Slashdot Mirror

← Back to Stories (view on slashdot.org)

Roadside Assistance System Used for Eavesdropping

Posted by michael on from the tap-tap-tapping dept.

pegr writes "El Reg has a story about how a US appeals court has 'put the brakes on an FBI surveillance technique that turns an automobile driver's on-board vehicle navigation system into a covert eavesdropping device, after finding that the spying effectively disables the system's emergency and roadside assistance features.' Seems the right to get the service you pay for trumps the 'right' of the FBI to spy on you, using your own vehicle's systems!"

19 of 445 comments (clear)

  1. Funny FBI by dolo666 · · Score: 5, Interesting

    What's most disturbing is that they only passed this because it prevented the saftey features from working, and not because it was infringing on rights of privacy. Crap, if they have a bug order anyway, can't they just bug the car?

    I mean, the cops are listening... so... uh... what's the point of having roadside assistance? If the car breaks down, the FBI or whoever was listening could repsond!

    I remember CSIS was slammed some years ago for agents listening in on random phone calls to Canadian citizens, and gossiping about what was going on with other agents, in a kind of Real-Radio type gagfest.

    It's a good sign from the states that they are stopping this stuff, but I don't have much faith in that being followed by every cop out there. If they want to know what you're up to, trust me... they will.

    1. Re:Funny FBI by InfiniteWisdom · · Score: 2, Interesting

      What's most disturbing is that they only passed this because it prevented the saftey features from working, and not because it was infringing on rights of privacy. Crap, if they have a bug order anyway, can't they just bug the car?

      IANAL, but my guess is the laywer handling the case saw an easy way to win, and decided to stick with that rather than making complex arguments about rght to privacy and stuff. It doesn't imply that they would not have won otherwise.

    2. Re:Funny FBI by Anonymous Coward · · Score: 1, Interesting

      > until they look around and notice that we are already at the bottom of the slope, wondering how we got here.

      We have not yet achieved the type of Sovietization that was achieved in the original Soviet Union. True, we must carry our identity papers to travel by air, rail, road, or sea, and true, we now have a large secret police that can operate at home, *but*, we have not repealed habeas corpus entirely (only partially, if the govt is willing to certify a citizen as a terrorist -- well, ok, this is like mostly repealling it, but), we have not set up large concentration camps.

      Well, ok, we have the largest prison system in the world, but it is a far nicer facility than the Soviet prisons in which Stalin passed his incarceration in Siberia.

    3. Re:Funny FBI by red+floyd · · Score: 2, Interesting

      The Constitution and its Amendments to not enumerate a right to mail letters to your elected representatives

      Amendment I: Congress shall make no law respecting an establishment of religion, or prohibiting the free exercise thereof; or abridging the freedom of speech, or of the press; or the right of the people peaceably to assemble, and to petition the government for a redress of grievances

      Care to try again?

      --
      The only reason we have the rights we have is that people just like us died to gain those rights. -- Cheerio Boy
  2. Score one for little brother... by Space+cowboy · · Score: 2, Interesting

    ... but I wonder how long it'll take before any system like this will have to have 2 channels, one for the security "people", and one for you...

    Simon

    --
    Physicists get Hadrons!
    1. Re:Score one for little brother... by Tackhead · · Score: 5, Interesting
      > .. but I wonder how long it'll take before any system like this will have to have 2 channels, one for the security "people", and one for you...

      I'm surprised it wasn't designed in from the first round, but I'm a cynical motherfucker.

      Given advances in technology, it raises an interesting question. Why not just install it by default? Given the advantages it would give law enforcement in tracking vehicle theft (and vehicle theft is often a precursor to everything from simple burglary to drug trafficking and yes, terrorism), why not have the government sponsor the Big Three into supplying a LilbroJack as part of the standard model? Big fat pork contracts for the steel belt, sold as "improving safety by eliminating auto theft" to the voter, and the cash-strapped State governments would likely be onboard anyways to save on highway patrol funding. (ie.. Congress wouldn't have to threaten to withhold highway construction $$$)

      As I see it, every car that rolls off the assembly line should get at least one, and preferably two, bugs built into it. 99% of the time the primary bug is off. 1% of the time the car is stolen, and the primary but is turned on when the civilian reports the car as stolen. (And 0.1% of the time, pursuant to the needs of law enforcement, the secondary bug only, is turned on for the sheer hell of it, but that's the price you pay for eliminating Grand Theft Auto across the country, with the exception of your PC/console gaming room :)

      The existence of the secondary bug should be withheld from the public for as long as practical. Not sure how to easily integrate a Big Secret(tm) such as the secondary bug into an insecure manufacturing process like vehicle design and assembly, mind you. I'm sure people with a Need To Know have good ideas on solving that problem.

      Both bugs could also hold a passive RFID chip containing the VIN(primary) and the VIN encrypted with the public half of an Uber Law Enforcement key (secondary) on it. Remove the primary bug, you've removed the VIN, you've automatically marked the car as stolen. Th33f = pwn3d! (And of course, if you so much as breathe the wrong way on the secondary bug, both bugs trip. Law enforcement can tell, by looking at which "VIN" (either VIN or VIN+UberKey) was transmitted at phone-home time, which bug was fscked with. Officer Friendly at your local precinct can track your stolen car with the primary bug, but only Law Enforcement of high enough rank to have access to the private half of the UberKey, however, could do anything with transmissions from the secondary bug.

      Back to reality for a bit. It'd be a bit of a kludge, but I bet a dirt-simple variation of the primary/secondary bug trick (albeit one not locked to the VIN, not directly accessible to law enforcement, sans crypto, and ultimately based on security through obscurity, namely the vehicle owner's skill in hiding the second bug) could even be designed and sold as a consumer aftermarket add-on to a commercial system like LoJack.

    2. Re:Score one for little brother... by Tackhead · · Score: 2, Interesting
      > Why not install cameras throughout your home, in every room including your bedroom and bathroom, and then broadcast it all over the internet?

      Actually, I've thought of that as a pretty cool solution to burglary. If it's a wireless link that uploads in real time to a server in the basement, and that server in the basement uploads to a remote server at a friend's house, Joe Burglar can steal everything in your house, including the security system, but he'll go nuts trying to find "the 10-hour VCR" that holds the "tape". He can even steal the server in the basement (if he can find it) and it won't do him a lick of good, because all the video's on your friend's hard drive.

      > That way, not only could the police make sure that no crimes are being committed in your house, but your neighbors could come and help you if you were hurt or in danger.

      If I encrypt the video stream with my friend's public key and my public key, it wouldn't be hard to "log out" of my home (encrypt stream with Friend's public key only) when I leave for work, and "log in" when I come back (encrypt stream with both Friend's public and my public key).

      1) When I'm "logged out" of my home, Friend and only Friend (assuming he keeps his private key secure) can watch the house while I'm away. House gets broken into while he's watching, he calls cops. Sends video.

      2) When I'm "logged in" to my home, Friend can't see anything I do, but he can still give me the encrypted data stream I need to obtain pictures of the perp, should I have the misfortune of being the victim of a home invasion while wanking to g0at pr0^W^W^W^Wdownloading warez^W^Whaving a quiet evening with a significant other.

      (Besides, what, you actually think some poor Agent wants to watch a Slashdotter's bedroom all night? Man, talk about a boring assignment! :)

  3. vehicle tracking systems by TWX · · Score: 3, Interesting

    Thing is, it might be fun to mess with people who are attempting to use such a system against you. Record the audio from movies where people are conspiring, and play it back when the car is driving. Shield the GPS receiver so that it doesn't receive properly, stuff like that.

    Or, just learn how to be relatively self-sufficient on the road, so that they have a much harder time using things against you...

    --
    Do not look into laser with remaining eye.
  4. Who cares about the FBI.. what about the company? by Anonymous Coward · · Score: 1, Interesting

    If the FBI wanted to monitor my phone calls or bug my car, there is absolutely nothing that I can do about it, except be an honest citizen and don't make myself a target of such investigation.

    But what about the company itself? What sort of mechanisms does this company have where the employees themselves could not, in the middle of the night when they're bored, just turn this on and listen? What if they tapes some private conversation and released it on the internet? What privacy protections do we have from this private company?

  5. Re:Surprised?? by That's+Unpossible! · · Score: 5, Interesting

    OnStar seems kind of useless to me. It came free for a year in my new Grand Prix and I never used it.

    My boss uses his all the time, they are very friendly. On vacation, hit the button, "Hi, we'd like to stop for dinner at a decent chinese food restaurant in the next hour or so."

    They'll search around near where you'll be in 60 minutes based on your speed and direction, call the place, make reservations if needed, explain to you how to get there. They'll even stay on the line with you as you navigate around. They don't usually seem to be in a hurry... nice service.

    BTW, according to the article, it wasn't OnStar, it was their competitor being used by the FBI, FWIW.

    --
    Ironically, the word ironically is often used incorrectly.
  6. Re:Surprised?? by racermd · · Score: 2, Interesting

    I purchased a 2001 Chevrolet Silverado in May of that year and I *intentionally* chose NOT to add the OnStar "feature" for this very reason. It was offered as standard equipment on all the newest models, but the early 2001's didn't have it standard (from about Mar/Apr onwards, I think).

    At the time, the dealer I was working with thought I was paranoid. Just a few short years later, I turn out to be the sane one...

    --
    My sources are unreliable, but their information is fascinating. -- Ashleigh Brilliant
  7. Re:Surprised?? by SatanicPuppy · · Score: 2, Interesting

    I always kind of assumed they did stuff like this. The capability is there, and its all controlled from their end. Seems logical.

    I'm not a major privacy fiend, but I'd never use this sort of service.

    --
    ad logicam Claiming a proposition is false because it was presented as the conclusion of a fallacious argument.
  8. here in San Antonio... by Anonymous Coward · · Score: 2, Interesting

    here in San Antonio, an SAPD special street/drug crimes unit has been known to call up the Transguide Operators (highway cameras for traffic and safety conditions) and ask them to train a camera on a suspect or two.

    supposedly this pissed off some city officials and the practiced has been "banned" - yeah, right.

  9. Re:FBI Roadside Assistance by tomhudson · · Score: 2, Interesting
    grandparent poster wrote:
    If the car breaks down, the FBI or whoever was listening could repsond!

    Most of the time the conversations are recorded to tape and reviewed later for any "good stuff". As a matter of fact, when warrants are issued, many times they include a restriction that requires the law enforcement agency specifically to ignore any conversation involving parties not mentioned in the warrant, etc.

  10. Lo-Jack by Chris+Burke · · Score: 4, Interesting

    When I bought a car recently, the finance guy tried to sell me Lo-Jack, which if you don't know is a microwave transmitter that the police can remotely enable and then pick up the signal from their squad car, ostensibly to retrieve your car when it gets stolen.

    The relevent part is when he said "... and since it's only turned on when you report your car stolen, it isn't Big Brother-ish like On-Star and the others".

    A microwave transmitter in my car that is directly controlled and monitored by the police. And that's not Big Brotherish. Riiiight.

    That the guy seemed genuinely startled when I pointed out this obvious problem tells me that we've already lost.

    --

    The enemies of Democracy are
  11. China Re:So, when... by mitheral · · Score: 2, Interesting

    China already does this to a limited extent. If you are executed for your crime they charge the family for the price of the bullet.

    From http://www.boycottmadeinchina.org/en/why_boycott/r ationale/additional_reasons/part3.shtml
    "The immediate families of the victims were, formerly, required to be present at the execution and to make a denouncement of the victim. This is no longer mandatory. However, the victim's family is still required to pay the cost of the bullet used in the execution."

  12. Re:Does this mean we should expect an "upgrade"? by Shakrai · · Score: 2, Interesting
    see the thing is, you can take the battery out, but have you ever noticed that if you take the battery out, the phone still remembers your numbers?? thats becuse there is a Li-Ion battery inside of it. tear yours apart and you'll see it :)

    Hmm, I always thought it was a nonvolatile memory solution like CompactFlash cards that don't require a battery to retain the data. But then I've never cracked apart a cell phone to see. Guess what I'll be doing with my old Nokia when I get home tonight? :)

    In any case, if this is true (and it probably is -- I'm not doubting you) I doubt that battery is powerful enough to transmit for very long. I suppose if you are truly paranoid you could say that they could have a feature built in to enable it to transmit just long enough for them to locate you, but how are they going to activate that feature if you have already removed the primary battery?

    Are you telling me that the phone still checks the network every so-often even with the primary battery removed to see if there are new commands waiting for it? That's a bit of a stretch.

    --
    I want peace on earth and goodwill toward man.
    We are the United States Government! We don't do that sort of thing.
  13. Re:Surprised?? by Anonymous Coward · · Score: 2, Interesting

    If you can say like that, it is quite obvious that you have not read it...

    NOBODY can read that piece of shit...
    Please explain the finer points to all of us since you obviously are so damn smart...

    When you write a law like this, NOBODY, without all the lawyers of IBM and SCO combined, have a chance of understanding it.

    Just a small example:

    SEC. 104. REQUESTS FOR MILITARY ASSISTANCE TO ENFORCE PROHIBITION IN CERTAIN EMERGENCIES.
    Section 2332e of title 18, United States Code, is amended--

    (1) by striking `2332c' and inserting `2332a'; and

    (2) by striking `chemical'.

    It might be true that you still need a warant, I am not disputing that, but to suggest to someone that they can just go and read the damn thing is plain stupid, and an indication that you have never done so yourself...

  14. Heroic Democrats by ssstraub · · Score: 2, Interesting



    Senator Russ Feingold, Democrat Wisconsin

    "He was the lone senator to vote against the USA Patriot Act last fall, has been its most vocal critic, warning that the act infringes on constitutional freedoms. He also introduced legislation that would put on hold the government's "Total Information Awareness Program"."

    Statement Of U.S. Senator Russ Feingold On The Anti-Terrorism Bill From The Senate Floor

    epic.org mentions Feingold