• 1 Post
  • 30 Comments
Joined 2 years ago
cake
Cake day: July 9th, 2023

help-circle



  • The companion post, I Went To SQL Injection Court, goes into detail about the court process and witness testimony. One of the interesting things is just how different computer people think about security vs lawyers. Somebody might say that having a schema would help a malicious actor a small amount, and a lawyer will jump on that to deny the request. The idea that the schema would help a malicious actor is the same as a map helping a bank robber. The vault security and security guards are the relevant factors for this, not the map.

    I’ll keep this in mind the next time I’m an expert witness in a computer case (based on this, I hope I’m not.)














  • It’s possible, but it costs money to design the hardware so it’s accessible, it has to use a connector which has to be robust against vibrations (is m.2 robust?), then there needs to be a standardized protocol to communicate with the card. Does the car computer need to know how to authenticate against the cell network or does the card? Is it industry standardized or specific to the manufacturer? All kinds of things need to be designed and car manufacturers have no reason to invest in they.