crowmoor.se

BBC ran an interesting article today regarding how easy it is to take control of a car even when it is in motion. The scientists says that it is a rather difficult attack for the common man but something we all learned is that when it is hard in the beginning soon enough there will be a tutorial on YouTube and exploit code to download at different sites.

So, what’s the problem from an architectural point of view? This is a quite easy one actually. If you have an application that communicates someone will try to communicate with it. There for you need to implement secure coding. Any application will at one point attract a malicious user’s attention and if you are not writing secure code…you are history.

In this specific case we could have a rather interesting situation when it comes to insurance fraud. “I swear, the breaks didn´t work anymore. The car must have been hacked! BTW my laptop was lost in the crash. It must have flown out the window and disappeared with an elk.”

So Writing secure code (read the book) and implement SDL: Secure Development Lifecycle (read this as well) is something you have to do in all projects from now on. To use one of my favorite commercials: Just do it!