At 01:04 PM 02/22/2002 -0800, John Young wrote: >It's been a while since automobile ignition key crypto was >discussed here. An update below from the NY Times. >.... >But however good the system is, Mr. Simpson of the >locksmiths association said this was not the last step in >car security. "They haven't defeated it yet," he said. "But >I'm sure it's just a matter of time." >-----
If the ignition key crypto communications happen out at the steering wheel, it's defeatable by basic hotwiring, but if they make the communications happen from the electronic ignition module, that's tougher to crack. The enterprising car thief _could_ carry around a set of EPROMs for different car models - or could resort to car-jacking, or social-engineering at parking lots. Fancy electronics don't know that you stole the keys. But those attacks are more trouble than stealing an unattended car, and work equally well against non-cryptographic cars, so it's a real risk reduction.
