ESCAR 2017

This week, I attended ESCAR Embedded Security in Cars conference in Ypsilanti, Michigan. As my first conference I attended, I learned the valuable lessons: insight to fields and areas I have not been introduced before and potential to network with people in industry and academia. One very interesting presentation was use of ChipWhisperer to perform side-channel attacks to crack passwords and encryption using differential power analysis on common processors such as STM32F2.


During breaks, I attended multiple vendor booths and one in particular caught my attention. It was GRIMM. GRIMM engineers were able to have almost full access to one of the Ford Focus’s CAN bus without proprietary information. One thing that stood was how easy it is to get an access to the bus. In fact, they had a couple of demos where we could learn how to read packets to narrow down a function.  They gathered all the items from a single car from a junkyard. It is almost scary to know how easy it is to crack a car and control its power locks, warning lights, and instrument cluster.

Comments

Post a Comment

Popular posts from this blog

Single Sided Rowhammer Attack

Image
Today, I would like to run through the Rowhammer test code that Google Project Zero posted in its Github repository . This blog post will focus on the single sided Rowhammer using random address selection because it is simple and can be understood without knowledge in the LINUX system side of things. Rowhammering is an exploit in modern DRAMS due to high density of cells that reside in the memory device. More can be read in the Google Project Zero’s blogpost . The intention of this blog post isn’t to analyze the single-sided row hammer attack, but to explain briefly how the program works. So how does this code work? The program first allocates 1GB of memory. Then, in a tight loop, random eight addresses are chosen from the heap. At one address at a time, the program reads data (should be zero) from the chosen addresses. Google chose to read from a memory to a variable to replicate accessing a memory address. While not as fast as using x86 ‘mov’ assembly, the C instruction is st
Read more

Let’s Build 5V Solar Charger Part 2

Image
Let’s Build 5V Solar Charger Part 2 Last week, I assembled step-up boost converter kit and put 6V solar panel to power up the chip. I did a final assembly inside a metal casing and taped the solar panel around the case to make the kit tidy as shown in the photo below. This week, I measured the output of the solar charger. I measured the open circuit voltage and short circuit current to calculate the power output. The voltage was measured at around 6V and current was measured at around 0.03Amp. This translates to around 200mW of energy. This is 1/5 of what the solar panel was advertised at. The product page advertised at 1W of output. I expected that the tiny circuit wouldn’t able to charge a power hungry smartphone. However, this might be sufficient enough to charge a small LED light for my bike. Considering that normal USB port’s maximum current output is 500mW, the solar panel’s output is decent.  For curiosity, I calculated how much energy I could save using
Read more

Roborace Showcase at MCity

Image
On last Friday, which was May 21st, Roborace visited Mcity in the University of Michigan to show case its autonomous race car, Robocar. Robocar's first impression was astounding. Previous self-driving cars involved regular cars with regular seats. However, this race car was designed so that there is no seat. It looked like Formula 1 race cars with a higher cool factor. To achieve the autonomy, the race car uses a combination of Lidars, Radars, Sonars, and computer vision cameras. Unlike traditional self driving cars which has a roof mounted Lidar, Robo race has a couple of Lidar in the front wheel wells. I wonder the benefits of the side mounted Lidars over top mounted Lidars. I predict that due to its low height, top-mounted Lidar might cause a line of sight issue. As a consequence of side mounted Lidar in the front, the car introduces a blind spot due to large back wheel wells. Therefore, the back wheel is mounted with Sonars to compensate. In the top of the car seats the c
Read more