Connected Vehicles: A Privacy Analysis

TL;DR

This paper analyzes the privacy risks associated with modern telematics systems in connected vehicles, highlighting potential threats and laying groundwork for future privacy-preserving research in automotive technology.

Contribution

It provides a detailed privacy analysis of a real-world vehicle's telematics system, identifying specific vulnerabilities and potential data privacy concerns.

Findings

Identification of privacy threats in vehicle telematics

Analysis of data transmission and storage practices

Foundation for developing privacy-preserving automotive systems

Abstract

Just as the world of consumer devices was forever changed by the introduction of computer controlled solutions, the introduction of the engine control unit (ECU) gave rise to the automobile's transformation from a transportation product to a technology platform. A modern car is capable of processing, analysing and transmitting data in ways that could not have been foreseen only a few years ago. These cars often incorporate telematics systems, which are used to provide navigation and internet connectivity over cellular networks, as well as data-recording devices for insurance and product development purposes. We examine the telematics system of a production vehicle, and aim to ascertain some of the associated privacy-related threats. We also consider how this analysis might underpin further research.