Is your point that you’re more likely to experience security vulnerabilities when using FOSS? Cause past a certain point of development that’s not generally the case.
Perhaps they simply mean they don’t want it internet connected at all. If it needs updates, have it be a device, USB or OBD or something, that would be the only vector for updates/direct OS control. Sure, allow internet for some features maybe, but isolate updates and the anything serious from remote tampering.
I’m from an era where jailbreaking and installing whatever you’d like on a device was the wild west, and have seen nasty stuff accidentally sideloaded. Giving people the option to infect their cars with ransomware could get people killed, so not opening that can of worms isn’t the worst idea necessarily. That said, FOSS stuff is usually fine, but I highly doubt it would be a fully encompassed ecosystem that you’d be installing. It’ll have add-ons, other smaller projects. Tweaks. That’s where you’ll get into trouble.
And this is why the end user should be able to jaikbreak cars. Has anyone made an open source software for cars anyways?
Yes, absolutely. I do not, however, like the idea of “Pay us $1M or we disable your brakes on the highway” kind of ransomware attacks.
Is your point that you’re more likely to experience security vulnerabilities when using FOSS? Cause past a certain point of development that’s not generally the case.
Perhaps they simply mean they don’t want it internet connected at all. If it needs updates, have it be a device, USB or OBD or something, that would be the only vector for updates/direct OS control. Sure, allow internet for some features maybe, but isolate updates and the anything serious from remote tampering.
speeduino is an open source ecm
I’m from an era where jailbreaking and installing whatever you’d like on a device was the wild west, and have seen nasty stuff accidentally sideloaded. Giving people the option to infect their cars with ransomware could get people killed, so not opening that can of worms isn’t the worst idea necessarily. That said, FOSS stuff is usually fine, but I highly doubt it would be a fully encompassed ecosystem that you’d be installing. It’ll have add-ons, other smaller projects. Tweaks. That’s where you’ll get into trouble.