Catch up on stories from the past week (and beyond) at the Slashdot story archive

 


Forgot your password?
Close
typodupeerror
×
Transportation Security

Car Thieves and Insurers Vote On Keyless Car Security 221

Posted by Soulskill from the experts-agree dept.
RockDoctor writes: The BBC reports that Britain's car thieves, rapidly followed by Britain's car insurance companies, have been expressing their opinions on the security of keyless car entry and/or control systems. The thieves are happy to steal them (often using equipment intended for dealer maintenance of the vehicles) and in consequence the insurance companies are refusing to insure such vehicles (or to accept new policies on such vehicles) unless they are parked overnight in underground (or otherwise secured) car parks. I guess I won't be considering buying one of those for another generation. If ever.
This discussion has been archived. No new comments can be posted.

Car Thieves and Insurers Vote On Keyless Car Security More

Car Thieves and Insurers Vote On Keyless Car Security

Comments Filter:

  • I wish I'd thought of that (Score:5, Interesting)

    by j2.718ff ( 2441884 ) on Monday October 27, 2014 @06:04PM (#48246383)

    I've never been a fan of the keyless car design. But if I wanted a new car, I had little choice. And I knew I'd have no chance convincing car manufacturers to make a keyed version. All this time, I should have been making a fuss to the insurance industry instead.

    Thank you insurance industry for making a sensible decision. Unfortunately, that may suck for anyone who owns such vehicles.

    • Re:I wish I'd thought of that (Score:5, Insightful)

      by beelsebob ( 529313 ) on Monday October 27, 2014 @06:15PM (#48246475)

      What I can't figure out is how incompetent the car industry's software engineers must be. The implication of this is that it's possible to clone a key based only on the signal it gives off. The implication of that is that they're sending out a static password.

      I mean, why are these keys not just broadcasting an "I'm here" signal (possibly with a unique id), and then doing some challenge/response authentication ala SRP that can't have the key reverse engineered from the transmissions to actually perform the unlock.

      How did the car companies think they could get away with such crappy security?

      • Re:I wish I'd thought of that (Score:5, Insightful)

        by mythosaz ( 572040 ) on Monday October 27, 2014 @06:23PM (#48246543)

        The problem is lost keys. There has to be a mechanism for an automotive dealer or manufacturer to replace lost keys, and it has to function without the original key. It's the 2010's version of old master keys for tumbler locks.

        Even the summary says thieves are using those reprogramming/recovery tools intended for dealers.

        • Re:I wish I'd thought of that (Score:5, Interesting)

          by weilawei ( 897823 ) on Monday October 27, 2014 @06:51PM (#48246731)

          And master-keying a pin tumbler comes with the caveat that you multiply the number of keys which can open a given door. If you use multi-level master keying, you wind up with potentially dozens of key bittings that you didn't intend to allow but will also open such a lock.

          Theoretically, we should be able to avoid that problem with a challenge/authentication protocol. Of course, I'm still skeptical of it being implemented well any time in the near future. For now, I'll stick with my crusty old sidebar wafer locks.

          Oh yeah, any halfway competent locksmith (not these fly-by-night people) can open most of your physical locks without any real effort. The only reason they're drilling is to save a few minutes. And if we're talking about a car, it's usually faster to use some other sort of opening tool. Heck, my old Subaru, you could bend the window out with your bare hands and shove your whole arm in to unlock the door.

          Locks keep honest people honest. They barely slow down a professional.

          • Re:I wish I'd thought of that (Score:5, Insightful)

            by drkim ( 1559875 ) on Tuesday October 28, 2014 @12:32AM (#48248397)

            Locks keep honest people honest. They barely slow down a professional.

            Damn straight.

            Another thing people don't take into consideration is that about 40% of vehicle thefts are tow-aways.

            That way they can work on the locks and security in the safety of their chop shops.

          • Locks keep honest people honest. They barely slow down a professional.

            Yes, but there are a lot of potential thieves who fall between those ends of the spectrum.

        • Re:I wish I'd thought of that (Score:5, Interesting)

          by drinkypoo ( 153816 ) <drink@hyperlogos.org> on Monday October 27, 2014 @06:52PM (#48246747) Homepage Journal

          Even the summary says thieves are using those reprogramming/recovery tools intended for dealers.

          Mostly they aren't. They're using other tools which connect to the same interface. It's trivial (in theory anyway) to put your ELM327 into sniffer mode, and with it hidden inside of the car someplace connected to the diagnostic bus, the dealership will never know that you're logging. I can literally buy an off the shelf device for a hundred bucks that will read the immobilizer code out of my Audi, and it's not an Audi-approved tool. Or I can get the code with freeware and a ten dollar cable.

        • Re: (Score:2)

          by mysidia ( 191772 )

          The problem is lost keys. There has to be a mechanism for an automotive dealer or manufacturer to replace lost keys, and it has to function without the original key.

          No there doesn't.... they can have a frickin' lock control module mated to the keys which must be physically removed and replaced with a new unit paired to new keys, like various manufacturers have been doing with the immobilizer chips since the 2000s.

          The "recovery" mechanism should involved forced entry.

          Alternatively... a backup tr

          • Re:I wish I'd thought of that (Score:5, Interesting)

            by weilawei ( 897823 ) on Monday October 27, 2014 @08:36PM (#48247453)

            Okay, I typed out a whole post, but this is laughable.

            Most locksmiths (I Am A Locksmith) and thieves have the same goal, but for different reasons: get in, and get in quickly. (For the professional locksmith, time is money, and I can make more calls if I bust your lock open versus spending a few more minutes to pick it; for the thief, the longer you stand around, the more likely you are to be caught).

            They'll just break out the drill if you make it too hard to pick quickly. Or the screwdriver. It's amazing what a long-handled flat-bladed screwdriver will do to your average pin/wafer tumbler lock...

            The only way tools/knowledge get expensive is if you're into safecracking (oohhh.. so pretty...>/drool>). The idea that you can make a physical lock (crypto offers some quite nice advantages here) that the average locksmith is going to spend time picking but a thief won't is absurd.

            I'll just tell the customer to replace it, unless they have some weird sentimental attachment and feel like paying me to stand there and pick it (I'm totally cool with that too). A disc (not to be confused with a disk tumbler) is a good option in the "hard-to-pick" category (though not unpickable by any stretch, and the Abloy Protecs have a serious flaw... you can google for it). They also take about 10 seconds to drill with the proper milling cutter. If that.

            The closest thing to an unpickable lock is the one on some fortress phones which uses a ratcheting lever lock (so once you raise a lever, it will never come down any lower than that). It also doesn't give you any feedback, so if you screw up, it's back to the drill with you!

            • Re: (Score:2)

              by mysidia ( 191772 )

              They'll just break out the drill if you make it too hard to pick quickly. Or the screwdriver. It's amazing what a long-handled flat-bladed screwdriver will do to your average pin/wafer tumbler lock...

              I suggest the use of a lever tumbler lock design with some defense of the lock surface using hard plate steel containing tungsten-carbide chips, randomization of placement, and false drill points where an entering drill will pierce a pressurized bladder triggering separate re-locking mechanisms to preve

              • Re:I wish I'd thought of that (Score:5, Interesting)

                by weilawei ( 897823 ) on Monday October 27, 2014 @10:21PM (#48247951)

                Forget it. They'll just smash the window and replace it, or haul it onto a flatbed and work on it at their leisure.

                Lever tumblers aren't going to be my first choice for something like a car. Large mechanism for one that's difficult to pick, and not as robust as a disc lock. Drill points are available from the manufacturers. Not hard to get. Hard plate and ball bearings and chips are wonderful, but...again, better for safes. Also, auto lockies are going to hate you. Relockers? Same deal. That sort of thinking works better for safes, where you have an object which is purposely large, heavy, and bolted down to concrete. Modern cars already have immobilizers.

                Electronic locks hold an immense amount of promise for the future of auto locks. They're not nearly so prone to dust, dirt, space, or cost. A proper implementation will take work, but I don't see it as being infeasible. Crypto done right is harder to get past than a physical lock, which will of course just shift the means of entry to something more appealing. Modern car thieves will use a laptop more than a lockpick. That's just how the arms race goes.

            • It's amazing what a long-handled flat-bladed screwdriver will do to your average pin/wafer tumbler lock...

              I am always shocked at how many people don't know that trick. I did that to an old fire chest I had that in all the moves I had lost the key and the fire chest was only $30 so it was the quick and simple route. Also if you damage the pins and tumbler enough just about anything will work as a key as those things wear out. The ignition on my old Bronco II was so worn I could use a small pocket knife blade in the key slot to start it. For security forget padlocks since the easy way around them has and always w

            • Re: (Score:2)

              by AmiMoJo ( 196126 ) *

              Drilling your way in won't help you steal the vehicle itself though, as all modern cars have an immobilizer. That's why this attack is so popular - instead of stealing a few quid's worth of CDs and change out of the glove box, they get the whole car complete with working set of keys, ready for a new VIN and transport to eastern Europe. The insurance companies end up paying out for a new car, hence their unwillingness to insure.

          • Re: (Score:2)

            by rtb61 ( 674572 )

            The real problem is you need to be able to scare people sufficiently that they will allow the location of their car to be tracked 24/7 via systems already built in and paid for, with just some software changes required. So target the greediest ones and tell them they either have to give up their poseur convenience or their insurance or accept the vehicle can be tracked at any time. Of course the tracking will only be enabled when the vehicle has been reported stolen, uh huh. Once you have forced tracking o

        • Re: (Score:2)

          by Vermifax ( 3687 )

          Most of the key reset procedures I've seen require inside access to the car, and if the thieves already have that, slaving a new key to the car is mostly a moot point.

        • Re: (Score:3)

          by AaronW ( 33736 )

          With my 2006 Prius I was told that if I lost both keys that the only way to recover was to replace the computer. If I had at least one key fob I could add more key fobs but it required having at least one fob.

          My current car does not have a physical lock, making it all the more difficult to break in to. It can't be programmed over ODB either.

        • The problem is lost keys. There has to be a mechanism for an automotive dealer or manufacturer to replace lost keys, and it has to function without the original key.

          Why?

          If you have no key available for the car, the car's private key can (and should) be wiped and replaced with a new one, and the key fob given the matching public key. Again, this is assuming that the system uses public key encryption (which it should) and that you have physical access to the car.

        • In case of the challenge/response, the car knows what response to expect on the challenge it sent out. So the car and the key basically do the same calculation.

          The lost key situation is very simple: reprogram not only the key, but also the car. The car can be reprogrammed after gaining entry with a physical key - this may be a traditional key, or a smart key, or whatever. Just a second key, that the owner receives with his car and which can only be used for gaining access for reprogramming purposes.

          Now what

      • The implication of this is that it's possible to clone a key based only on the signal it gives off. The implication of that is that they're sending out a static password.

        Not only is it possible, but it's in common practice. Aftermarket remote starters need to clone your keys. You can get a remote starter for basically any car. It's not like you need a dealer for it either, because car electronics places that install these things will be the ones cloning the keys.

      • Re: (Score:2)

        by jd659 ( 2730387 )
        I haven't heard of a car key that you can just easily clone. The code is never static.

        • Re: (Score:2)

          by Lumpy ( 12016 )

          "I haven't heard of a car key that you can just easily clone. The code is never static."

          I have, most of the GM VATS chip keys were nothing more than a simple resistor.

          http://vats.likeabigdog.com/ [likeabigdog.com]

          Trivial as hell and was broken BEFORE the system was released by GM, even though it was used from 1990-2005

          • Re: (Score:2)

            by jd659 ( 2730387 )
            Interesting, but the additional security to a physical key is not the "wireless" solution that is being discussed here. I'm still quite interested if there are any OEM wireless keys that actually don't use some type of rolling keys or challenge response.

      • ... and then doing some challenge/response authentication

        Power management. Ever tried to make a decent transceiver that runs for 3-5 years on a 2016 coin cell? Burst transmitters are easy enough, but receivers eat power. And everything else you assume is pretty much wrong too. Its not a static password, and its not possible to clone a key based on the signal it gives off. Now, you can do a man-in-the-middle replay attack with a jammer, maybe, and if you have the master key you can clone a key from two sequential transmissions, but thats different. And its been su

    • Comment removed based on user account deletion

    • Re: (Score:3)

      by WarJolt ( 990309 )

      The only problem with keyless cars systems is that the car companies forgot to secure them. That can be fixed.

      I'll flip it around on you. Here's my problem with traditional keys; They can be lost, they can be stolen, they can be copied and there isn't a way of logging access or revoking access. Many older vehicles can even be started(and stolen) with a minimal amount of knowledge and tools.

      All your cars are connected to the internet or soon will be. If you work for Google you just swipe your badge and take

      • Re: (Score:3)

        by AK Marc ( 707885 )

        Many older vehicles can even be started(and stolen) with a minimal amount of knowledge and tools.

        GM was the last hold-out for two keys. One for the outside and one for the inside. The idea was that someone that managed to match one of the outside keys wouldn't be able to match the inside keys. And you didn't need a "valet key" because the ignition key was the same thing, though a valet couldn't then lock it in their lot, but one would assume they were safe.

        Well, back in the early '90s, Texas A&M used lots of GM, and lots of students drove GM as well. So, a group tried all their door keys in the

        • Well, back in the early '90s, Texas A&M used lots of GM, and lots of students drove GM as well.

          Interesting. I never heard anything about that, and the group of people I hung around with were just the sort that would pull that kind of stunt. I left in 1995, though, so maybe it was a little later.

        • Didn't those cars have license plates attached to them for easy identification?

    • Tesla's keyless design seems to work well enough so far.

      Tesla owners are some of the most satisfied car owners in America, and now they have one more reason to love their Model S: They basically never get stolen.

      In the last three years just four of the luxury electric cars have been stolen, MarketWatch reported. Three were reported stolen last year, none in 2012 and only one was stolen in 2011.

      It's not like they are too rare for thieves to get their hands on. At least 20,000 were sold last year alone. The National Highway Traffic Safety Administration says cars are stolen at an average rate of about 3.56 thefts per 1,000 vehicles produced. The Model S, however, squeaks by with a 0.15 per 1,000 theft rate, making it the least-stolen vehicle in America. The second-lowest theft rate is that of the Hyundai Tucson, with 0.40 thefts per 1,000 vehicles, according to the Highway Data Loss Institute.

      All that technology makes the Tesla tempting, but ultimately too difficult to steal. The Model S doesn't have any locks to pick, since the car opens and starts only when its corresponding key fob is near. Sure a thief could go to the trouble of hacking the car, but once they had it there isn't much they could do with it. Most cars are stolen and parted out in chop shops, and there simply isn't a market for additional Tesla parts.

      http://autos.aol.com/article/o... [aol.com]

    • Re: (Score:2)

      by gsslay ( 807818 )

      What is wrong with a physical key? Are they so big that people can't manage to carry them?

      Keyless cars seem to be a fancy, insecure solution for a problem that barely exists.

  • At least in the U.K. which is where the article is about. Basically underground car parks at private residences don't for practical purposes exist in the U.K., which is why the article *NEVER* mentions them at all.

    Never liked the idea of a keyless car, just being near the car means anyone can get in the car as you approach. Heck even if it is parked on the drive and the keys are inside. One of the stupidest ideas in existence really.

    • Re: (Score:2)

      by Kaenneth ( 82978 )

      ... And carjackers, since you are in the car at the time.

      • My old boss had a Porsche Carerra GT (and other fabulous Porsches in his collection) and he used to leave it parked with the keys in it.

        One day I was joking with his secretary about taking it for a spin:

        "You don't want to lose your job"

        "I can get another job, but I'll never get a better chance to total out a sweet ass Porsche"

        About a minute later I played a clip of one being started and revved up, and he bolted out of his office.

        I made him take me for a ride (no he wouldn't let me drive it)

        He let me follow

    • Comment removed based on user account deletion
    • Usually the key fob has to be within about 3 feet of the door being opened and then you must press a button on the door handle.

  • It's easier enough to get into a standard auto keylock. People get the key cut books, and cut their own keys. No different.

    • How does a key cut book help you get in to a random specific car?

      • How does a key cut book help you get in to a random specific car?

        Yeah, I'm at a loss there, too. My car came with a tag which I don't actually have which had the key code on it. Otherwise the dealer has to actually get the data from the manufacturer. This is standard for OBD-II-era Audis, and probably VWs too.

  • "By far the most common way of a car being stolen is still from thieves breaking into homes and stealing keys," he said.

    Don't leave your keys in the obvious places, including the spare keys.

    For bonus points: Have some keys labeled "neighbor's house" that are useless.

  • A few years ago I had a jacket stolen from a restaurant. The crooks walked round the local car parks pressing the button on the key-less entry fob until my (ex) car flashed its lights. Easy job for them.

    I reported it to the police, got a video of it being stolen from a camera - the police were less than interested. I was then told that it had been seen on an auction site - by the time that the police got round to visiting it 3 weeks later the guy claimed to not remember anything about it & that was that

    • Re: (Score:2)

      by Lumpy ( 12016 )

      Lesson that was learned: The Police are 100% useless.

      Remember kids, the police are not there to protect and serve or stop crime. They are there for their own reasons to do what they want to do.

    • My mother had a car stolen out of her garage while she was on vacation. The police actually found it, amazingly, in a park and ride well known to be a dropping off point for cars bound for Mexico. They actually took prints, which almost made me fall over in surprise. They got a match to a guy who was a known car thief. They did not arrest the guy and would not press charges even though my Mom wanted them to. Not only would they not do their job, but they wouldn't even tell my Mom who the perpetrator was so

      • Why waste time dusting for prints when you are not going to follow up?

        Probably because the suspect is involved in another, bigger investigation - is he a known gang member whose gang is being investigated for human trafficking or drug distribution? Why pick up the known gang member when he can lead to them other members and on up the chain?

    • Next time you drive to a restaurant, make sure to leave a snake in your car. It doesn't even have to be a big or poisonous snake. If a thief gets into your car, he will immediately jump out again in terror.

      Of course, you may want to warn the valet.

  • Modified car? (Score:5, Interesting)

    by jd659 ( 2730387 ) on Monday October 27, 2014 @06:33PM (#48246615)
    I have a car that uses a wireless key. After browsing the web trying to find more about the security, I found that you could buy a programmer that connects to the car's data port and programs a new key. What was surprising to me was how relatively easy it is to buy such a device and how quick the programming process was (about 30 seconds). A thief would have to get an entry into the car first (breaking a window, perhaps), but once that is done, it's relatively easy to just drive off with a newly programmed key. What I did was to disable to data port, not permanently, but more of a need to use basis. Since it works on obfuscation, this is not a type of security to be mass produced. Not knowing how exactly the port is disabled, it will take a long time to make it work, so I don't expect a thief to start taking the car apart. Wonder if you can claim for the insurance that the port is disabled. There are many other ways to steal a car, I just want to prevent the easy ones known today.

    • Yeah, I just found out there's a sweet hack for the immobilizer in my Audi A8, which admittedly is first-generation. A free program with a ten dollar cable lets you pull the ROM image through the OBD-II port, and then you read the immo code out of the flash. You can get the hood open by cutting the cable, and you can bench flash the PCM (inside a box under the hood) by connecting your OBD-II cable to just three pins since you only need +, -, and the K line. Then you can program your $20 fob to get you in th

  • Fool me once... (Score:2, Insightful)

    by Anonymous Coward

    The thieves are happy to steal them (often using equipment intended for dealer maintenance of the vehicles) and in consequence the insurance companies are refusing to insure such vehicles

    This is ironic. When electronic systems were first rolled out, the car manufacturers did a fantastic job of convincing insurance companies they were far superior to mechanical lock systems. So good, that in some cases insurance companies initially labeled any theft of such a car as being likely to have been done in conspiracy with consent of the owner, since it was obvious no common thief could have cracked such awe-inspiring technological marvels of security.

    Of course, this point of view was unfortunate

    • No big trick. They did the same thing when they introduced aribags. These lifesavers were going to decrease insurance premiums dramatically. Unfortunately, they have increased premiums dramatically because when they go off, you have to pay thousands to get them repacked, and plus you are probably badly injured instead of dead, possibly injured by the airbag itself, and your medical bills are higher than they would have been if you didn't have an airbag.

      • Re: (Score:2)

        by Cramer ( 69040 )

        Not "repacked", but "re-placed". And it happens so rarely because no one will assume the liability of anything ever going wrong with the replacement. Should you have a crash and the airbag doesn't deploy, guess who's going to be sued? (answer: who ever replaced that airbag.)

      • Re: (Score:2)

        by u38cg ( 607297 )
        You don't get injured by the airbag, you get injured by not wearing a seatbelt. You can crash into a brick wall head on at 100+mph with a seatbelt and airbag and walk away; with just an airbag you're toast. Mandatory seatbelts would make more of a difference than airbags have.

      • Re: (Score:2)

        by wiredog ( 43288 )

        your medical bills are higher than they would have been if you didn't have an airbag
        True, dead people don't have very high medical bills...

  • Couldn't help but notice from the article that the insurance company mentioned as refusing to pay on claims is AIG.

  • This problem is easily solved by placing the liability of a "proper" locking system on the manufacturer and vendor of the car. If the system gets hacked, the manufacturer should be made liable to come up with a fix for that, or buy the car back from the owner at the original price of sale. In the UK most of the provisions for such a system are already in place. It will just take a relatively small and easy law where the party responsible for sale and/or manufacture of a device that later turns out to be fun

    • Re: (Score:2)

      by N1AK ( 864906 )

      This problem is easily solved by placing the liability of a "proper" locking system on the manufacturer and vendor of the car. If the system gets hacked, the manufacturer should be made liable to come up with a fix for that, or buy the car back from the owner at the original price of sale. In the UK most of the provisions for such a system are already in place.

      The UK already has consumer protection laws that should be sufficient to cover this. Our statutory rights include that goods are 'fit for purpose' an

    • Already exists. Goods sold in the UK have to be of 'Satisfactory Quality' and 'Fit for Purpose' [wikipedia.org]. A car you cannot insure for us on the public road is unlikely to be deemed by the courts to be of 'fit for purpose', so the sale of such a car is likely to be void.

      IANAL.

  • Our car is badly scratched. It's second hand and one of us made additional scratch to it (non intentional).

    I don't think anyone would be interested in robing such a car and we feel quite relaxed regarding theft risk (and when going through tight places).

Slashdot Top Deals

A committee takes root and grows, it flowers, wilts and dies, scattering the seed from which other committees will bloom. -- Parkinson

Close