Slashdot Mirror

← Back to Stories (view on slashdot.org)

California's Wireless Road Tolls Easily Hackable

Posted by timothy on from the no-sir-I-was-in-seattle-at-the-time dept.

An anonymous reader writes "Nate Lawson, a researcher at RootLabs, has found a way to clone the wireless transponders used by the Bay Area FasTrak road toll system. This means you can copy the ID of another driver onto your own device and, as a result, travel for free while others foot the bill. Lawson also raises the interesting point of using the FasTrak system to create false alibis, by overwriting one's own ID onto another driver's device before committing a crime. Luckily, Lawson wasn't sued before he could reveal his research, unlike those pesky MIT students."

56 of 354 comments (clear)

  1. sounds familiar by gentooligan · · Score: 5, Informative

    I think I read about this in little brother.

    1. Re:sounds familiar by Z00L00K · · Score: 2, Interesting

      Hardly surprising for anybody in the business of computers and wireless devices.

      If it's possible to hack - it will be hacked.

      Another way to keep under the radar is to pay cash.

      There are cameras at the toll booths, but they aren't a big problem for anybody with some simple skills.

      --
      If builders built buildings the way programmers wrote programs, then the first woodpecker would destroy civilization.
    2. Re:sounds familiar by HungryHobo · · Score: 4, Interesting

      I'm waiting for anyone out there who doesn't like these systems to cause a little chaos.

      Imagine grabbing the ID of the mayor as he drives by(pretty damn easy) then it's just a matter of wandering through a carpark programming every tag with a matching code.

  2. Cameras at every toll booth by maynard · · Score: 5, Insightful

    And they can record license plates. I think this hack has little criminal viability. Anyone who used it extensively would be caught in short order. Though authorities might be willing to let the criminal conduct continue on until the criminal passed the felony threshold.

    1. Re:Cameras at every toll booth by introspekt.i · · Score: 2, Interesting

      Unless you dirtied up your license plates so they weren't recognizable by those pesky cameras they use at the toll stations...but hey, I'm from the midwest...wtf are toll booths?

    2. Re:Cameras at every toll booth by Aphoxema · · Score: 2, Insightful

      The only problem is that they probably started this system to cut on costs and cut out human error. I doubt they'll actually put in any protection or change the system, they'll just try to crack down on people that commercialize it like blueboxing and cable descramblers.

      --
      "Most people, I think, don't even know what a rootkit is, so why should they care about it?"
    3. Re:Cameras at every toll booth by neapolitan · · Score: 5, Informative

      Yep - that was my first thoughts too. Driving with an unreadable license plate, though, is grounds to get you pulled over anyway.

      In case you didn't know, most toll booth places have:

          Cameras front-mounted to take a picture of YOU or passengers...

          Cameras in the back to take a picture of your plate...

          Occasional cops sitting at the side of the road that are ready to pull you over.

      It's academically interesting (and it should be) but not useful for the criminal. You can always simply drive through a checkpoint without an ez-pass, and most likely nothing will happen for a long time. Is it worth it? Nope.

      --
      Slashdotter, ID #101. UIDs are in binary, right?
    4. Re:Cameras at every toll booth by cayenne8 · · Score: 4, Funny
      "We have a law against dirty license plates. "

      Well, just rig up some sort of James Bond plate changing mechanism....where you can flip the plate, or just obscure it when going through the booth, then hit the switch, and set it to normal again.

      I've been thinking of something like this for the stupid red light cameras they've been putting in down here in NOLA.

      Back on the ez-pass system. For awhile I was having to cross the bridge across lake pontchartrain, and it was a toll bridge. I just don't like the idea of having a system track my movements, so I just paid cash...no toll tag for me. Sure, it costs a dollar more, but, worth it to me.

      --
      Light travels faster than sound. This is why some people appear bright until you hear them speak.........
    5. Re:Cameras at every toll booth by kg9ov · · Score: 3, Funny

      Ohhh.... you must mean the great state of Chicago...

    6. Re:Cameras at every toll booth by Chainsaw76 · · Score: 5, Insightful

      "pretty foolproof"
      Your kidding right? There have been many cases of the Red Light Companies moving sensors around to catch people who Hadn't run the red light. And the one time I got a ticket from this system, the plate was unreadable, the Dark 4 door sedan pictured didn't look anything like my white 2 seat convertible, and we (my car and I) were 800 miles away at the time on the time stamp.

      -J

    7. Re:Cameras at every toll booth by cayenne8 · · Score: 4, Interesting
      "I mean, come on - I am against taking pictures of everything all the time, but the red light cameras are one where they are pretty foolproof at only taking pictures of scofflaws who are endangering everyone else. That seems to be a good thing."

      As the other poster said, there have been cases where the private company running these cameras weren't making enough money, and shortened the yellow light, or even rigged the cameras to take pics while light was yellow, but, showing red on the ticket. Studies have shown that in a VERY high percentage of cases, if they extended the length of the yellow light at troublesome intersections, that the number of people running red lights almost dropped to near zero.

      One of my other problems with the system here...was that the cameras aren't only taking pictures of light runners. They have still and full motion cameras...they showed a case of cars sitting there at a red, and a car going around the front one and running the light, all in full motion. That means the cameras are running all the time...I don't like that.

      I'd heard that someone was bringing suit against them in that they are unconstitutional in the state of LA...in that they aren't on every intersection, and the law states something like there has to be equal enforcement on all LA roads,etc.

      --
      Light travels faster than sound. This is why some people appear bright until you hear them speak.........
    8. Re:Cameras at every toll booth by chaim79 · · Score: 2, Funny

      If the chances of getting caught are high enough you can use it in reverse to screw your neighbors, program theirs to be some random person (or find one from a cop car) and let them explain it to the judge. :)

      --
      DEMETRIUS: Villain, what hast thou done?
      AARON: Villain, I have done thy mother.
      Shakespeare invents 'your mom'
    9. Re:Cameras at every toll booth by EMeta · · Score: 4, Insightful

      Um, no. Better no one doing it. Running reds isn't like going 10 mph over the speed limit. People die from that. A lot. It really shouldn't be about the income.

    10. Re:Cameras at every toll booth by sm62704 · · Score: 3, Informative

      I'm guessing that you've never been to Illinois. "Welcome to Illinois! Pay toll."

      The only toll roads in the whole state are north of I-80. Of course, you guys up there think Illinois' southern border is I-80 anyway.

      Uncyclopedia has a good article about our great state.

      Illinois boasts hundreds of thousands of miles of roadway, almost 1.7% of which are in drivable condition at any given time. The rest are under construction, fuelling the state's economy by adding needed jobs in the road construction industry, and the Illinois Political Patronage Brotherhood of Sign Holders and Shovel Leaners, which depends on constant road construction for its continued existence. To maintain the roads in this condition, state law requires concrete to contain at least 35% white corn meal (cleverly subsidizing the Illinois farmer as well as the road construction industry). It also mandates tar products to be replaced with black licorice in the manufacture of asphalt. During summer months, hapless Illinois home-owners across the state obtain big brushes and squeegees, and can be seen coating their driveways with a new layer of melted black licorice, vainly but valiantly attempting to prevent them (the driveways, not the home-owners) from disintegrating into grey pebbles. This explains the popular saying: "There are two seasons: Blizzard, and Tornado". Also synonymous with "Winter and Construction" in the North.

      --
      mcgrew's razor: Never attribute to stupidity that which can be explained by greedy self-interest
    11. Re:Cameras at every toll booth by mshannon78660 · · Score: 2, Interesting

      Down here (central Texas, Austin area), they have something called 'video tolling'. Essentially, anyone can go through the TxTag lanes, whether they have a transponder or not. If you have a transponder, you get a discount (I think it's 20%) off the cash rate; if you don't, you pay a premium (again, something like 20-33%) on the toll, plus a handling fee (something like $1 per bill). So yes, they can, in a completely automated fashion, take a picture of your license plate and record in a database exactly when you went through that toll plaza. If you drive on the toll road, you should not expect that anything will restore your anonymity.

    12. Re:Cameras at every toll booth by repvik · · Score: 4, Insightful

      I consider using the state-provided roads as a privilege, not a right, that requires your car to be identifiable by a valid licence plate.
      If the plates are obscured, either by dirt or by purpose, isn't it reasonable to give a ticket to deter this?

    13. Re:Cameras at every toll booth by dgatwood · · Score: 3, Insightful

      No more unreasonable than requiring people to wear their driver's license in a plastic badge holder while walking on public sidewalks. Papers, please.

      It should certainly be illegal to use such a tactic to evade a toll. That said, if you are not breaking the law, the only thing they truly have a legitimate need to see is the little colored sticker that says whether your plate has expired or not. Other than that, their "need" to read the plate and identify you is nothing more than a figment of their power tripping imaginations.

      --

      Check out my sci-fi/humor trilogy at PatriotsBooks.

    14. Re:Cameras at every toll booth by initdeep · · Score: 2, Informative

      funny, i drive from des moines iowa to raleigh north carloina several times a year, passing through illinois, indiana and ohio, and never once payed a toll.

      all interstate driving too.

      seems like you went the wrong way to me.

    15. Re:Cameras at every toll booth by TooMuchToDo · · Score: 2, Interesting
      I rode my motorcycle from Chicago to Milford, CT to see a Nine Inch Nails concert at the beginning of this month. I put my IPass (Illinois Tollway toll collection) transponder on the top of all my clothes/laptop/etc in my T-Bag (straps to my cruiser's backrest). Worked like a champ through Indiana (I-Zoom), the Pennsylvania turnpike, as well as on some huge bridge from New Jersey to Connecticut.

      Also, it'd be quite easy to switch to electronic tolls altogether. Everyone should get one (a transponder) to keep the flow of traffic moving (also, think of the cumulative fuel and maintenance saved if no one had to stop for cash tolls). If you go through and your transponder isn't working, they should read the plate and send a bill as Canada does. You'll always miss a few people because of dirty plates, but toll authorities could always strike back by requiring toll registration tied to the RFID tags now placed in all tires.

    16. Re:Cameras at every toll booth by TJamieson · · Score: 3, Informative

      Not only reasonable, sometimes it's the law. Any place where there is a lot of snow will typically have a few people pulled over for not clearing the snow from their bumpers to reveal their plate(s).

      --
      For the last time, PIN Number and ATM Machine are redundancies!
    17. Re:Cameras at every toll booth by repvik · · Score: 3, Interesting

      So you consider the use of licence plates for cars a slippery slope?
      There is a very visible difference between taking a stroll on the sidewalk and controlling a several-ton metal hunk at high speeds.
      I sort of agree with your sentiment, except that I percieve using a car on the road is a privilege, and strolling on the sidewalk a right.

    18. Re:Cameras at every toll booth by Anonymous Coward · · Score: 3, Insightful

      I consider using the state-provided roads as a right, not a privilege, like those other things that the state has been authorized (by the people) to take my money to do.

      When a private company builds its own damn roads, then it can be a privilege.

    19. Re:Cameras at every toll booth by The+Yuckinator · · Score: 2, Informative

      If your insurance rates go up for a dirty license plate ticket then you're using the wrong insurance company.

      I'm also in Toronto and there are no demerit points attached to a dirty plate or a "407 proof" reflective plate cover so their toll cameras can't get see your plate. --at least I didn't lose any points when I was pulled for each of these reasons - in fact I didn't get a ticket for the dirty plate, I just had to clean it off right then and there. The reflective cover cost me a $103.75 fine though. (still a hell of a lot cheaper than paying the 407)

      For those of you who are interested: http://www.407etr.com/ this is an express toll highway that goes over the top of the Greater Toronto Area.

      Our provincial government built it and then decided that they didn't want to manage it any longer so they sold it off to a private company for pennies compared to what it cost to build.

      My favourite part is that if the 407 decides that you owe them money (whether they're right or wrong) then you must pay that bill before you're allowed to renew your license plate with the Province. Yes, you read that right. A private company, with just one small clerical error, can prevent me from renewing my car's plate.

    20. Re:Cameras at every toll booth by Bobb+Sledd · · Score: 2, Insightful

      I might have agreed with you until they use my tax dollars to pay for this "privilege." Which they effectively pry from my hands. No, I consider it a right. And it isn't state-provided, either... it's tax-payer-provided.

      --
      "They said I probly shouldn't fly with just one eye," "I am Bender. Please insert girder."
    21. Re:Cameras at every toll booth by charlesj68 · · Score: 2, Insightful

      For anything more serious than a simple inventory, encrypted RFID devices should be the rule.

      Ah, but you must understand that to the "Powers That Be" you are just simple inventory.

    22. Re:Cameras at every toll booth by stefanlasiewski · · Score: 2, Informative

      FasTrak is also used access the Express Lanes on Highway 91, a 10 mile stretch between Riverside & Orange counties. There are no toll booths, but apparently they have Cameras to track down violators.

      Average highway speed on that road is easily 75mph+ on highway 91, so I bet the cameras are higher-speed then the regular cameras used on the Bay Bridge toll booth.

      --
      "Can of worms? The can is open... the worms are everywhere."
    23. Re:Cameras at every toll booth by element-o.p. · · Score: 2, Insightful

      So you've been off-roading in your street-legal vehicle, and your car/truck/whatever gets covered in mud. How do you transport it to a car wash to get the mud off the license plates so that it is legal to drive on the roads again?

      Or more likely here in Anchorage, it is late spring and the snow is melting, which when mixed with all the sand that was used all winter long to provide traction on the snow and ice makes for a muddy mess. You simply *cannot* wash your car often enough to keep it clean during break-up in Anchorage, and yes, that includes your license plates. It's difficult enough sometimes just to keep your windows and headlights clean enough to see where you are going..

      At the very most, it should be a warning ticket that is dismissed after you clean up the plates so that they are legible again.

      --
      MCSE? No, sir...I don't do Windows. Yes, I am an idealist. What's your point?
    24. Re:Cameras at every toll booth by RpiMatty · · Score: 2, Insightful

      Running thru a red light 10 seconds after it has turned red is one thing.
      Running a red light because the city changing the time, shortening the yellow light, to catch more "red light runners" is bullshit.

      http://www.motorists.org/blog/red-light-cameras/6-cities-that-were-caught-shortening-yellow-light-times-for-profit/
      http://www.reason.com/blog/show/118879.html

      Yes, people who blatantly run a red light are dangerous, but the solution isn't to setup red light cameras, and modify times to catch more people to generate income. In lots of places it is about the income, and not about the safety.

    25. Re:Cameras at every toll booth by Bob-taro · · Score: 4, Insightful

      Um, no. Better no one doing it. Running reds isn't like going 10 mph over the speed limit. People die from that. A lot. It really shouldn't be about the income.

      I'd say that depends on how long it's been red. If you mis-time a short yellow and are in the intersection when it turns red, that's not too dangerous. No more than driving 10mph over (which may be why the yellow light seemed so "short"). That's one problem with automatic ticketing systems - they can't put the incident in context very well.

      --
      Prov 9:8 Do not rebuke mockers or they will hate you; rebuke the wise and they will love you.
    26. Re:Cameras at every toll booth by garett_spencley · · Score: 5, Insightful

      "I sort of agree with your sentiment, except that I percieve using a car on the road is a privilege"

      I don't. We paid to put the roads there and everyone should be able to use them however the hell they want so long as they don't harm anyone.

      I prefer to punish people AFTER they have done harm. Not before.

      License plates, laws against drunk driving[1], justifying drug criminalization by claiming that drug use increases rates of crime, placing curfews on public parks etc. is all preemptive and it places a burden on an innocent society. There's no reason not to throw the book at someone who breaks the law but asking society to give up their freedom for the sake of reducing crime statistics is unfair. It costs tax dollars, gives the government a way to profit off of criminal behaviour (traffic fines) and regulation (licenses, vehicle registration etc.) and I don't think it actually does much in the way of achieving it's goal of preventing crime anyway.

      [1] - I realize that's borderline trollish so I'll justify that: killing someone and violating traffic laws is already illegal. Why do we have to make it more illegal? Has all of this money spent - and made - by cracking down on drunk drivers actually reduced the number of dangerous drivers on the road ? What about sober drivers who are just as dangerous as people who are drunk ? In Ontario it's now illegal to drive with ANY ALCOHOL WHAT-SO-EVER in your system. You can not transport any alcohol that has been opened and any alcohol you do transport needs to be out of reach of the driver (ie: in the trunk). During peak holidays such as new years etc. they put up road blocks on every major road and stop every single car to smell the driver's breath. It punishes everyone for the mistakes of a few. It's getting extremely out of hand.

    27. Re:Cameras at every toll booth by rayzat · · Score: 3, Interesting

      My buddy had his truck stolen with EZ-Pass ( automatic toll payment system for those non-eastcoasters). He filled out the police reports and all the other crap. About a month later he realized the guys who stole his truck were still using his EZ-Pass driving around Jersey and they were going though the same toll boothes about the same time everyday. So he staked out the toll booth and at their usual time he saw them zip through the EZ-pass lane in his truck. So he went through himself and called the state troopers to report he found his stolen truck and it was on the turnpike. The cops were more concerned about whether he was using a hands free headset or not then getting the people who stole his truck. So he eventually followed the people to their house and called the cops again saying he was driving around and spotted his stolen truck, the cops said they would look into it. The next day he found they had done nothing so he drove up with another guy and stole the truck back with his spare key, which is when he learned it's a pain in the ass to get a car declared unstolen.

    28. Re:Cameras at every toll booth by garett_spencley · · Score: 4, Insightful

      Ok, to turn this around a bit. Can you tell me exactly which pieces of asphalt/concrete you have paid for?

      As far as I'm concerned, all of it. We have tax on gas sale, income tax, sales tax, taxes on all vehicle purchases (new or used), driver's licenses, license plates, road tolls, traffic fines (which I'm against but we still pay them), parking fees (for publicly owned parking garages and meters etc.). All ways of giving money to the government for things like road upkeep. How they use it very much my business but I haven't personally investigated how my money was put to use.

      Point being We ALL pay for public infrastructure in one way or another so we should all be able to use it to heart's content so long as we don't harm anyone. I don't see why it should be any more complicated than that.

    29. Re:Cameras at every toll booth by pluther · · Score: 2, Informative

      I suppose a photo of the license plat alone would not be sufficient, but that's not how most places do it.
      I once got a ticket from an automated red light camera in San Jose.
      The picture, unfortunately, clearly showed not just my license plate, but my face.

      --
      If the masses can keep you down, you're not the Ubermensch.
    30. Re:Cameras at every toll booth by ForestGrump · · Score: 2, Informative

      On the other side...
      I spent 5 months last year in Illinois (business trip that was extended too many times, but as a contractor either do it or go home and stop getting $$$).

      There is a real need for cash lanes because of the out of towners, and rental car users.

      Driving rental cars you have either:
      1. No i-pass and must stop at ever toll booth and throw quarters
      2. is a more expensive car with an i-pass, but then avis decides to charge you administrative fees if you use the i-pass (which results in me throwing quarters at every toll booth).

      As for toll roads in general, I think they're more hassle than they're worth. Who normally walks around with $20 in quarters anyway? I did after a week in Illinois.

      --
      Is it true that more people vote for the winner of American Idol, than vote for the president? -Ali G.
    31. Re:Cameras at every toll booth by torkus · · Score: 2, Interesting

      You can't opt out of paying for the roads. Therefore no, he shouldn't be banned.

      If he runs someone over because he's drunk and kills them - toss him in an electric chair and be done with it. The next guy will think VERRRRRRY carefully - not about what BAC he's going to blow but if he's actually OK to drive safely. Some people can drive fine (or nearly enough) with a BAC above .10. Others have issues standing up unaided at or below .04. It varies per person. To make matters worse, studies have shown that distracted driving (cell phone - hands free or not, makeup, newspaper, eating, kids) or driving while tired can be AT LEAST as imparing as being drunk.

      Here's a suggestion - make people responsible for the outcome of their actions. Don't criminalize things if no one is being hurt, inconviniences, or suffering some kind of loss. It seems like a brutal system (let the DUI's go free and kill someone) at first but if we attach REAL penalties that match the ACTUAL loss the dumb people will be weeded out plenty quickly.

      --
      You can get rich if you own a politician, but you have to be rich to buy one in the first place.
  3. Alibis? by goose-incarnated · · Score: 4, Informative

    You've got it the wrong way around - people won't use this to create alibis before committing a crime, they'll use it to establish evidence of the target being in a certain area at a certain time even though he swears he was elsewhere

    At any rate, certain requirements have to be met before something can be introduced as evidence. I'm assuming most things (like this) would, by default, not constitute evidence anyway. Email (at least in this country) needs to be provided along with an audit trail before it's accepted as evidence

    --
    I'm a minority race. Save your vitriol for white people.
    1. Re:Alibis? by Farmer+Pete · · Score: 2, Interesting

      This wont help with Alibis because no court will accept a time stamp and a transponder id as evidence. Who is to say that you were driving the car, or even that someone didn't take your FastPass and drive through with a different car. To be entered into evidence you would have to take the time/id and review the video records to get a car/face match.

      Even if this worked for an alabi like TFA implied, you could get into trouble real quick if you didn't know the final destination of the car. What? You tell the police you went to X? Well the car you gave your ID went to Y. The car also is still driving around town and went through two toll booths while you were in police custody.

  4. Article Text by dfm3 · · Score: 4, Informative

    Between the splash screen redirects and the ads, this article is nearly unreadable. Here's the text for those who don't want to put up with the crap.

    ----
    Drivers using the automated FasTrak toll system on roads and bridges in California's Bay Area could be vulnerable to fraud, according to a computer security firm in Oakland, CA.

    Despite previous reassurances about the security of the system, Nate Lawson of Root Labs claims that the unique identity numbers used to identify the FasTrak wireless transponders carried in cars can be copied or overwritten with relative ease.

    This means that fraudsters could clone transponders, says Lawson, by copying the ID of another driver onto their device. As a result, they could travel for free while others unwittingly foot the bill. "It's trivial to clone a device," Lawson says. "In fact, I have several clones with my own ID already."

    Lawson says that this also raises the possibility of using the FasTrak system to create false alibis, by overwriting one's own ID onto another driver's device before committing a crime. The toll system's logs would appear to show the perpetrator driving at another location when the crime was being committed, he says.

    So far, the security flaws have only been verified in the FasTrak system, but other toll systems, like E-Z Pass and I-Pass, need to be looked at too, argues Lawson. "Every modern system requires a public security review to be sure there aren't different but related problems," he says. Indeed, in recent weeks, researchers announced flaws in another wireless identification system: the Mifare Classic chip, which is used by commuters on transport systems in many cities, including Boston and London. However, last week, the Massachusetts Bay Transportation Authority (MBTA) filed a lawsuit to prevent students at MIT from presenting an analysis of Boston's subway system.

    The Bay Area Metropolitan Transport Commission (MTC), which oversees the FasTrak toll system, maintains that it is secure but says it is looking into Lawson's claims. "MTC is in contact with vendors who manufacture FasTrak lane equipment and devices to identify potential risks and corrective actions," says MTC spokesman Randy Rentschler. "We are also improving system monitoring in order to detect potentially fraudulent activity."

    In the past, authorities have insisted that the FasTrak system uses encryption to secure data and that no personal details are stored on the device--just two unique, randomly assigned ID numbers. One of these is used to register the device when a customer purchases it, while the other acts as a unique identifier to let radio receivers at tolls detect cars as they pass by.

    But when Lawson opened up a transponder, he found that there was no security protecting these IDs. The device uses two antennas, one to detect a request signal from the toll reader and another to transmit its ID so that it can be read, he says.

    By copying the IDs of the readers, it was possible to activate the transponder to transmit its ID. This trick doesn't have to be carried out on the highway, Lawson notes, but could be achieved by walking through a parking lot and discreetly interrogating transponders.

    What's more, despite previous claims that the devices are read only, Lawson found that IDs are actually stored on rewritable flash memory. "FasTrak is probably not aware of this, which is why I tried to get in touch with them," he says. It is possible to send messages to the device to overwrite someone's ID, either wiping it or replacing it with another ID, says Lawson.

    "Access to a tag number does not provide the ability to access any other information," says MTC's Rentschler. "We also believe that significant effort would need to be invested in cloning tags." He adds, "If any fraudulent toll activity is detected on a customer's account, the existing toll-enforcement system can be used to identify and track down the perpetrator."

    Lawson says that using each stolen ID just once would make it difficult to track

    1. Re:Article Text by Bryansix · · Score: 2, Informative

      It is worth noting that the FasTrak system is deployed throughout California and not just in the Bay Area. I have four tollways near my home alone that use the system and I live in Southern California. It is a given that if it is a Toll Road and it is in California that it uses FasTrak. The only exception may be toll bridges.

  5. cameras / scanners by j00r0m4nc3r · · Score: 3, Interesting

    I don't know about California, but in New England they have cameras that can match up a vehicle with a FASTLANE transmitter. It would not be very hard to also hook up license plate scanners. This seems like a crime with very little payoff, and huge chance of getting caught.

    1. Re:cameras / scanners by halcyon1234 · · Score: 2, Interesting

      I don't have the newspaper article on hand, but a couple years ago in Toronto, someone was avoiding tolls on the 407 (Ontario's only toll road). They put their license plate on hinges, and attached a piece of string to it that ran through the car to the front. A tug on the string, and the plate flipped up.

      And he would have got away with it if it wasn't for those meddling-- well, Ontario Provincial Police doing a blitz on the highway specifically looking for speeders, dangerous drivers and toll-evaders.

      --
      UTF-8: There and Back Again
    2. Re:cameras / scanners by dfm3 · · Score: 2, Interesting

      Where I live, it's common for thieves to steal license plates and slap them on their car before committing a crime. It raises far less attention than a car with no plates, and even if bystanders copy down the offending plate number, such information is useless.

      Combine a stolen plate with a stolen ID, and it would be very difficult to track down a one-time offender disregarding something like facial recognition (drive through the tollbooth every day at 8 AM, though, and I'm sure they'd catch on pretty quickly).

      Another loophole is those temporary 30 day tags you get when you purchase a new car. In many states they are not unique, not trackable (in our state they just have a sharpied 6-digit expiration date in big numbers), easy to fake, and nobody thinks twice about them.

    3. Re:cameras / scanners by Rastl · · Score: 3, Informative

      Any obvious physical means to obscure the license plate would be self-defeating.

      Just get some polarizing film and put it over your license plate. Unless the cameras are head-on (which generally they're not) they're going to get a black rectangle where the license plate should be.

      A 'clear' film would be much less likely to attract law enforcement attention than some kind of physical change.

      I believe this kind of thing is illegal but then again if you're going to be using a cloned transmitter I don't see that breaking another law would cause you to lose any sleep.

  6. This is nothing new... by Chineseyes · · Score: 2, Insightful

    When I was a teenager (late 90s) there were a few people selling a device about the size of two bricks that could fool ez-pass by using another person's id. This is why when you sign up for ez-pass you have to give them the make and model of your car as well as your license plate number. They have two cameras on either side of your car pointing at you and numerous overhead cameras when you pass through so I believe any sort of fraud would be pretty difficult to pull off. I'm sure California has a similar setup and if they don't then they better get working on it.

    --
    I think the invisible hand of the market has its middle finger extended

    --A wise old fart named SC0RN
  7. No Authentication = Easy Crime by binaryspiral · · Score: 3, Interesting

    When you have the ability to send the same data over and over again without any form of authentication or obfuscation - yes, it can be copied and used by anyone else.

    There are ways to prevent this:

    Use a rolling code, like my garage door, key fob, and online banking fob uses.

    Use another form of authentication, like color of vehicle, plate number, or something else easily identifiable on the car.

    These are about as secure as my Speedpass fob that I can use to purchase fuel and snacks at Mobil stations. If its stolen, anyone can use it.

  8. As former toll systems programmer... by faragon · · Score: 4, Informative

    Old wireless toll systems didn't event use encryption, such as the case of old Amtech 2.4GHz systems, which are limited to store information similar to a typical ISO Track #2 credit card (PAN, and some other info). However, modern system, such as the CESARE european standard (public information, no revealing secrets here, of course), includes modern security (realtime generated derivate key negotiation, etc.).

  9. California Schemin' by jollyreaper · · Score: 2, Funny

    all the streets are free
    and the highway's no pay
    I've been for a drive
    on a self-made freeway

    My hacks will do the charm
    Cuz I'm in L.A
    California Schemin'
    on a self-made freeway

    --
    Kwisatz Haderach
    Sell the spice to CHOAM
    This Mahdi took Shaddam's Throne
  10. Easily hackable, but a useless hack... by SuperBanana · · Score: 4, Insightful

    ...given that almost all of the toll transponder systems in the US have cameras, and plate recognition is done. I once got a ticket from another state (NY), claiming a plate I had years ago had gone through one of their upstate tollbooths. Also, my father would get notices in the mail from our state's system when he moved the transponder to a vehicle that wasn't registered to use it. So. Useless hack, sensationalist article, film at 11.

    --
    Please help metamoderate.
  11. Roll Eyes by mpapet · · Score: 2, Insightful

    1. How many tolls will be stolen? Too few for anyone in the project to care. They will treat this like "ID theft" and the burden is on you.

    2. How many people are going to want or actually *do* anything TFA suggests. It's a number very close to zero.

    The same kind of thinking applies to most automated transit toll collecting system. No one that could do anything about these issues cares or would be foolish enough to waste budget on corner cases like this. It would be a huge political/professional liability if they did.

    --
    http://www.maxineudall.com/2010/02/should-economists-be-sued-for-malpractice.html
  12. Simple solution by FST777 · · Score: 2, Interesting

    Don't let private companies run these things.

    As a Dutchie, I'm completely stunned at the thought that any government will let privately owned companies run the traffic...

    --
    Free beer is never free as in speech. Free speech is always free as in beer.
    1. Re:Simple solution by quacking+duck · · Score: 3, Insightful

      Maybe other democratic governments aren't quite as corrupt?

      It's amazing to me that you can totally distrust your government to do anything right, yet think that private enterprise overseeing parts of your life is somehow better.

      Okay, so less of your income is taxed. The flip side is that the company isn't accountable to anyone--you can't vote them out! And if they *are* accountable to someone... well guess what, it's probably to government oversight!

    2. Re:Simple solution by AnotherUsername · · Score: 3, Insightful

      I trust the government to do a better job than a private company. Call me crazy, but the private company is in it SOLELY to make money. The government, while making money, would be doing it because it is a job that they are trusted to do fairly, and are held accountable by the people. Companies are held accountable by their shareholders, and will do anything and everything to make money, including screw over the general populace.

      As for your condemnation of the 'promote the general welfare' clause, I ask, why not have these programs? Part of the government's job is to provide a safety net, because, believe it or not, sometimes shit happens. Part of living in a society means helping out others in that society. If someone in your community is needing help, you help them out. Having programs such as Social Security, Medicare, and other programs is so that, when the times get rough, there is something there to help you get back on your feet. This is called COMPASSION for those in need.

      As for the commerce clause - Are you kidding me? Companies are being allowed to EASILY send all their jobs overseas, buying shoddy products from China to be sold here, to pollute as much as their money will let them, to use tax loopholes to screw workers out of benefits they have had for years, and God knows what else. And you think their the government is regulating with an iron fist? On the contrary. The government needs to start regulating commerce much, much more, to ensure that corporations do not trash the world and the people in it, simply for a better bottom line. While there is nothing wrong with a free market, an unregulated free market will bring about the downfall of civilization, and working man will suffer the most because of it.

      As for your Ayn Rand fascination, you probably should know that she is all about herself, and screw everyone else. She was a selfish bitch who didn't give a damn about anyone else except herself.

      And if you were thinking that running red lights is not illegal, and that you have a right to run them, please never drive near me. I'd rather not die because you felt it was your moral right to plow into me at 70 miles an hour.

      --
      I don't like Linux. This doesn't make me a troll.
  13. Anonymous clubs by bugnuts · · Score: 5, Interesting

    Perhaps this can be used to create privacy clubs, where they all travel on cloned cards and all share the bill. Their movements couldn't be tracked via this system as long as multiple people were using it.

    I hope this wasn't posted already... I searched the thread for "Anonymous" and then felt kind of silly.

  14. It's worse than that, Jim! by seanonymous · · Score: 3, Interesting

    When this story first broke a couple of weeks ago, they suggested a far more serious abuse than just taking someone's transponder ID as your own.

    It was suggested that the reading and reprogramming could be accomplished so quickly that one could set up an antenna near a busy highway and read IDs from vehicles while assigning them the ID of the previous vehicle.

    This would result in a huge shuffling of IDs that would be a bureaucratic nightmare for the state and a huge pain for FastTrac's customers. The state is trying to get as many people as possible to adopt this system, and a major hack like that could possibly reverse their momentum.

  15. Summary of Article by lancejjj · · Score: 2, Insightful

    This means you can copy the ID of another driver onto your own device and, as a result, travel for free while others foot the bill.

    Interpretation:

    This means that one can steal services electronically, committing a felony punishable by jail time, while at the same time greatly annoying fellow citizens whose id has been stolen.

  16. Aren't all RFID systems intrinsecally vulnerable? by Brandano · · Score: 2, Interesting

    Even without going all the way to cloning the RFID or transponder apparatus, as long as an invalid code or handshake sequence causes the toll boot to fail you just have to rig a bad copy with a small activation delay to attack a toll boot with a DOS. Go through the toll boot as usual and throw your decoy tag on the roadside and every car going through will fail to activate the receiver. And if you feel particularly devious you just need the device to turn on and off randomly...