Toyota Prepping PASTA for its GitHub Debut

  /     /     /  
Publicated : 23/11/2024   Category : security


Toyota Prepping PASTA for its GitHub Debut


Carmakers open source car-hacking tool platform soon will be available to the research community.



The lead developer behind Toyotas new cybersecurity testing tool said the carmaker plans to make its so-called PASTA (Portable Automotive Security Testbed with Adaptability) available via GitHub as early as next month or April.
Tsuyoshi Toyama, senior researcher at Toyota InfoTechnology Center, told Dark Reading that he and his team are currently working on getting the PASTA specifications ready for availability online, and plan to offer as open-source the platforms specs, CAN (controller area network) ID maps, ECU (engine control unit) program codes, and ECU circuit diagrams for vehicle testing. He says Toyota also hopes to offer PASTAs driving simulator programs as open source, as well.
PASTA is an open-source testing platform for researchers and budding car hackers. Toyotas Toyama and colleague Takuya Yoshida
first revealed and demonstrated PASTA
in December at Black Hat Europe in London. The open source tool represents a major shift for automakers, which traditionally have rejected or ignored vulnerability research on cybersecurity weaknesses in modern vehicles.
Toyotas demonstration of the car-hacking tool and announcement that it would open-source the specs were widely welcomed by the security research community, which long has relied on researchers with little to no car engineering knowledge tinkering with the communications and software elements of vehicles to root out security flaws.
But unlike the renowned live, moving-car hacking research conducted by Charlie Miller and Chris Valasek, Toyotas PASTA tool is for simulated car hacking. The platform simulates the remote operation of a vehicles wheels, brakes, windows, and other features to let researchers learn more about the electronic communications features and find vulnerabilities and test exploits.
The 8kg and portable tool built by Toyota resides in a steel attaché case, and the carmaker plans to also sell it as a hardware and software platform, initially in Japan. It contains four ECUs, ODBII and RS232C ports, as well as a port for debugging or binary hacking, and features LED control panels that the user can set to run tests or exploits. Its small and portable so users can study, research, and hack with it anywhere, Toyama explained during the PASTA demonstration at Black Hat Europe.
PASTA also can be used by automakers in R&D to test how certain features added to real vehicles could affect the security of the vehicle, for example. PASTA could also be used for educators teaching car security, Toyama said.
Toyama will demonstrate
PASTA next month at Black Hat Asia
in Singapore.
Related Content:
Miller & Valasek: Security Stakes Higher for Autonomous Vehicles
 
This Time, Miller & Valasek Hack The Jeep At Speed
 
State Trooper Vehicles Hacked
7 Real-Life Dangers That Threaten Cybersecurity

Last News

▸ Website hacks happened during World Cup final. ◂
Discovered: 23/12/2024
Category: security

▸ Criminal Possession of Government-Grade Stealth Malware ◂
Discovered: 23/12/2024
Category: security

▸ Senate wants changes to cybercrime law. ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Toyota Prepping PASTA for its GitHub Debut