Learn about critical automotive security vulnerabilities discovered through UDSonCAN fuzzing in this 23-minute conference talk from DEF CON 32. Explore how diagnostic messages can be exploited to create serious safety risks in vehicles when proper authentication mechanisms are absent. Examine real-world examples where simple diagnostic commands could force sudden stops in moving vehicles or unexpected acceleration in stationary ones. Discover the findings from vulnerability research conducted on a modern electric vehicle model, complete with demonstration footage. Understand the essential countermeasures needed to protect against these UDSonCAN attacks and strengthen vehicle security systems.
UDSonCAN Attacks - Discovering Safety Critical Risks by Fuzzing
Overview
Syllabus
DEF CON 32 - UDSonCAN Attacks Discovering Safety Critical Risks by Fuzzing - Seunghee Han
Taught by
DEFCONConference
Related Courses
-
Attacks on Automotive Diagnostics
-
V2GEvil: Cybersecurity Vulnerabilities in Electric Vehicle Charging Systems
-
Fuzzing the MCU of Connected Vehicles for Security and Safety
-
Abusing CAN Bus Specifications for DoS Attacks in Embedded Systems
-
You Wouldn't Hack a Car? A Pentester's Approach to Embedded Security on Automotive ECUs
