logoalt Hacker News

varenctoday at 1:01 AM8 repliesview on HN

From the article

> Tesla offers a “Root access program” on their bug bounty program. Researchers who find at least one valid “rooting” vulnerability will receive a permanent SSH certificate for their own car, allowing them to log in as root and continue their research further.

Pretty interesting. Sounds like Apple's Security Research Device Program[0], where you're loaned a rooted iPhone, but with a clear qualification criteria.

It strikes a nice balance, because to qualify you have to 1) show you have the skills to get root access anyway and 2) show you're willing to participate in the bug bounty program and get things patched.

I would of course love root on everything I own, but I can understand Tesla's motivation here since root for everyone would make vulnerability discovery easier for malicious actors. And if everyone had root on their Tesla, it'd be much easier to make naughty modifications that might catch the ire of regulators. (like disabling driver attentiveness checks in self-driving mode).

[0] https://security.apple.com/research-device/

Replies

jordanbtoday at 4:34 AM

> Researchers who find at least one valid “rooting” vulnerability will receive a permanent SSH certificate for their own car

It feels like this is something you should get by being owner of the car, and not have to do free speculative research for the manufacturer to get it.

show 8 replies
xyzzy123today at 2:29 AM

Having shell is extremely handy for further discovery. SO handy that if they were just gonna patch the bug and lock you out, you would simply not disclose it.

fomine3today at 3:26 AM

If they don't give root, researcher may have incentive to keep vuln secret for root access. Looks reasonable.

EquallyJusttoday at 4:33 AM

It's a mixed bag. This only applies to the infotainment system and not the autopilot computer.

They've also revoked certificates from researchers personal cars in the past

dosticktoday at 5:27 AM

That’s quite a weak confidence in their own platform security if finding a root level vulnerability is not one-off event, but it’s a program expected to have multiple people routinely finding those.

show 1 reply
noosphrtoday at 7:13 AM

Imagine having to hack your device, then having to submit a request to actually own it.

otabdeveloper4today at 7:13 AM

The interesting part is this implies that Tesla cars have static certifcates that don't rotate. (Whoops.)

show 3 replies
Trastertoday at 9:15 AM

And as we all know, if you're smart enough to get root access, your neighbours children playing football in the street should be subject to the risk of you driven a car that claims to have full self driving with custom code on it.