Beta

Slashdot: News for Nerds

×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Govt Sees Need For PKI To Protect Vehicle-To-Vehicle Communications

chicksdaddy (814965) writes | about 9 months ago

2

chicksdaddy (814965) writes "Factory-installed and even aftermarket identity management applications may soon be standard components on automobiles, as the federal government looks for ways to leverage automation and collision avoidance technology to make the country’s highways and roadways safer. That’s the conclusion of a new report from the Government Accountability Office. Vehicle to vehicle communications are poised to take off, but that significant security and privacy challenges must first be met, identity management top among them, GAO found.

The report, GAO 14-13 (http://gao.gov/assets/660/658709.pdf) said that the US Dept. of Transportation (DOT) is looking at public-key infrastructure (PKI) deployments that would allow automobiles to authenticate to each other and ensure that the data being transmitted has not been tampered with.

GAO quotes officials at one auto industry consortium known as “CAMP VSC 3,” which includes Ford Motor Company, GM, Honda and Mercedes, saying that the security system will need to be able to detect “misbehaving devices—such as devices that are malfunctioning, used maliciously, or hacked,” then “automatically revoke certificates from vehicles with such devices.”"

Link to Original Source

cancel ×

2 comments

Terrible Idea (2)

Jah-Wren Ryel (80510) | about 9 months ago | (#45341521)

Two big problems:

(1) You can not rely on cert revocation to protect from bad actors because revocation can't happen in real time. No matter what, each car is gong to need to be able to deal with bad actors, and once you've got that logic in there, the value of revoking their status is small.

(2) As a side effect this system will create unique public IDs for every vehicle, making surveillance 100x easier than it is now with license plate cams which are already way too egregious.

Re:Terrible Idea (1)

Taco Cowboy (5327) | about 9 months ago | (#45341719)

(2) As a side effect this system will create unique public IDs for every vehicle, making surveillance 100x easier than it is now with license plate cams which are already way too egregious

This ain't a "side effect", this is their intention all along ...

Big Brother needs to know who you are, what you're doing, where you go, when you do your driving, and how fast/slow / safe/dangerous you drive.

Check for New Comments
Slashdot Account

Need an Account?

Forgot your password?

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>
Create a Slashdot Account

Loading...