• atrielienz@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    arrow-down
    1
    ·
    edit-2
    8 months ago

    I think the immobilization is key here and not something I would trust from any third party. If a third party has access to the encryption method, so does a hacker with the right tools.

    Additionally, it’s configured to the VIN specifically so you can’t steal or buy genuine parts with a key you have access to and swap them into a vehicle that those parts don’t belong to. Chop shops have the ability to do this in the event that these modules aren’t configured properly and don’t require the right validation from other modules.

    • FiniteBanjo
      link
      fedilink
      English
      arrow-up
      3
      arrow-down
      2
      ·
      edit-2
      8 months ago

      Encryption can be done purely between first and second party if you want to rely on the manufacturer for some reason, or if you’re really the complete owner you should have full access to the vehicle’s systems via physical connection and credentials. There is no need for third parties, for a comparison you don’t just give out your email account access or computer password do you?

      • atrielienz@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        arrow-down
        2
        ·
        8 months ago

        The government doesn’t as heavily regulate your email password or computer. The government does regulate automakers and the vehicles they produce. Included safety and security regulations.

        • FiniteBanjo
          link
          fedilink
          English
          arrow-up
          2
          arrow-down
          3
          ·
          edit-2
          8 months ago

          So you’re implying Google Email is not secure? You think that because your computer is not physically paired to a google server that the Google encryption can easily be cracked, or that vice versa it couldn’t be if it were?

          If those are your stances, then you are wrong on all accounts.

          • atrielienz@lemmy.world
            link
            fedilink
            English
            arrow-up
            1
            arrow-down
            2
            ·
            edit-2
            8 months ago

            What in the straw man argument. Your email doesn’t drive on public roads you moron. What are you even talking about.

            And if you want to completely own a motor vehicle buy and build a kit car. And the.n go get it inspected because the government won’t let you drive it on the road until you can prove it’s road worthy.

            • FiniteBanjo
              link
              fedilink
              English
              arrow-up
              2
              arrow-down
              3
              ·
              8 months ago

              You said that part pairing is a security measure due to regulation which computers don’t have, so that means you think that computers are less secure because they are less regulated, right? Part Pairing is not a security measure, encryptions without part pairing are just as secure.

              • atrielienz@lemmy.world
                link
                fedilink
                English
                arrow-up
                1
                arrow-down
                2
                ·
                8 months ago

                Lol. That’s a poorly worded excuse for a come back that doesn’t make an actual point and puts words in my mouth I never said. Additionally it adds meaning to the words I did say that don’t make any sense.

                Further, since your computer is in fact fairly insecure (look up how easy it is to just completely bypass windows and install Linux) I wouldn’t be opening myself up to further arguments in this vein if I were you. Emails get hacked all the time. It’s literally a scammers paradise. Know one of the things that prevents spear phishing and other attacks? A physical security key. Or multi factor authentication. What are you even on.

                • FiniteBanjo
                  link
                  fedilink
                  English
                  arrow-up
                  2
                  arrow-down
                  1
                  ·
                  edit-2
                  8 months ago

                  If you think it’s so easy to break AES-256 then feel free to prove it. The whole world would be amazed at your feat. Clearly all other forms of security are meaningless in the face of paired parts, right?