Tyndmyr wrote: Quercus wrote:
Tyndmyr wrote:This happened long before computers. The idea that you could just cut someone's brake lines because they were critical and reasonably accessible isn't particularly new.
And yet, that sort of thing is a rounding error on automobile deaths.
The difference is that it's approximately 10,000 times more difficult to cut the brake lines on 10,000 cars compared to one car. With many attack vectors it is only moderately more difficult to hack 10,000 devices (cars, PCs, whatever) than to hack one. In a word: scalability
This is unlikely. Different brands of cars, different models, sometimes, and even different years within the same model often use different systems. It isn't like the desktop world where it's much more of a monoculture for operating systems, browsers, etc.
Sorry, but this is simply wrong. Because a large part of making computer driven cars work on a large scale will be their ability to communicate and interact. Which means that there will be hardware dedicated to communication. Which, in turn, means that there will be some sort of common communication standard, as well as a command and control standard. For this whole thing to work, there needs to be a network.
Your statement is correct today
because that network doesn't exist. But once it does exist, there will be huge incentives to compromise it. The largest efforts will be put into seeking ways to mine the data that it holds - to know where people are going, when they're going, etc. And once those cracks are found - and they absolutely will be found - they can be exploited by people with more malicious intentions.
The moment a network is open to the world, it is vulnerable; and with enough incentive it will be breached. Period. And this network has
to be open or it doesn't work. And it has
to be standardized or it doesn't work. And yes, they're obviously going to add multiple layers of security; and just like every other open network those layers will be peeled away almost as quickly as they are raised. Every day people breach government systems that are far
more insulated than what we're talking about here could ever be; so it's delusional to think otherwise. In this case, by necessity, the hardware will be available to anyone with access to a car, to be taken apart and reverse engineered. The standards will be made available so that service can be performed. And so forth.
Part of the reason for the recall after the Jeep hack was the realization that, if these guys had been malicious, it would have been fairly easy to scale the hack from one car to many. Once we start actually networking cars together, it gets even easier to do on a much larger scale.