPS Tracker – A simple Plug & Play Device Satya Prakash
 
OBD2 GPS Car Tracker by Thinkrace Technology
OBD2 GPS Car Tracker by Thinkrace TechnologyOBD2 GPS Car Tracker by Thinkrace Technology
OBD2 GPS Car Tracker by Thinkrace TechnologyManav Mathur
 
Principles of a vehicle infotainment platform - Hans-Ulrich Michel, BMW
Principles of a vehicle infotainment platform - Hans-Ulrich Michel, BMWPrinciples of a vehicle infotainment platform - Hans-Ulrich Michel, BMW
Principles of a vehicle infotainment platform - Hans-Ulrich Michel, BMWmfrancis
 
Transit-Protect presentation 2014
Transit-Protect presentation 2014Transit-Protect presentation 2014
Transit-Protect presentation 2014Transit-Protect
 

Similaire à Gentlemen, Start Your Engines 20120419 (20)

Research skills
Research skillsResearch skills
Research skills
 
Remote car locking system
Remote car locking systemRemote car locking system
Remote car locking system
 
Gsm based advance security and rtealtime vehicle tracking using gps technolgy 2
Gsm based advance security and rtealtime vehicle tracking using gps technolgy 2Gsm based advance security and rtealtime vehicle tracking using gps technolgy 2
Gsm based advance security and rtealtime vehicle tracking using gps technolgy 2
 
Internet of Things
Internet of ThingsInternet of Things
Internet of Things
 
Embedded Systems in Automotive
Embedded Systems in Automotive Embedded Systems in Automotive
Embedded Systems in Automotive
 
ITS "Intelligent Transportation System" Guided Vehicle using IOT Project
ITS "Intelligent Transportation System" Guided Vehicle using IOT ProjectITS "Intelligent Transportation System" Guided Vehicle using IOT Project
ITS "Intelligent Transportation System" Guided Vehicle using IOT Project
 
Smart infrastructure for autonomous vehicles
Smart infrastructure for autonomous vehicles Smart infrastructure for autonomous vehicles
Smart infrastructure for autonomous vehicles
 
SIMATIC manager سيماتك منجر سيمنز
SIMATIC manager سيماتك منجر سيمنزSIMATIC manager سيماتك منجر سيمنز
SIMATIC manager سيماتك منجر سيمنز
 
Automotive Telematics
Automotive TelematicsAutomotive Telematics
Automotive Telematics
 
SMART ANTI THEFT SYSTEM FOR VECHILE SECURITY USING GSM
SMART ANTI THEFT SYSTEM FOR VECHILE SECURITY USING GSMSMART ANTI THEFT SYSTEM FOR VECHILE SECURITY USING GSM
SMART ANTI THEFT SYSTEM FOR VECHILE SECURITY USING GSM
 
IMCC.pptx
IMCC.pptxIMCC.pptx
IMCC.pptx
 
Aplicacions de 5G al IoT i la Indústria 4.0: mMTC i URLLC
Aplicacions de 5G al IoT i la Indústria 4.0: mMTC i URLLCAplicacions de 5G al IoT i la Indústria 4.0: mMTC i URLLC
Aplicacions de 5G al IoT i la Indústria 4.0: mMTC i URLLC
 
Internet of things basics
Internet of things basicsInternet of things basics
Internet of things basics
 
OBD 2 Car GPS Tracker – A simple Plug & Play Device
OBD 2 Car GPS Tracker – A simple Plug & Play Device OBD 2 Car GPS Tracker – A simple Plug & Play Device
OBD 2 Car GPS Tracker – A simple Plug & Play Device
 
OBD2 GPS Car Tracker by Thinkrace Technology
OBD2 GPS Car Tracker by Thinkrace TechnologyOBD2 GPS Car Tracker by Thinkrace Technology
OBD2 GPS Car Tracker by Thinkrace Technology
 
CITMO 2006
CITMO 2006CITMO 2006
CITMO 2006
 
Principles of a vehicle infotainment platform - Hans-Ulrich Michel, BMW
Principles of a vehicle infotainment platform - Hans-Ulrich Michel, BMWPrinciples of a vehicle infotainment platform - Hans-Ulrich Michel, BMW
Principles of a vehicle infotainment platform - Hans-Ulrich Michel, BMW
 
Automotive telematics
Automotive telematicsAutomotive telematics
Automotive telematics
 
Transit-Protect presentation 2014
Transit-Protect presentation 2014Transit-Protect presentation 2014
Transit-Protect presentation 2014
 
Fleet Management System
Fleet Management SystemFleet Management System
Fleet Management System
 

Dernier

Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Patryk Bandurski
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
Azure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAzure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAndikSusilo4
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Alan Dix
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024Scott Keck-Warren
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking MenDelhi Call girls
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Allon Mureinik
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxOnBoard
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?XfilesPro
 

Dernier (20)

Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping Elbows
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
Azure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAzure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & Application
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptx
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?
 

Gentlemen, Start Your Engines 20120419

  • 2. Omegapoint - Founded in 2001 - 170 consultants - e-Business & Security Falun New York Stockholm Göteborg Kalmar Helsingborg Malmö
  • 4. Telematics “integrated use of telecommunications and informatics” ECU  =  Electronic  C BCM=Brake   ECU=Engine   ontrol   CCU=Convenience  ontrol   ACU=Airbag  CC ontrol   odule   CTM=Central   Ciming  Module   GEM=General  Electronic   M SCM=Suspension   ontrol  U odule   TCM=Transmission   M Module   BCM=Body  CCTontrol  ontrol  odule   ECM=Engine  ontrol  CUodule  M PCM=Powertrain  CC Mnit  MUnit   CCM=Central  ontrol  ontrol  nit odule   ~100  Bosch,  Siemens,  Delphi..  
  • 6. Eh, What's up Doc? •  The Car •  Transport •  Server •  Client
  • 7. The Car - Research •  Experimental Security Analysis of a Modern Automobile –  OBD-II •  Comprehensive Experimental Analyses of Automotive Attack Surfaces –  CD –  OBD-II (PassThru) –  Bluetooth –  GSM
  • 8. The Car – Reality •  War Texting: Identifying and Interacting with Devices on the Telephone Network –  Method for attacking telematics •  In general: GSM Baseband + uC Chip •  UART -> RE -> Firmware -> Vulnerability –  How2 find targets? •  FindMe •  WhoIs
  • 9. The Car – Reality •  Put it to the test –  Zoombak Tracking Device •  Zoombak Scanner •  Ask nicely via SMS –  Subaru Outback 1998 •  after market telematics unit •  unlock and start engine •  http://youtu.be/bNDv00SGb6w
  • 10. Transport - GSM •  A5/1 •  SRLabs –  CCC 2009, BlackHat 2010 –  Rainbow tables (100.000 years to 1 month) –  Decode voice •  100-300m upstream •  5-35km downstream
  • 11. Transport – GPRS/EDGE No encryption •  GEA/0 •  GEA/1 •  GEA/2 •  GEA/3 •  GEA/4 No users •  SRLabs –  CCC 2011, Crypto analysis (weak crypto) –  Decode GPRS -> Wireshark
  • 12. Transport – cell USRP H W
  • 13. Server •  Car interface –  Proprietary protocol •  ASN.1 – Touring complete •  GPRS, EDGE, SMS and data over voice –  “We use a Private APN” •  Generic Routing Encapsulation •  Node to Node communication •  Operator web application •  Smartphone interface: REST/JSON
  • 14. Client - browser •  Web application –  no news –  move on –  there is nothing to see –  DriveBy Trojan Download & Install •  Starring Windows •  Guest appearance by Mac OSX
  • 15. Client – smart phone •  Few real vulnerability tests performed •  iOS –  Continous Jailbreak –  iOS 5.0.1 - iPhone 4GS and iPad2 –  iOS 5.1 – iPad3 •  Android –  Rouge apps –  Android Market - ‘Bouncer’
  • 16. Conclusion •  All components are possible targets •  Very few has the complete picture •  Activity in the security arena •  This is going to get worse before it gets better –  2012 models CAN bus is unprotected –  New tools arriving every day –  Larger attack surface than ever •  Use fast shoes
  • 17. What’s to come? •  “Internet of Things”
  • 19. The Future •  Telematics – M2M –  “integrated use of telecommunications and informatics” Insulin pump Prescription medication
  • 20. The Future ABB IRB 6640 Industrial robot
  • 21. The Future Three Gorges Infrastructure - SCADA – Stuxnet
  • 22. The Future Home Metering Unit - SmartGrid 270 000 HMU using ZigBee
  • 23. “Everything is a computer” @mjidhage mattias.jidhage@omegapoint.se Thank You!
  • 24. References •  http://www.autosec.org/publications.html •  http://www.isecpartners.com/storage/docs/presentations/ isec_bh2011_war_texting.pdf •  http://events.ccc.de/congress/2009/Fahrplan/ attachments/1519_26C3.Karsten.Nohl.GSM.pdf •  https://srlabs.de/blog/wp-content/uploads/ 2010/07/100729.Breaking.GSM_.Privacy.BlackHat1.pdf •  http://events.ccc.de/camp/2011/Fahrplan/attachments/ 1868_110810.SRLabs-Camp-GRPS_Intercept.pdf