Car security is, not surprisingly, a hot topic; after all they are fast and heavy computer controlled machinery that nowadays come with all kinds of internet connectivity. So we decided to have a look at it. In this presentation, we’ll first cover some theory behind the IT-part of car architecture. We’ll discuss attack vectors and their likelihood of success, and then discuss the various vulnerabilities we found. Finally, we will combine these vulnerabilities into a remote attack.
Bio Daan: Daan is a security researcher at Computest. He started out doing regular pentests but currently is responsible for the R&D department. Here we do security research that is not directly customer related, but deemed important by us. Computest previously disclosed vulnerabilities in StartSSL and Ansible. In our latest research we focused on car security.