Forgot your password?
Transportation Security

In Letter To 20 Automakers, Senator Demands Answers On Cybersecurity 80

Posted by Soulskill
from the no-mr.-bond,-i-expect-you-to-die dept.
chicksdaddy writes "Cyber attacks on 'connected vehicles' are still in the proof of concept stage. But those proofs of concept are close enough to the real thing to prompt an inquiry from U.S. Senator Ed Markey, who sent a letter to 20 major auto manufacturers (PDF) asking for information about consumer privacy protections and safeguards against cyber attacks in their vehicles. Markey's letter, dated December 2, cites recent reports of 'commands...sent through a car's computer system that could cause it to suddenly accelerate, turn or kill the breaks,' and references research conducted by Charlie Miller and Chris Valasek (PDF) on the Toyota Prius and Ford Escape. 'Today's cars and light trucks contain more than 50 separate electronic control units (ECUs), connected through a controller area network (CAN) ... Vehicle functionality, safety and privacy all depend on the functions of these small computers, as well as their ability to communicate with one another,' Markey wrote. Among the questions Markey wants answers to: What percentage of cars sold in model years 2013 and 2014 do not have any wireless entry points? What are automakers' methods for testing for vulnerabilities in technologies it deploys — including third pressure technologies? Markey asks specifically about tire pressure monitors, bluetooth and other wireless technologies and GPS (like Onstar). What third party penetration testing is conducted on vehicles (and any results)? What intrusion detection features exist for critical components like controller area network (CAN) buses on connected vehicles?"
This discussion has been archived. No new comments can be posted.

In Letter To 20 Automakers, Senator Demands Answers On Cybersecurity

Comments Filter:
  • by erroneus (253617) on Wednesday December 04, 2013 @07:21PM (#45602777) Homepage

    After all, there are factions within government and if one doesn't agree with another, you may find yourself the victim of an unfortunate accident. Only a tiny minority of government gets the secret service and paramilitary police protecting them you know.

    Perhaps we are seeing some government players waking up to the reality that even THEY have good reason to fear the government they are participating in.

  • Re:Grumpy? (Score:3, Informative)

    by iiiears (987462) on Wednesday December 04, 2013 @07:42PM (#45602991) Journal

    Have you read what researchers have written about the firmware for phones, your television, your router?

    A little poking around Blackhat Convention videos, Bruce Schnier posts and OpenWRT You bet your life it's well worth a few minutes of your time and a letter of support.

      Industry Average: "about 15 - 50 errors per 1000 lines of delivered code. Source


"Consistency requires you to be as ignorant today as you were a year ago." -- Bernard Berenson