The December 2022 issue of IEEE Spectrum is here!

Close bar

To Foil Cyberattacks, Connected Cars Need Overlapping Shields

There are many ways into a car's electronic guts, so engineers will have to build in massively redundant safeguards

2 min read
Lock and chain in the shape of a car.
Photo: Getty Images

The electronic systems of a smart car present many weak points to would-be intruders, and the problem will get worse as cars start sharing information with each other and with the roads they drive on, argue two experts in automated automobiles. They recommend far more layers of cyberprotection than manufacturers have thought necessary.

Jonathan Petit of University College Cork, Ireland and Steven E. Shladover of the University of California, Berkeley make their recommendations in an upcoming issue of IEEE Transactions of Intelligent Transportation Systems. The authors say that their analysis seems to be the first “investigation of the potential cyberattacks specific to automated vehicles, with their special needs and vulnerabilities.”  

Those needs, they note, are particularly pressing for cars that take care of most driving problems but must occasionally hand the driving back to the driver: 

Recent research by General Motors (not yet published) has shown that drivers largely disengage from the driving task and monitoring of the driving environment after continuous intervals of fully automated driving ranging from 5 to 30 minutes, becoming almost totally dependent on the automation system.

Petit and Shladover break cyberattacks down into opposing categories: passive snooping versus active manipulation; mere jamming of a signal versus the substitution of a false signal for the true one; and attacks on lone cars versus those on networks of cars.

Some of this scullduggery is already possible:

GPS jamming is cheap to perform (around US $20), and some more expensive GPS jammers go even beyond jamming and perform GPS spoofing (medium threat in our system), where they replicate signals and provide false locations. A professional car thief can continue about his/her business of stealing by using a combined GPS/GSM jammer to block the car’s antitheft system from knowing and reporting where the vehicle is.  

After analyzing the various means of attack for factors such as the ease of use and the seriousness of consequences, the researchers conclude that the biggest threat to a lone smart car is interference with its global navigation satellite system. Hence, secure GNSS signal is mandatory,” they say.

For connected vehicles the biggest threat is spoofing—the sending of false messages (particularly involving GNSS signals) that may then be relayed through the network. Against this threat they propose authentication systems, based on encryption, and “misbehavior detection,” which uses algorithms to guess when something in the car’s activity just isn’t right.

Most safety engineering is centered on unintended effects, like the slipping of tires on the road. This kind, however, is directed against the malignity of an enemy, one who can respond to your every move. That’s why robocar engineers must come up with an endless stream of cyberdefenses. They’ll need to wrap smart cars in massively overlapping armor—what a soldier would call a defense in depth.

The Conversation (0)

We Need More Than Just Electric Vehicles

To decarbonize road transport we need to complement EVs with bikes, rail, city planning, and alternative energy

11 min read
A worker works on the frame of a car on an assembly line.

China has more EVs than any other country—but it also gets most of its electricity from coal.

VCG/Getty Images
Green

EVs have finally come of age. The total cost of purchasing and driving one—the cost of ownership—has fallen nearly to parity with a typical gasoline-fueled car. Scientists and engineers have extended the range of EVs by cramming ever more energy into their batteries, and vehicle-charging networks have expanded in many countries. In the United States, for example, there are more than 49,000 public charging stations, and it is now possible to drive an EV from New York to California using public charging networks.

With all this, consumers and policymakers alike are hopeful that society will soon greatly reduce its carbon emissions by replacing today’s cars with electric vehicles. Indeed, adopting electric vehicles will go a long way in helping to improve environmental outcomes. But EVs come with important weaknesses, and so people shouldn’t count on them alone to do the job, even for the transportation sector.

Keep Reading ↓Show less