Vehicle security

solution
Physically pull a 40amp fuse besides the battery under the bonnet that connects to the spark plugs. Lock the bonnet with a Linear actuators mechanism which is opened with both rfid and ssh pine64 embedded Linux chip , so that the car can only be stolen if the bonnet is cut open with a grinder. The pine64 chip is bolted to the actuator itself which will only allow the it to disengage if the correct password via ssh over a cat5 cable is provided. Both the rfid and pine64 engages the linear actuator, you still have to open the bonnet and insert the fuse back. This is for legal reasons as disabling a vehicle's electronics while moving is illegal in most jurisdictions(legal though in Pakistan). You could be charged with manslaughter if either your or a thief loses control of the vehicle if the electronics is disengaged, you must under no circumstances be able to to cut the electronics or electric current to the spark plugs once the vehicle is operational, whether stolen or not. It is a hassle but basically the most foolproof way of disabling the engine and remaining legal as it is only done if the vehicle is stationary. The fuse is for the spark plugs only, the rest of the vehicles electronics will still work.

alarm
https://news.ycombinator.com/item?id=36759882 from https://news.umich.edu/a-surprisingly-simple-way-to-foil-car-thieves/ links to https://www.youtube.com/watch?v=KGU7zM9agzY&embeds_referring_euri=https%3A%2F%2Fnews.umich.edu%2F&source_ve_path=Mjg2NjY&feature=emb_logo Keyless car theft has been on the rise in recent years. Thieves intercept a nearby key fob's signal and drive away in a matter of minutes. University of Michigan researchers created a device to address this: the Battery Sleuth. The Battery Sleuth provides an extra layer of theft security by linking with the vehicle's battery system. This research was led by: Kang Shin, Kevin and Nancy O'Connor Professor of Computer Science, and the Founding Director of the Real-Time Computing Laboratory, University of Michigan College of Engineering https://web.eecs.umich.edu/~kgshin/ and https://www.wired.com/2015/07/hackers-remotely-kill-jeep-highway/, (https://archive.ph/tDcPD) https://web.archive.org/web/20010206124335/http://www.kapinnovations.com/path.html

- What about a classical mechanical key? I am referring to a laser cut key, the type that can't be easily lock picked, other than in Hollywood movies. The problem is relay theft, where thief's relay the signal of your fob key inside the house to the car via a simple antenna and amplifier system. Cryptographically signing won't help. However, this can be fixed by adding a motion sensor that makes key fobs go into a sleep mode when they have been inactive for a minute. Upmarket car manufacturers like Mercedes have started to add this. The only reason this is not yet widespread as increased car theft is good for car manufacturers. Keyless cars top the list for most stolen cars across the UK, with around 93% of all stolen vehicles in 2020 being taken without vehicle keys. Addressing this stupidity would be the first step. It is like projecting your bank account details and security details on the facade of your building, and then being surprised your bank account is drained. -
 * The modern versions of these keys cannot be cloned

https://rollingpwn.github.io/rolling-pwn/ The persistent rumor, of course, is that this has been cracked for specific models from specific manufacturers, with the help of someone at the dealership, maybe someone who owes large amounts of drug or gambling money to local criminal syndicate types. "All" you'd need to do then is use a valid challenge response pairs off as a cryptographic oracle to brute force the challenge-response algorithm and recover the seed value computation algorithm for the key and the car. Then "all" you need to do is record a challenge-response pair from the real key talking to the vehicle, and maybe the VIN, in order to duplicate the key, in order to steal the vehicle. If this has been been done, the algorithm and seed-value recovery technique have not been publicly shared over the Internet, so it's only a rumor that it's been done, but given how high-tech thieves are these days, I don't consider it outside the realm of possibility. What isn't outside the realm of possibility is the Rolling-PWN attack, which can be done with a $32 device and has been demonstrated against 10 years of Honda vehicles, up to 2022. https://rollingpwn.github.io/rolling-pwn/ ---
 * poster below ref https://www.milenco.com/products/automotive-security/automotive-security-wheel-locks/high-security-steering-wheel-lock won't work, the actual lock isn't cut, but the steering wheel itself. https://freakonomics.com/2010/06/what-car-thieves-think-of-the-club/

The problem with this defense is that it is invisible... the thief will only know about it after they've caused external damage trying to get access to the system. I just use a steering wheel lock, one of those bright yellow chunks of steel that bolts onto the steering wheel:This is visible to the theif and just raised the theft effort from "jump these cables just behind the headlight" to "jump these cables behind the headlight and then use a loud angle grinder in a very enclosed space". I'm in a residential area, this is a strong deterrent and avoids the initial damage being done to the car.PS: Some sports cars kill their CAN when the car is turned off... but we do insist on keyless entry and this is what we get for it.

In the UK in WW2 for a period of time everyone had to disable their vehicles when unattended by removing the rotor arm https://www.britishpathe.com/asset/47622/ - I used to drive an old ratty Subaru Impreza which was at one point meant to become a racecar (it never did) so the previous owner had removed the key ignition system. Never had it stolen because in lieu of a key it used an obscure sequence of flipping unlabeled switches in a specific order (power, fuel, ignition, then crank) to get it to start. Security through obscurity! -

- I knew someone with a pickup truck where he wired a light switch into the fuel pump and hid it under the steering column. The truck would be stolen something like 5 times a year and every time he would find it abandoned a km or so away when the gas in the line ran out.

I did similar, except wired into the ignition circuit and with the control being a little cheap ebay RFID thing with the sensor on the underside of the dash. I kept a little RFID tag on my keys, chuck my keys up onto the dash when i'm ready to go and the truck is started with a pushbutton. I also put a cheater switch in the glove box in case i forgot my RFID tags. In my case it was motivated more by maintenance headache - the mechanical linkage that went from the ignition switch to the ignition control device at the base of the steering column was busted and I was too cheap to buy another one and it was a pain to replace. Project trucks that nobody can drive but you are the best trucks, IMO. -- I wired the cigarette lighter socket in my old MR-2 so that, if the lighter wasn't pushed in, the fuel pump would work for the first half mile. Then, the gas gauge would go to zero and the car would stall. Bonus: I kept a second cigarette lighter in the car with its heater removed, so I could leave it in the socket and there's no way to disable it (unless you brought your own cigarette lighter). Of course, my system was just a bit flaky, and time and again I'd be on the highway, desperately pumping the lighter trying to keep the car going. I ended up yanking the whole shebang. Same car had an alarm system, which over the years got triggered several dozen times by yours truly. The one time someone else triggered it by bumping my car, I came outside and thanked them. ---

Vehicle detection

 * https://www.youtube.com/watch?v=MQTHcKgDRto  vehicle detection with inductive coil from  http://www.chemelec.com
 * http://www.instructables.com/id/Vehicle-Immobilizer/?ALLSTEPS Immobilizer

Truck theft
http://www.gizmag.com/volvo-trucks-tackle-roadside-pirates/13003/?utm_source=Gizmag+Subscribers&utm_campaign=3a99ce2838-UA-2235360-4&utm_medium=email

''“I’d stopped at a lay-by on the border with Belgium to have a nap. Both my mobile phone and alarm clock were set to wake me up at five, but I heard nothing,” he says. Not really so strange bearing in mind that the robbers had sprayed gas through the side window that Seufert had left open to let in fresh air. When the French police arrived, they explained that he’d been lucky – it was his open window that ensured his survival. If the gas had not been diluted by the fresh air, he could have died inside his cab.''