Software developer cracks Hyundai car encryption with Google search
A developer says he was able to run his own software on his car infotainment hardware after discovering the vehicle's manufacturer had secured its system using keys that were not only publicly known but had been lifted from programming examples.
Daniel Feldman, a Minneapolis, Minnesota-based software engineer, wanted to modify the in-vehicle infotainment system in his 2021 Hyundai Ioniq SEL.After trying to figure out how to customize firmware updates for the IVI's D-Audio2 system, made by the car company's mobility platform subsidiary Hyundai Mobis, and have them accepted by the IVI, Feldman found an unexpected way – through Google. The IVI accepts firmware updates in the form of password-protected ZIP archives. Feldman downloaded an update ZIP from Hyundai's website and was able to bypass the simple password protection on the archive to access its contents, which included encrypted firmware images for various parts of the IVI. His goal then became creating his own firmware images and encrypt them in a way within a ZIP that the car would accept, install, and run, thus allowing him to take control of the hardware from his own supplied code. As luck would have it, Feldman found on Mobis's website a Linux setup script that created a suitable ZIP file for performing a system update. Turns out the encryption key in that script is the first AES 128-bit CBC example key listed in a NIST document The script included the necessary ZIP password for the system update archives, along with an AES symmetric Cipher-Block-Chaining encryption key and the IV value to encrypt the firmware images.That meant he could use the AES key to decrypt the firmware images, modify them, and then use the script to re-encrypt the images using the AES key and package it all up into a password-protected ZIP for Hyundai's IVI update system to ingest. But it wasn't going to be that easy: some part of the supplied data, at least, would need to be cryptographically signed using an RSA private key, and Feldman didn't have it. The updater would use the private key's corresponding RSA public key to check the data was signed using the correct secret private key."The script hinted at RSA signing being used, but unfortunately the key used for that was not in the source code," Feldman explained in"Turns out the [AES] encryption key in that script is the first AES 128-bit CBC example key listed in the NIST document
United Kingdom Latest News, United Kingdom Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Must Watch: Top 3 runs of Red Bull Joyride, including Lemoine's insane send!Watch the highlights of the world’s pinnacle slopestyle mountain bike competition at Whistler's mecca for mountain biking.
Read more »
I was stunned when I found drunk man in pants & socks asleep on my carA MAN lies asleep on a car roof wearing just pants and socks. A resident was stunned to spot an apparently drunk man wearing just socks and pants asleep – on the top of a car. Tom Selby heard…
Read more »
Popular Xbox games — August 14th, 2022Our latest Xbox Gameplay Chart of popular Xbox games sees Two Point Campus graduate into the top 20 after launching on Xbox Game Pass last week, with several new appearances and reappearances further down the chart.
Read more »
Love Island’s Cheyanne Kerr shares her £15 secret product for glowing skinCheyanne has revealed the top glowy illuminator product she used in the Love Island villa. Read more on heatworld.
Read more »
RubyGems requires multi-factor authentication for top devsRubyGems now requires multi-factor auth for top package maintainers
Read more »
Software dev cracks Hyundai encryption with Google searchTop tip: Your RSA private key should not be copied from a public code tutorial
Read more »