Car Hacking - Practical Guide to Automotive Security

Dive into the world of automotive cybersecurity with this practical guide presented at HITB CyberWeek. Explore the intricacies of modern vehicle systems, focusing on the Controller Area Network (CAN bus) and its vulnerabilities. Learn reverse-engineering techniques for CAN bus packets using the Instrument Cluster Simulator (ICSim). Gain insights into vehicle networks, ECUs, protocols, and the CAN Bus protocol. Discover how to identify arbitration IDs for specific vehicle events, perform replay attacks, and send commands on the CAN Bus. Get introduced to essential hardware tools for car hacking. Understand the complexity of contemporary cars as powerful computer systems on wheels, and explore the history of car hacking and potential attack surfaces. Set up ICSim and learn general methodologies for CAN hacking, including a fun tip on how to DoS your car. This comprehensive talk, delivered by Yogesh Ojha, a Cyber Security Analyst at Tata Consultancy Services, provides valuable knowledge for both cybersecurity professionals and automotive enthusiasts interested in the intersection of technology and vehicle security.

Intro
How does a modern car function?
Complexity in a modern car
Your car, is a computer and a network!
Electronics Control Unit (ECU's)
History of Car Hacking
Identifying attack surface
Attack surface on a modern vehicle - Bird's Eye view
Network within the Car
CAN Bus explained
CAN data frame
CAN message Identifier
CAN message structure
How does the CAN message actually look like
Getting on the CAN Bus
Hardware/Software Needed
OBD-II connectors - CAN Hardware
CAN Software
Myth or Fact: Entry barrier for Car/CAN hacking is high
ICSim: Instrument Cluster Simulator
General methodology for CAN hacking
Setting up the ICSim
Fun tip! Dos Your Car!