"And... for our latest example for why requiring companies to build backdoors into encryption or similar technologies is a bad idea comes from automaker Volkswagen.
Researchers are now revealing that approximately 100 million VW vehicles can be easily opened via a simple wireless hack.The underlying issue: a static key used on basically all of the wireless locks in VWs.
...“You only need to eavesdrop once,” says Birmingham researcher David Oswald.
“From that point on you can make a clone of the original remote control that locks and unlocks a vehicle as many times as you want.”
In other words, VW created a backdoor, and assumed that it would remain hidden.
But it did not.
...On a related note, the article points out that the researchers who found this vulnerability are the same ones who also found another vulnerability a few years ago that allowed them to start the ignition of a bunch of VW vehicles.
And VW's response... was to sue them and try to keep the vulnerability secret for nearly two years. Perhaps, rather than trying to sue these researchers, they should have thrown a bunch of money at them to continue their work, alert VW and help VW make their cars safer and better protected."
No comments:
Post a Comment