Monday, April 23, 2007

RDS-TMC Hacks: Don't follow those directions

Inverse Path hacked into European-based RDS-TMC (Radio Data System - Traffic Message Channel) used by GPS Navigation devices that display traffic updates provided over the air.

They were able to inject false alerts that could be broadcasted through FM to GPS devices on the road. Showing how much risk there is today in depending on these systems.

In US and Canada products like the Garmin nuvi 680 and Garmin StreetPilot c580 make use of Microsoft's DirectBand through MSN Direct services (one year free service).

But Clear Channel stations make use of TMC while XM Satellite Radio uses XM NavTraffic from NavTeq.

Microsoft DirectBand is strongly encrypted which isn't the case with the European system.

The idea of the group is to show the vulnerability of the current system. New standards with stronger security are being developed and/or available but not yet in use by manufacturers.

Among them TPEG (Transport Protocol Experts Group) where according to Inverse Path encryption is optional and GST (Global System for Telematics).

Via Slashdot, Yahoo News

No comments: