Quotulatiousness

February 15, 2015

The term “carjacking” may take on a new meaning

Filed under: Law, Technology — Tags: , , , — Nicholas @ 05:00

Earlier this month, The Register‘s Iain Thomson summarized the rather disturbing report released by Senator Ed Markey (D-MA) on the self-reported security (or lack thereof) in modern automobile internal networks:

In short, as we’ve long suspected, the computers in today’s cars can be hijacked wirelessly by feeding specially crafted packets of data into their networks. There’s often no need for physical contact; no leaving of evidence lying around after getting your hands dirty.

This means, depending on the circumstances, the software running in your dashboard can be forced to unlock doors, or become infected with malware, and records on where you’ve have been and how fast you were going may be obtained. The lack of encryption in various models means sniffed packets may be readable.

Key systems to start up engines, the electronics connecting up vital things like the steering wheel and brakes, and stuff on the CAN bus, tend to be isolated and secure, we’re told.

The ability for miscreants to access internal systems wirelessly, cause mischief to infotainment and navigation gear, and invade one’s privacy, is irritating, though.

“Drivers have come to rely on these new technologies, but unfortunately the automakers haven’t done their part to protect us from cyber-attacks or privacy invasions,” said Markey, a member of the Senate’s Commerce, Science and Transportation Committee.

“Even as we are more connected than ever in our cars and trucks, our technology systems and data security remain largely unprotected. We need to work with the industry and cyber-security experts to establish clear rules of the road to ensure the safety and privacy of 21st-century American drivers.”

Of the 17 car makers who replied [PDF] to Markey’s letters (Tesla, Aston Martin, and Lamborghini didn’t) all made extensive use of computing in their 2014 models, with some carrying 50 electronic control units (ECUs) running on a series of internal networks.

BMW, Chrysler, Ford, General Motors, Honda, Hyundai, Jaguar Land Rover, Mazda, Mercedes-Benz, Mitsubishi, Nissan, Porsche, Subaru, Toyota, Volkswagen (with Audi), and Volvo responded to the study. According to the senator’s six-page dossier:

  • Over 90 per cent of vehicles manufactured in 2014 had a wireless network of some kind — such as Bluetooth to link smartphones to the dashboard or a proprietary standard for technicians to pull out diagnostics.
  • Only six automakers have any kind of security software running in their cars — such as firewalls for blocking connections from untrusted devices, or encryption for protecting data in transit around the vehicle.
  • Just five secured wireless access points with passwords, encryption or proximity sensors that (in theory) only allow hardware detected within the car to join a given network.
  • And only models made by two companies can alert the manufacturers in real time if a malicious software attack is attempted — the others wait until a technician checks at the next servicing.

There wasn’t much detail on the security of over-the-air updates for firmware, nor the use of crypto to protect personal data being phoned home from vehicles to an automaker’s HQ.

A new rifle for the Canadian Armed Forces?

Filed under: Cancon, Military, Weapons — Tags: , , — Nicholas @ 04:00

Popular Science has a brief overview of a proposed new small arm for the Canadian Armed Forces:

Maybe Canada’s Armed Forces are fighting a Wendigo infestation no one knows about. Perhaps they’re engaged in a secret war against Bigfoot and his moose army for control of the Northwest Passage. There’s also the reality that Canada is a NATO partner and fights regular wars overseas; Canadian troops fought alongside American ones in Afghanistan from 2001 until March 2014. Well, to make Canada ready to take on their next foe, Colt Canada just released a video demonstration of a new prototype gun for the Canadian military. And it looks ridiculous.

The gun is a “bullpup,” meaning the magazine is fed into the gun behind the trigger rather than in front. The main effect of the bullpup design is that rifles can be shorter without losing any effectiveness. The gun can install either a three-round grenade launcher or a shotgun. Shotguns are useful in close quarters, while grenade launchers give more range than just hand-tossing a small explosive. The main gun fires 5.56 ammo, a standard NATO round. Future plans for the gun include smart targeting systems, like those found in TrackingPoint rifles.

They also include a rather bland video of the proposed new weapon firing 5.56mm rifle rounds, 12-gauge shotgun shells, and 40mm grenades:

“Smart” TV? Oh, no thanks. I prefer mine not to spy on my every word…

Filed under: Business, Law, Liberty, Media, Technology — Tags: , , , , — Nicholas @ 03:00

At Techdirt, Karl Bode sings the praises of dumb TVs that don’t share your every word with unspecified “third parties” who may or may not have any compunction about further sharing of what happens in your home (within audio range of your TV, anyway):

Samsung has been doing a great job this week illustrating why consumers should want their televisions to be as dumb as technologically possible. The company took heat for much of the week after its privacy policy revealed Samsung smart TVs have been collecting and analyzing user living room conversations in order to improve voice recognition technology. While that’s fairly common for voice recognition tech, the idea of living room gear that spies on you has been something cable operators have been patenting for years. And while Samsung has changed its privacy policy language to more clearly illustrate what it’s doing, the fact that smart TV security is relatively awful has many people quite justly concerned about smart TVs becoming another poorly-guarded repository for consumer data.

But it’s something else stupid that Samsung did this week that got less press attention, but that I actually find far more troubling. Numerous Samsung smart TV users around the world this week stated that the company has started injecting ads into content being watched on third-party devices and services. For example, some users found that when streaming video content from PC to the living room using Plex, they suddenly were faced with a large ad for Pepsi that actually originated from their Samsung TV:

    “Reports for the unwelcome ad interruption first surfaced on a Subreddit dedicated to Plex, the media center app that is available on a variety of connected devices, including Samsung smart TVs. Plex users typically use the app to stream local content from their computer or a network-attached storage drive to their TV, which is why many were very surprised to see an online video ad being inserted into their videos. A Plex spokesperson assured me that the company has nothing to do with the ad in question.”

Now Samsung hasn’t responded yet to this particular issue, and you’d have to think that the company accidentally enabled some kind of trial ad injection technology, since anything else would be idiotic brand seppuku (in fact it does appear like it has been working with Yahoo on just this kind of technology). Still, users say the ads have them rushing to disable the smart portion of Samsung TVs, whether that’s by using a third party solution or digging into the bowels of the TV’s settings to refuse Samsung’s end user agreement. And that raises an important point: many consumers (myself included) want their TV to be as slack-jawed, glassy-eyed, dumb and dim-witted as possible.

They call it “Great” Britain, after all

Filed under: Britain, Europe, France, Germany, Humour — Tags: , — Nicholas @ 02:00

Great-Britain

H/T to Think Defence for the image.

Let’s make no mistake, Great Britain is great, the clue is in the name after all.

Anyone who thinks otherwise is obviously uneducated, or French.

And not only that …

Without Great Britain the world would be a poorer place in every regard.

Lets just remind ourselves why…

We gave the world democracy, common law, the Bailey Bridge, tanks, gravity, the worlds most common second language, Led Zeppelin, fair play, queuing, the backhoe loader, metal bridges, modern economics, the industrial revolution and Hollywood villains.

The Beatles, Morris Dancing, penicillin, HP sauce, Top Gear, the World Wide Web (your welcome), One Direction, Carry On and Simon Cowell.

Tea drinking, chicken tikka masala, Shakespeare, Winston Churchill, battered Mars Bars, the BBC, the mini (car, roundabout and skirt), the Spice Girls, Darwin, football, Marmite, rugby, cricket, golf, tennis, ping pong, pubs, tea, sharp suits, Spitfires and the fact there are homosexuals, lesbians and transsexuals in the armed forces and no one gives two shits.

With our friends and allies stood against the Nazis, invented the railway, sarcasm, MRI scanners, the screw propellor and a proper breakfast, been on the right side of the Napoleonic, First, Second and Cold War and gave the world steam power, the Mexeflote, Wallace and Gromit, roast beef dinners, the Dyson, Doctor Who, television, telephones, text messaging, GMT, electric motors, lawn movers, spotted dick, sewage systems, the thermos flask, the jet engine, carbon fibre, the flushing toilet and polyester (just for the RAF), pencils, radar and the Bank of France (ha ha ha).

QotD: Bicycle saddles

Filed under: Humour, Quotations, Technology — Tags: , , — Nicholas @ 01:00

I said: “It irritated me; it must have been worse for you. Then there are saddles,” I went on — I wished to get this lesson home to him. “Can you think of any saddle ever advertised that you have not tried?”

He said: “It has been an idea of mine that the right saddle is to be found.”

I said: “You give up that idea; this is an imperfect world of joy and sorrow mingled. There may be a better land where bicycle saddles are made out of rainbow, stuffed with cloud; in this world the simplest thing is to get used to something hard. There was that saddle you bought in Birmingham; it was divided in the middle, and looked like a pair of kidneys.”

He said: “You mean that one constructed on anatomical principles.”

“Very likely,” I replied. “The box you bought it in had a picture on the cover, representing a sitting skeleton — or rather that part of a skeleton which does sit.”

He said: “It was quite correct; it showed you the true position of the—”

I said: “We will not go into details; the picture always seemed to me indelicate.”

He said: “Medically speaking, it was right.”

“Possibly,” I said, “for a man who rode in nothing but his bones. I only know that I tried it myself, and that to a man who wore flesh it was agony. Every time you went over a stone or a rut it nipped you; it was like riding on an irritable lobster. You rode that for a month.”

“I thought it only right to give it a fair trial,” he answered.

I said: “You gave your family a fair trial also; if you will allow me the use of slang. Your wife told me that never in the whole course of your married life had she known you so bad tempered, so un-Christian like, as you were that month. Then you remember that other saddle, the one with the spring under it.”

He said: “You mean ‘the Spiral.’”

I said: “I mean the one that jerked you up and down like a Jack-in-the-box; sometimes you came down again in the right place, and sometimes you didn’t. I am not referring to these matters merely to recall painful memories, but I want to impress you with the folly of trying experiments at your time of life.”

Jerome K. Jerome, Three Men on the Bummel, 1914.

Powered by WordPress