It's a standard attack on cars with keyless entry and works with quite some brands. The basic idea is to extend the radio signal from the fob - which often lies close to the entrance of a house - to the car. Meanwhile some manufactures fixed this in newer models. One way to do this is to measure the time the signal needs to travel between car/fob and the car will not open if that takes too long. A "fix" for older cars is to store the key in a "signal blocker" (similar to those used for RFID cards). Specific to (older) Teslas is a different type of attack, where the (quite weak) crypto key of the key can be calculated in seconds, with the same result. The Tesla specific fix for this was the introduction of a PIN, that has to be entered before the car will start
Random link with some more explanation: https://policinginsight.com/news/defend-relay-attacks-keyless-entry-vehicles/
schmoell:It's a standard attack on cars with keyless entry and works with quite some brands. The basic idea is to extend the radio signal from the fob - which often lies close to the entrance of a house - to the car. Meanwhile some manufactures fixed this in newer models. One way to do this is to measure the time the signal needs to travel between car/fob and the car will not open if that takes too long. A "fix" for older cars is to store the key in a "signal blocker" (similar to those used for RFID cards). Specific to (older) Teslas is a different type of attack, where the (quite weak) crypto key of the key can be calculated in seconds, with the same result. The Tesla specific fix for this was the introduction of a PIN, that has to be entered before the car will start
Random link with some more explanation: https://policinginsight.com/news/defend-relay-attacks-keyless-entry-vehicles/
Very interesting - thanks for posting this.
2017 Range Rover Sport S/C, 2009 Porsche 911S
schmoell:It's a standard attack on cars with keyless entry and works with quite some brands. The basic idea is to extend the radio signal from the fob - which often lies close to the entrance of a house - to the car. Meanwhile some manufactures fixed this in newer models. One way to do this is to measure the time the signal needs to travel between car/fob and the car will not open if that takes too long. A "fix" for older cars is to store the key in a "signal blocker" (similar to those used for RFID cards). Specific to (older) Teslas is a different type of attack, where the (quite weak) crypto key of the key can be calculated in seconds, with the same result. The Tesla specific fix for this was the introduction of a PIN, that has to be entered before the car will start
Random link with some more explanation: https://policinginsight.com/news/defend-relay-attacks-keyless-entry-vehicles/
Actually, I think I posted something related to these keyless entry hacks a while ago, don't remember if it was in a separate thread (maybe, I don't have the time right now to look it up).
It would be easy to make these systems safer but car manufacturers say that they are afraid Car Jacking incidents would explode. I'm not so sure about this, I think they just don't (really) care because cars are usually replaced by insurances and the replacement is...another sold product from them. A win/win situation for car manufacturers.
I don't understand why that surveillance camera didn't trigger an alarm...movement and all. In my garage, they would already face the police.
--
RC (Germany) - Rennteam Editor Lamborghini Huracan Performante (2019), Mercedes E63 S AMG Edition 1 (2018), Mercedes C63 S AMG Cab (2019), Range Rover Evoque Si4 Black Edition (2019)