LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

(Nearly) full tickless operation in 3.10

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Linux and automotive computing security

Linux and automotive computing security

Posted Oct 10, 2012 22:44 UTC (Wed) by Cyberax (✭ supporter ✭, #52523)
In reply to: Linux and automotive computing security by rgmoore
Parent article: Linux and automotive computing security

Air gap doesn't mean complete absence of any communication. For example, a door lock system can passively listen to CAN bus for speed information messages (the design of CAN makes this easy).

So far I haven't seen an example where you really need complex two-way communication between a critical system and non-critical stuff.

(Log in to post comments)

Linux and automotive computing security

Posted Oct 11, 2012 14:52 UTC (Thu) by ortalo (subscriber, #4654) [Link]

A fireman with its phone wants the engine to stop (GSM -> engine).
Is that a better idea?

Anyway, I *agree* with you: first, why not try to do something good with an air gap. Once manufacturers will have demonstrated their ability to design something correct with an air gap, maybe they could be allowed to try to adress more complex configurations.

But you know, that was the way certification authorities approached the issue for airplanes and, apparently, the "non-critical -> critical" issue came back on the table within 2-3 years.
It seems civilian users want to do that. (Maybe users really are the most annoying vulnerability after all...)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds