Megamos Cripto algo

[felix17popa]

apparently two researchers from Birmingham University managed to break the algo on Megamos Cripto and VW moved fast to obtain a restriction order that the research to not be published yet.....????

[paul_12345]

they not heard of wiki leaks

[felix17popa]

this is supposed to be a serious research which shows the vulnerability of algo used on Megamos Cripto (mostly on VW/AUDI Group) which would allow to start the engines on those cars....

[paul_12345]

this is supposed to be a serious research which shows the vulnerability of algo used on Megamos Cripto (mostly on VW/AUDI Group) which would allow to start the engines on those cars....

and what? are you implying this would be a security risk? as I assume this is using the transponder so no more of a security risk than 4d / 4c cloning etc?

[felix17popa]

Having a court restriction order to publish this research, all I can think is that it may be possible to produce sort of "police key" which can start any car with megamos crypto....

[felix17popa]

High Court Bans Car Hacking Research

[paul_12345]

Having a court restriction order to publish this research, all I can think is that it may be possible to produce sort of "police key" which can start any car with megamos crypto....

yh seems like they must sniff data from the ignition and calculate the correct info

[912secured]

The 994 was suppost to clone them megs, then went quiet(only the ones you could unlock and 05 and older the tk100 was suppost to cover them). They even talk about spoofing the wireless tire pressure monitors. Chrysler only has 256 different possibilities you can run through and make it think all tires are blew out and car will not move.

[ruwi]

I don't think it will be long until other research of this sort is released (even if this specific paper isn't), these chaps in Birmingham can't be the only ones trying to 'crack the code'. Most probable reason for it being blocked is that many smart keys now use Megamos Crypto, so stealing a nice car would be too easy, and out there in Southern Africa these guys strip a car bare with 8 minutes.

[raptureready]

I don't think it will be long until other research of this sort is released (even if this specific paper isn't), these chaps in Birmingham can't be the only ones trying to 'crack the code'. Most probable reason for it being blocked is that many smart keys now use Megamos Crypto, so stealing a nice car would be too easy, and out there in Southern Africa these guys strip a car bare with 8 minutes.

I don't think you correct on the time, its actually 5 minutes

[ruwi]

Damn...! They've improved since the ad came out on TV and that wasn't too long ago...!

[912secured]

Vag has its own weaknesses with immo off via obd2 (edc15/16/7.x/9.x/17) 15/16/7 is a plug in 60us 15/7 only 20. Benz had police keys (even ir upto can 05). Toyota for the ones you had to flash 98/2002(keys sent to some middle eastern dealers),then blue quick flash. If vag had a police key think it would of been found by now. A chrysler CDA was released with options for factory (immo off for police cars as long as it took a key, fobiks no). pcf7941 the fast reset was released to public so every programmer will have it soon. Wonder what ones it will work upto. Be nice to reset bmw,renault,chrysler,2013 nissan, and the rest that use pcf. Thought about making soft for 7941 using the parallel port(some one sent me a 4 channel log), yea have not coded windows that long. Easier making a box with micro to put factory chrysler key back not the chips factory so you can use the key as ID on back and program in via obd2 (or a switch so you can have it both ways). You can even change serial number of chip??? Nothing is locked that way. The russian group released nissan upto 08 immo pin read via obd2 info and groups are adding to their software/devices. Still say 09+ need connected to bcm (thats what they said about 08 and older)