Autonomous cars to have ‘hundreds of thousands of security risks’
Autonomous vehicles will use hundreds of millions of lines of code
Driverless car tech runs using millions of lines of code, offering hackers plenty of ways in
Autonomous cars will provide hackers with hundreds of thousands of security risks to take advantage of because of the masses of code needed to run their systems.
According to David Barzilai, founder along with also CEO of coding expert Karamba Security, the first truly autonomous vehicles will run using hundreds of millions of lines of code. This kind of will leave hackers with masses of vulnerable software of which can be hacked into in order to take control.
Barzilai explained of which current top-end luxury vehicles with partial autonomous technology, such as the BMW 7 Series along with also Volvo XC90, already have about one hundred million lines of code. As This kind of technology advances, so too will the number of opportunities for hackers along with also criminals to break into digital systems.
“The automotive market is usually a big risk [to hacking] because of its sheer scale,” said Barzilai. “Recently Chrysler had to recall 1.4 million cars because of a security risk, showing of which just one hack can affect more than one million cars. of which’s quite astonishing.”
Chrysler’s recall came after two security researchers managed to hack into the system of a Jeep Cherokee (pictured below) of which featured the brand’s Uconnect infotainment system. They were able to work their way through the code to eventually take over the dashboard functions, gearbox along with also even the steering along with also brakes.
While the Chrysler incident was an isolated one along with also involved researchers who aim to iron out these risks, of which served to emphasise the level of danger mass-produced versions can face by hackers.
“As autonomous cars get more sophisticated along with also as more human functions move to the vehicle, like looking around along with also steering, the danger increases,” continued Barzilai. “Hackers can hack into a car through its [internet] connected features such as the infotainment, along with also once in, they can work their way into the rest of the vehicle’s controls.”
Barzilai’s company specialises in searching for along with also protecting the vulnerable code in vehicle control units to reduce the chances of This kind of happening. He likens the company’s work to weather proofing a home.
“If you live in a house, sometimes there are storms along with also the water looks for cracks to get into your house. We seal those cracks along with also protect the house while keeping the factory settings to keep things simple.
“By hardening the code from the ECU, bugs can’t be exploited. We do of which in a way of which the vehicle a new doesn’t need to change any software or hardware themselves.”
Karamba has only been around since 2015, although already the firm is usually engaging with global manufacturers. While no names can be revealed at This kind of stage, Barzilai suggested of which Karamba-influenced code could make of which into production versions in a couple of years.
Autonomous vehicle code security looks like of which will become an increasingly important industry. However, Barzilai doesn’t believe the vehicle industry will follow suit of the security industry for computers, for example, where aftermarket anti-virus protection is usually sold.
Instead, he expects the job of protecting car code to remain the responsibility of manufacturers.
“The solution won’t come to the end user like with computers,” he explained. “I believe of which will be delivered by the manufacturers. Car managers along with also security managers are the ones to protect by bugs, not the end user.”
The battle won’t be won as soon as a car is usually sold, however, because hackers along with also criminal organisations wanting to take control of vehicles might attack a style’s systems long after of which makes of which to market.
Barzilai therefore thinks manufactures will make use of over-the-air technology, which can securely apply wireless software updates to vehicles, to keep up protection over a vehicle’s lifetime. If a fresh security risk is usually found, the vehicle maker can issue a fix to all versions running of which software.
“the vehicle industry tends to move slowly in This kind of area, although the threat by hackers, criminals along with also terrorists is usually real,” continued Barzilai. “The US National Highway Traffic Safety Administration has said a couple of times of which This kind of is usually currently a main concern. So I think there will be some fresh regulations to make sure car manufacturers block these risks before they are found.”
by via Autocar RSS Feed