Slashdot Mirror

← Back to Stories (view on slashdot.org)

Toyota Black Box Data Is More Closed Than Others'

Posted by timothy on from the in-the-dark dept.

wjr writes "Many cars these days contain black boxes that record information (speed, accelerator position, etc) and can preserve information in the case of an accident. Ford and Chrysler say that they use 'open systems' so anyone can read out the data; General Motors has licensed Bosch to produce a device capable of reading its cars' black boxes. On the other hand, Toyota has only a single laptop in the US capable of reading its cars' black boxes, and generally won't allow the data to be read without a court order. Honda seems to have a similar policy. This is emerging as an issue in the investigation into unintended acceleration."

27 of 276 comments (clear)

  1. A challenge... by plover · · Score: 4, Insightful

    Wouldn't it be grand if the guys who hacked Ubisoft's latest game took on this challenge instead?

    And it would be covered in extra-special awesomesauce to see the code posted to SourceForge.

    --
    John
    1. Re:A challenge... by jamesh · · Score: 5, Funny

      Wouldn't it be grand if the guys who hacked Ubisoft's latest game [slashdot.org] took on this challenge instead?

      It would be nice, but it's impossible. They'd have to be some sort of elite uber-hacker to even attempt such a challenge.

      Absolutely impossible.

      Not a hope in hell.

      Can't be done.

    2. Re:A challenge... by ipquickly · · Score: 4, Funny

      their first line of defense is security by obscurity

      I think their first line of defense is knaji, hiragana, and katakana.
      That leaves over 97% of the world out of the loop.

    3. Re:A challenge... by Anonymous Coward · · Score: 5, Insightful

      The only hack I'm interested in is one that disables the system. I consider these "black boxes" a massive invasion of privacy and in no way benefit me personally. Yes I know the argument would be what if I'm the victim in an accident wouldn't I want the courts to access the other guy's black box? The same argument can be made for recording phone calls and other invasions of privacy. You'd have to accept all privacy is bad. I don't wish to live under a microscope. I'm tired of people giving away my freedom because they think it makes them safer. all it does is make you less free. I should be able to drive to the store without a record of it being kept in my car. Already most of my purchases are tracked so now my location is tracked as well? I know so far the information is hard to access but the government is pushing for more and more access to the information. Eventually the info will be provided for things like divorce court. Do I have something to hide? That isn't the point the point is do we all want to live where we have to second guess how our actions will be interpreted later?

    4. Re:A challenge... by Idiomatick · · Score: 4, Funny

      I don't think a hacker really gives a shit if a variable is named "carSpeed" or named " " ... well, unless the hackers are the same people that made /.

    5. Re:A challenge... by Z00L00K · · Score: 5, Insightful

      Just wait - soon it will be a legal requirement to log a lot of parameters in a format that can be read.

      --
      If builders built buildings the way programmers wrote programs, then the first woodpecker would destroy civilization.
    6. Re:A challenge... by fyrewulff · · Score: 4, Informative

      Car black boxes cannot be used to track where you've been. Not only do they not record positional data, they also only record a buffer of about 10-15 seconds. By the time you pull off the highway and get to your house, everything you've done prior in the day (or since you've gotten on the highway) has already been pushed off the stack.

      Not only that, the actual scene data (skidmarks, etc) are much more valuable to accident reconstruction and investigation than the black box. It's only a small bit of data they can use, it can't be the sole one. Especially if for example, the car gets rolled over - even if it happened at 40mph, the free spinning wheels would show that the car suddenly went from 40mph to 80mph..

      --
      "We need to get over this notion, that, for Apple to win... Microsoft must lose." - Steve Jobs, 1997
    7. Re:A challenge... by wiredlogic · · Score: 4, Insightful

      Toyota's systems have over a 100 million lines of code:

      Frankly, that statistic doesn't make much sense. In the article it's just a BS number that shouldn't have been quoted by the hack writer and it isn't even referring to Toyota. The rank and file microcontrollers that do most of the work in a modern car can't possibly have that much source code in them. The only place where a large amount of source code could be involved is for advanced accessory functions like entertainment, communication, and navigation systems. Those should all be properly isolated from the critical systems needed to operate the car safely. The Mercedes is stated to have 20M LOC and I'd bet the farm that 90% of that is in non-critical components. It's even less likely that a generic Toyota like the Camry has anywhere near that much code in its computers. Come on mods. If you can't even follow the links at least use your brains.

      --
      I am becoming gerund, destroyer of verbs.
    8. Re:A challenge... by timmarhy · · Score: 4, Informative
      what makes you think it's simple? there would be literally 100's of sensors connected to inputs/outputs on multiple logic boards throughout the car, all these sending encrypted/obfuscated data to the blackbox. the data itself could well be so complex you wouldn't know real data from the obfuscated data.

      i've done software that reads outputs from lab insturments and from onboard computers on haul trucks before, and it can be very very hard even with the manual to the instrument, let alone someone actively trying to prevent anyone decoding the data.

      --
      If you mod me down, I will become more powerful than you can imagine....
    9. Re:A challenge... by ortholattice · · Score: 5, Insightful

      Not only that, the actual scene data (skidmarks, etc) are much more valuable to accident reconstruction and investigation than the black box. It's only a small bit of data they can use, it can't be the sole one. Especially if for example, the car gets rolled over - even if it happened at 40mph, the free spinning wheels would show that the car suddenly went from 40mph to 80mph..

      I don't disagree actual scene data isn't essential, but the example you picked is a highly useful supplement to that data. If the speed suddenly increases from 40 to 80, obviously that happened at the instant the tire lifted off the road, since it is physically impossible for the car to accelerate from 40 to 80 suddenly.

      So, from the black box data we now have a record of exactly when the tire left the road, plus we have the speed of the car just before the accident happened (which would be more accurate than a skid mark estimate, esp. if the road was icy or slippery), and we have the fact that the driver's foot (or in Toyota's case possibly the computer) was pressing the accelerator since otherwise it wouldn't have sped up to 80. So what was the driver trying to do at the instant of the accident, and why were both the brake (skid mark) and accelerator (sudden tire speed up) being pressed simultaneously, etc.?

      Combining black box data with the scene data could provide a far more accurate reconstruction of the accident than scene data alone. Of course it doesn't replace the accident scene data - no one is saying that the scene data should be ignored, as your straw man argument seems to imply. .

    10. Re:A challenge... by ras · · Score: 5, Insightful

      No, no. That is not the relevant quote. This is:

      some Mercedes drivers found that their seats moved if they pushed a certain button; the problem was that the button was supposed to operate the navigation system.

      If the systems aren't isolated, it doesn't matter what the code is supposed to control. For example, if the internal light control just sends control signals across a CAN bus which is also connected to the ECU, the software (say via a memory overflow error) could write the wrong address onto the bus and send throttle information by mistake.

      Jesus. That scares the shit out of me.

    11. Re:A challenge... by JamesP · · Score: 4, Funny

      so it's probably written karuSpeedu or something...

      --
      how long until /. fixes commenting on Chrome?
    12. Re:A challenge... by brufleth · · Score: 4, Insightful

      What does the number of lines of code have to do with reading the fault log out of non volatile memory?

  2. Heh by Airdorn · · Score: 4, Insightful

    Lol @ the recent mysterious deluge against Toyota.

  3. Time must have changed. by sumdumass · · Score: 4, Insightful

    It seems like it was only yesterday when people were complaining that the black box data was there in the first place. Then came along the complaints on how it was being used against people in courts and in accident investigations. Then the complaint was that only certain people could get the information and you couldn't get it to clear your name or anything- even in one case where I believe the prosecutor got the information and decided it was worthless and tossed it (may be wrong on that).

    Now, it seems that everything happening that would have caused a complaint is good and those not allowing it to happen is bad. Go figure.

    1. Re:Time must have changed. by fuzzyfuzzyfungus · · Score: 5, Insightful

      The status quo is a powerful thing. Once something Just Is people start treating it as a baseline.

      More specifically, though, is complaining about information asymmetry at all unreasonable? If the black box is present, why shouldn't I object to the fact that I, the owner of the vehicle, have no access to its contents; but those who have more power than I do do? There are substantial virtues to privacy and substantial virtues to transparency(in certain contexts); but asymmetric transparency is basically the worst of both worlds.

    2. Re:Time must have changed. by Weirsbaski · · Score: 5, Insightful

      It's not as inconsistent as you'd think- if the owner of car wants the blackbox data, she should get it, no problem. If anybody else wants the data, let 'em either ask the owner to voluntarily go along with it, or ask a judge for a court order (with appropriate legal conditionals so the judge can't just rubberstamp it).

      --

      I am not a sig.
  4. Re:Mr Toyota-san, Tear down this Interface! by Rakshasa+Taisab · · Score: 4, Insightful

    Why would it be a good idea? I thought slashdot was all gung-ho about protecting people's privacy?

    If there really was a case of an accident caused by unintended acceleration then a court order would be piece of cake to get.

    --
    - These characters were randomly selected.
  5. It could be that Toyota is just being responsible by OrwellianLurker · · Score: 4, Interesting

    Toyota ... generally won't allow the data to be read without a court order.

    All it takes is a court order. So essentially the only thing slowing the investigations would be an unwilling Federal government.

    --
    'Political power grows out of the barrel of a gun.' - Mao Tse-tung
  6. Re:Mr Toyota-san, Tear down this Interface! by fuzzyfuzzyfungus · · Score: 5, Insightful

    I'm not entirely clear on how not having access to one of the computers in a piece of my property, or even knowing exactly what it does, protects my privacy...

    Some sort of scheme for compulsory(or even many flavors of "optional") collection of black box data would, indeed, be a huge privacy violation; but that isn't the proposal.

    This is a system embedded in the car, to which you need physical access to connect. Anybody who could get to that box could plant a GPS+accelerometer bug on your car considerably more easily. Documentation for reading the black box would give the owner of the system more control and information(and, who knows, maybe even let third party mechanics break the dealer grip on certain services) without notable privacy implications.

  7. Re:Let's nip this Toyota bashing in the bud by jhoegl · · Score: 4, Insightful

    You know what? When all these "sudden recalls" came out from Toyota once their acceleration issue came to light in the media, it indicates to me one thing.
    Toyota has been holding back a lot of recalls at the expense of customer safety.
    So champion Toyota all you want, and come up with a conspiracy theory that the USA gov is behind this whole thing.
    It indicates to me Toyota was playing with fire and now they got burned. Nothing more, nothing less.

  8. Re:Let's nip this Toyota bashing in the bud by Lehk228 · · Score: 5, Interesting
    those failing tires? were made by bridgestone/firestone, a japanese company.

    and the pinto?

    However, a 1991 law review paper by Gary Schwartz[17] claimed the case against the Pinto was less clear-cut than commonly supposed. The number who died in Pinto rear-impact fires, according to Schwartz, was well below the hundreds cited in contemporary news reports and closer to the twenty-seven recorded by a limited National Highway Traffic Safety Administration database. Given the Pinto's production figures (over 2 million built), this was not substantially worse than typical for the time. Schwartz argued that the car was no more fire-prone than other cars of the time, that its fatality rates were lower than comparably sized imported automobiles, and that the supposed "smoking gun" document that plaintiffs claimed showed Ford's callousness in designing the Pinto was actually a document based on National Highway Traffic Safety Administration regulations about the value of a human life rather than a document containing an assessment of Ford's potential tort liability.

    --
    Snowden and Manning are heroes.
  9. "voluntary" == gun to head by Anonymous Coward · · Score: 4, Interesting

    Hah. In most cases "voluntary" means doing something with a gun to your head.
    Want insurance (which you're required to have)? Better "voluntarily" open up that black box data.
    Want to not be arrested? Better "voluntarily" open up that black box data.
    Want to get your emissions checked? Better "voluntarily" open up that black box data.
    Want to get a license for that car? Better "voluntarily" open up that black box data and let us connect it to an auto-ticketing device.

    And so on....

    The problem is a lot of "voluntary" things quickly become non-voluntary (i.e. forcibly waived) if you are to get standard services.

  10. Are Flight Data Recorders mandatory? by jayveekay · · Score: 4, Insightful

    I'm guessing that Flight Data Recorders are mandated by law for commercial aircraft. I would say that the information that they have provided over the years has been very helpful in improving the safety of air travel.

    How many people were killed last year in aircraft accidents? Hundreds would be my guesstimate. How many in car accidents? Tens of thousands would be my guess. If there are a lot of people being injured in car accidents then it would seem very useful (from an economic retrun on investment perspective) to start making data recorders both mandatory and have them record specific information in a published standard format, with the goal being to better understand accident causes and improve auto safety.

    1. Re:Are Flight Data Recorders mandatory? by b4dc0d3r · · Score: 4, Insightful

      I agreed with you initially. Then I realized that air travel is a completely different problem, requiring a different solution. Try to justify your position and you'll see what I mean. Here's what I came up with, basically it would be an edge case, return on investment is going to be negative, that's why it's not already a law.

      A 1985 study by K. Rumar, using British and American crash reports as data, found that 57% of crashes were due solely to driver factors, 27% to combined roadway and driver factors, 6% to combined vehicle and driver factors, 3% solely to roadway factors, 3% to combined roadway, driver, and vehicle factors, 2% solely to vehicle factors and 1% to combined roadway and vehicle factors.... A 1985 report based on British and American crash data found driver error, intoxication and other human factors contribute wholly or partly to about 93% of crashes

      If 57% of the accidents in airplanes were caused by the passengers, we would not have even thought about black box recorders. Roughly 10% of accidents (not deaths) have the vehicle as a factor, and only a portion of those are fatalities.

      Given that lots of people have problems with GPS and SpeedPass systems, how would you explain your desire to log everything a vehicle did just to catch a few data points in the off chance it's helpful? When a plane goes down, you don't have options like pulling over to the side of the air, or pointing towards an uphill slope to slow you down, or moving it into neutral, or other tricks - you can only hope you're near water. The people are likely to die, leaving no explanation of what happened. Driver deaths are much less likely due to safety features of the car, and the car generally not leaving the ground, so you usually have someone who can describe what went wrong. That's really where this idea falls apart - air incidents are very rare, but much more likely to result in total loss of anyone who can intelligently report on the event, proving the need for data recorders.

      It's not the number of deaths which is important - the question is, how many of those could be prevented with additional logging? Evidence points to a much smaller number than you might think. Going with the other replies, 40,000 every year at 10% gives roughly 4,000 events where the vehicle is part of the problem. How many of those are mechanical vs. electronic? I'm going with a small percent, simply because of things like tire underinflation, or other maintenance issues which could also be rectified.

      So you'd have to analyze the logs of every car crash, to see if anything strange happened or identify trends. Who's going to do that? Otherwise you let the logs die with the car, and wait until a mystery pattern like this emerges. We might see a problem faster, and identify the cause faster, but all of this time and money and effort prevents how many crashes? GM just did a recall for around 10 crashes with 1 fatality. All of this *might* have saved one person's life for that particular issue. What's the return on investment there?

      In short, your proposal is the equivalent of the proctologist giving you an oral exam - it's good information to have, but useless in almost every case.

  11. And the other challenge... by BrokenHalo · · Score: 4, Insightful

    ...namely that million-dollar reward for finding the cause of unwanted acceleration is probably fairly safe if nobody will reveal their source code.

    It would be interesting if this flushed a few Real Programmers out of the woodwork, but most of them are in retirement, fly-fishing for salmon by now.

  12. Surprising by theArtificial · · Score: 5, Funny

    Will Toyota stop at nothing?!

    --
    Man blir trött av att gå och göra ingenting.