Done

Running Head: CAR HACKING 1

CAR HACKING 6

Car hacking

Professor’s name:

Student’s name:

Date

Abstract

The modern car is a set of an interconnected network of information systems, and that has been rapidly adopted in the last few years, ranging from semiautonomous to self-driving cars. As the car becomes progressively computerized, so does its vulnerability and attack aspect. Researchers recently confirmed a sequence of vulnerabilities in-car systems causing malfunctions and posing a threat to public and individual safety. Up to this point, it is clear that car manufacturers have not stressed enough on establishing secure automobile information systems. Automakers are tussling to accept and deal with the need to secure vehicle control and performance systems. As a result, the modern car presents an attractive target, with a broad attack surface and an infinitude of prospective vulnerabilities to maneuver. This paper analyzes car security vulnerabilities and attests to the need for extra secure modern cars.

Introduction

In the developed world, a car is the most extensively owned appliance. For instance, in the USA, there is scarcely a home without a car or related appliances. In the evolution of technology, cars have not been left out either. Modern cars with computer-enabled systems have prevailed in the automobiles market due to their capability of making work easier for the user and their eco-friendly features. The modern car relies on computerization for engine management, navigation, braking, infotainment system, and overall control systems. This contributes to the term ‘computer on wheels’ meaning that they have similar vulnerabilities to those of computers. The increased dependability on computers translates to a vast attack surface and increased prospective exposures. Hackers use this setback and try various ways to vandalize cars for different intentions (Lugner, 2018).

Car hacking is the ability to manipulate a computer-operated vehicle remotely by exploiting vulnerabilities within the software, hardware, and communication systems. Various car hacking demonstrations have brought attention to the fact that modern cars are an insecure lot. More than ever, car manufacturers are coming to terms with car system security is a big deal. A connected car has a network of wires which a car control commands and sensor data convey through. Such cars have a central operator in the diagnostic board under the steering wheel from which the controller issues commands to the car components as per the input. As a result of the interconnectivity of the systems, an attacker can enter through a vulnerability in the infotainment system and, through it, exploit the safety and control systems of the car. A weakness in one component of the car grants an attacker access to the rest of the car's system. Unlike personal computers, a car cannot detect when a hacker is manipulating its system until the damage is done (Knight, 2020).

Mechanisms of attack

A car’s mainframe can be accessed through the Telematic system, an mp3 malware, unauthorized apps, and key fob. They can all be accessed by exploiting specific vulnerabilities. The Telematic System is used to control any system connected to the CAN bus and disable the ignition system. MP3 files might contain audios with a virus code that can penetrate the CAN bus and disable the breaks and other connected systems. Most hacks are staged in car repair shops by infecting computers in the shop and consequently passed to the cars through the diagnostic port. A Bluetooth enabled system and cellular networks in use are also an attractive vulnerability to hackers (Möller & Haas, 2018).

During a hack, the whole system is remotely accessible and manipulatable, and it is not possible to reboot while the car is in motion. A hacker can take control of the car through the system, track location, unlock and start a parked vehicle, disable emergency assistance, and get access to connected devices that contain valuable and confidential information.

For self-driving vehicles, there is a total security compromise. This is because overriding the car system is possible, which adds to the potential of hacking and vulnerabilities.

The adversity of a system's vulnerability can be partially solved by avoiding public internet providers and Wi-Fi services that are frequently used in hacking. Close observation of the car during a repair and maintenance visit to help identify any abnormalities in the system and scan mp3 files before using them on the car stereo to avoid any virus codes instilled in them can also limit the threats. These are primary but necessary security steps but are not applicable in more sophisticated hacks (Stolarz, 2005).

Uses of exploits

Car hacks are mostly purposed for a terrorist or homicide attack. They can be used to create terror and confusion to the occupants, cause bodily harm, retrieve confidential and valuable information, and car theft or damage. The hackers can achieve this by manipulating the car's system to the sudden application of breaks, seatbelt tightening, blasting the car horn, engine acceleration, and change of speedometer and gas gauge.

However, not all hacking is meant for malicious motives. Some hacking is purposed for good. One can legally hack a self-owned car in case of theft to track the location and also to remotely kill the ignition and recover it. The authorities can also hack a car's system if it is involved in a crime to determine or confirm the owner's whereabouts on the crime occurrence. Computer science professionals perform a white-hat hacking that is meant for penetration testing to determine vulnerabilities in a car’s system and the possibility of hacking so as to come up with mitigation procedures (Smith, 2016).

Conclusion

Modern cars are a simplification of transport, and this makes them a necessity. Therefore, it is a responsibility to the car manufacturers and software security expertise to provide a solution to the security threats involved with modern cars. The public has been made aware of the security issues related to modern cars, and therefore, the developers are obligated to come up with a solution. The problem is profound and complicated and reaching mitigation is highly expensive and challenging but equally necessary. Car manufacturers ought to stop covering security inadequacies and start manufacturing secure automobile systems. Car computer systems have a lengthy development process and an equally long, anticipated life span. The attached security threats persist with time, and this can only be avoided by the manufacture of cars with secure systems.

References

Knight, A. (2020). Hacking connected cars: Tactics, techniques, and procedures. John Wiley & Sons.

Lugner, P. (2018). Vehicle dynamics of modern passenger cars. Springer.

Möller, D. P., & Haas, R. E. (2018). Guide to automotive connectivity and cybersecurity: Trends, technologies, innovations, and applications. Springer.

Smith, C. (2016). The car hacker's handbook: A guide for the penetration Tester. No Starch Press.

Stolarz, D. (2005). Car PC hacks: Tips & tools for Geeking your ride. O'Reilly Media.