upvote

points

by summm6 hours ago |
comments
upvoteby ornornor5 hours ago|
next
[-]
> draconian countermeasures are drafted and constructed one by one.

Except when it’s about privacy or anything else we actually care about: then absolutely nothing is done because it would cost more than 0 to do anything.

reply
upvoteby reactordev5 hours ago|
parent|
[-]
On the contrary, lots are being done about it, they have to update their terms of service…
reply
upvoteby ryandrake1 hours ago|
prev|
next
[-]
> Or just a headline "Tinkerer hacked his car to use with his home assistant" in the local press.

It's pretty sad that "User used their product in a novel way we didn't expect" is seen as a risk that must be mitigated.

reply
upvoteby therealpygon2 hours ago|
prev|
next
[-]
I suspect the manufacturer probably cares less about what you do to your own car and hacking it, than they do about the potential for security compromise of their products on a broader scale, where they will then get blamed and sued for not having closed said loopholes. It is a no-win situation when it comes to fault assignment.
reply
upvoteby cisophrene3 hours ago|
prev|
next
[-]
> It is only a matter of time until they add encryption.

I hope I won't be in one of those cars when the in-memory encryption key gets bit-flipped by the unfortunate cosmic ray.

reply
upvoteby b3lvedere2 hours ago|
parent|
[-]
Proving that autopilot killed that poor old granny because of cosmic rays would be an interesting case study.
reply
upvoteby cisophrene2 hours ago|
parent|
[-]
It actually happened with Toyota around 2010: they went into a settlement regarding an unintended acceleration issue because it was proven the code was terrible and a single bit-flip could cause the behaviour.

https://en.wikipedia.org/wiki/2009%E2%80%932011_Toyota_vehic...

reply
upvoteby AlotOfReading1 hours ago|
parent|
next
[-]
Bit of context to this, it was demonstrated that it was a hypothetical possibility, but the issue couldn't be demonstrated in lab conditions. Stuck floormats, pedals, and confused drivers remain the only actual explanations for the real events behind the lawsuits.
reply
upvoteby b3lvedere2 hours ago|
parent|
prev|
[-]
Very interesting read. Thank you for the link.
reply
upvoteby cisophrene1 hours ago|
parent|
[-]
Another interesting case: a proven case of bit-flip that affected a voting machine in Belgium: https://www.independent.co.uk/news/science/subatomic-particl...
reply
upvoteby formerly_proven4 hours ago|
prev|
[-]
It’s a fair assumption that most of these things are trickle-down effects of CMS/R155 and CRA combined with very high risk aversion on the company side. The less you expose, the lower the risk.
reply