Automotive Cybersecurity and the Impact on Vehicle Diagnostics

摘要

Diagnostic services are an essential part of the communication between the diagnostic tester and the electronic control units of a vehicle. Considering a closed system consisting of vehicle, diagnostic tester, VCI and a cable connection, the vulnerability of such a system is manageable. However, taking into account the implementation of modern diagnostic solutions that use wireless connectivity technologies such as Wi-Fi/Bluetooth or remote diagnostics over cellular networks, the picture is very different. Diagnostic services, which appeared safe in the workshop environment of yesterday for lack of accessibility of third parties, must be completely re-evaluated today. The new communication interfaces to the vehicle give potential attackers the opportunity to misuse the diagnostic services developed for vehicle service and maintenance. This presentation will give an overview of the possibilities of misuse of diagnostic services, the motivation for such attacks, the possible effects as well as possible countermeasures.