| ▲ | theamk 6 days ago |
| As far as car security is affected, "normies" really don't care what the algorithm is. The entire UX is "press button to open car, go to dealership if you need new key" and it allows a wide variety of choices re algorithms. The only reason they use KeeLoq (with whopping 32 bits of security!) instead of something normal, like I dunno, AES-128 or something, is because they are trying to save $0.50 in parts on the item they sell for $100. Oh, and because they don't like any change and don't have organizational ability to use anything recent, like other poster says. |
|
| ▲ | fc417fc802 6 days ago | parent | next [-] |
| > The entire UX is "press button to open car, go to dealership if you need new key" Ironically proper security in this case would likely improve the user experience as well. The car provides a 64 bit (or larger) secret value and you manually program a standardized fob with it. No need for custom parts that are only available from the dealer. |
|
| ▲ | Terr_ 6 days ago | parent | prev | next [-] |
| I wonder if it's less about the cost of silicon, and more about the energy budget for a device that uses a button-cell battery. Even if it's a problem with off-the-shelf stuff, I imagine a car-manufacturer could easily get something all nice and tiny and special-purpose. |
| |
| ▲ | theamk 6 days ago | parent [-] | | The encryption only needs to happen when button is pressed, and I am pretty sure the radio energy consumption will be much higher that CPU one. Airtags transmit much more frequently than car remotes, use similar batteries, and yet do proper security. | | |
| ▲ | selkin 6 days ago | parent [-] | | Modern keyfobs keep listening and transmitting all the time, as you no longer need to push a button. Just get close enough to the car and it opens. | | |
| ▲ | Terr_ 6 days ago | parent | next [-] | | A terrible "feature", since it means someone can steal your car just by relaying the signal from outside your home at night, or an accomplice walking near you as you're entering the grocery store, etc. I've become a big believer in leveraging some security features of the physical world, as it seems it's been long enough that everyone's forgetting Therac-25-style problems. (Or, perhaps more accurately, nobody cares because they aren't liable.) | | |
| ▲ | imp0cat 6 days ago | parent [-] | | It's not as bad. Modern keyfobs actually detect motion and if they are motionless for a while, they stop transmitting the signal to both save battery and prevent such attacks. For old keyfobs, you can get a battery sleeve with integrated motion sensor which does the same (cuts power when fob is not in motion for a while). Alternatively, some cars let you disable the feature and just use the keyfob as you would use an older one - then you habe to push the button anytime you want to unlock the car. |
| |
| ▲ | 6 days ago | parent | prev [-] | | [deleted] |
|
|
|
|
| ▲ | dylan604 6 days ago | parent | prev [-] |
| > (with whopping 32 bits of security!) Ha! DVDs at least had 48 bits. /s |
