http://www.cyberdefensemagazine.com/rolljam-a-30-device-to-unlock-the-majority-of-car-doors/


RollJam, a $30 device to unlock the majority of car doors

*August 11*

*RollJam is a $30 device designed to exploit a design flaw in the protocol
that determines how keys communicate with car and unlock the majority of
car doors.*

The recent hacks of the Jeep Cherokee
<http://securityaffairs.co/wordpress/38739/hacking/connected-car-hacking.html>
and
the security patch issued by Tesla
<http://securityaffairs.co/wordpress/39173/hacking/tesla-motor-patch.html> for
its model S have raised the discussion on the car hacking
<http://securityaffairs.co/wordpress/22727/hacking/car-hacking-safety-without-security.html>
.

Now, security experts have revealed a new type of car hack that could allow
an attacker to unlock almost every car or garage door. The researchers
presented RollJam, a cheap device composed of a microcontroller and a
battery. RollJam is capable to unlock any car or garage door, it is easy to
use and costs under $30.

RollJam exploits security vulnerabilities in the wireless unlocking
technology that is currently implemented by the majority of car
manufacturers.



Keyless entry systems
<http://securityaffairs.co/wordpress/29672/cyber-crime/number-keyless-cars-thefts-rising.html>
allow car
owners to unlock the vehicle remotely *within a range of 20 metres*.

RollJam was designed to steal the secret codes, also known as Rolling Code,
that is generated by Keyless entry systems when the car owner presses the
unlock or lock button on his wireless key. The Rolling code is a one-time
code randomly generated and sent over a radio frequency to the car when the
car owner presses the button of its key fob.

When the Rolling code is used the car generates a new one to use for the
next time.

*How does RollJam work?*

The principle is simple, when the car owner presses the key fob to unlock
the car, RollJam used its radio frequency to block the signal and then
records it.

The car will never receive the code and the car owner likely will press the
button again. When the button is pressed the second time, the RollJam again
jams the signal and record also this second code, meantime it reply to the
challenge mechanism by providing the first code it intercepted, unlocking
the car.

When the victim parks the vehicle in his/her car, you can use that stolen
signal to unlock the car. “*Because I jammed two signals,*” Kamkar said, “*I
still have one that I can use in the future.*”

Who is behind *RollJam?*

Of course one of the most talented hackers, Samy Kamkar
<http://securityaffairs.co/wordpress/38999/hacking/hack-gm-cars-ownstar.html>,
which invented numerous hacks in the past like the Combo Breaker
<http://securityaffairs.co/wordpress/36834/hacking/combo-breaker-master-padlocks.html>
, OpenSesame
<http://securityaffairs.co/wordpress/37650/hacking/opensesame-opens-garage-doors.html>
 and KeySweeper
<http://securityaffairs.co/wordpress/32170/hacking/keysweeper-record-keystrokes-wirelessly.html>
.

As confirmed by the notorious hacker, the RollJam works on several carshe
discovered that the attack works against widely adopted chips, including
the High-Security Rolling Code Generator made by National Semiconductor and
the KeeLoq access control system from Microchip Technology.

Among the car makers vulnerable to the *RollJam device there are *Chrysler,
Fiat, Honda, Toyota, Daewoo, GM, Volvo, Volkswagen Group, and Jaguar.

As we have anticipated at the beginning of this post, RollJam also works
against some garage-door openers, including the Rolling Code Garage Door
Opener manufactured by King Cobra.

As explained by the expert, in order to secure the Rolling code have to
implement the code expiration after a specific amount of time. In
alternative, it is suggested to mitigate RollJam by using a unique chip for
every different car. Kamkar will provide details of it hack at the hacker
conference DefCon in Las Vegas.




__._,_.___
------------------------------
Posted by: "Beowulf" <[email protected]>
------------------------------


Visit Your Group
<https://groups.yahoo.com/neo/groups/grendelreport/info;_ylc=X3oDMTJmbXZkZzFpBF9TAzk3MzU5NzE0BGdycElkAzIwMTk0ODA2BGdycHNwSWQDMTcwNTMyMzY2NwRzZWMDdnRsBHNsawN2Z2hwBHN0aW1lAzE0Mzk0MDU5MjI->

   - New Members
   
<https://groups.yahoo.com/neo/groups/grendelreport/members/all;_ylc=X3oDMTJnMGNkdmd2BF9TAzk3MzU5NzE0BGdycElkAzIwMTk0ODA2BGdycHNwSWQDMTcwNTMyMzY2NwRzZWMDdnRsBHNsawN2bWJycwRzdGltZQMxNDM5NDA1OTIy>
   1

[image: Yahoo! Groups]
<https://groups.yahoo.com/neo;_ylc=X3oDMTJlM2Y2bmUxBF9TAzk3NDc2NTkwBGdycElkAzIwMTk0ODA2BGdycHNwSWQDMTcwNTMyMzY2NwRzZWMDZnRyBHNsawNnZnAEc3RpbWUDMTQzOTQwNTkyMg-->
• Privacy <https://info.yahoo.com/privacy/us/yahoo/groups/details.html> •
Unsubscribe <[email protected]?subject=Unsubscribe>
• Terms of Use <https://info.yahoo.com/legal/us/yahoo/utos/terms/>

__,_._,___

-- 
-- 
Thanks for being part of "PoliticalForum" at Google Groups.
For options & help see http://groups.google.com/group/PoliticalForum

* Visit our other community at http://www.PoliticalForum.com/  
* It's active and moderated. Register and vote in our polls. 
* Read the latest breaking news, and more.

--- 
You received this message because you are subscribed to the Google Groups 
"PoliticalForum" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
For more options, visit https://groups.google.com/d/optout.

Reply via email to