Skip navigation

Effective October 28, 2019 Duo Security will be transitioning to Cisco's Privacy Statement. View the Duo Privacy Data Sheet.

Industry Events

Duo Tech Talks: Adventures in Automotive Networks and Control Units

What’s a Duo Tech Talk?

Hosted monthly at Duo Security's Ann Arbor office, Duo Tech Talks will cover a variety of topics of strong interest to the local technology community. Speakers will be enlisted both from the local community and subject matter experts from across the country.

Topics will range across the spectrum of computer science and technology, including software engineering, hardware hacking, user experience design, cloud computing, programming languages, computer security, and more!

Adventures in Automotive Networks and Control Units

If you’re in the Ann Arbor area, you’re invited to the second Duo Tech Talk on car hacking, this Friday:

What: Duo Tech Talks: Adventures in Automotive Networks and Control Units
Who: Chris Valasek, Director of Security Intelligence at IOActive
When: Friday, January 17, 2014 @6pm
Where: Duo Office, 617 Detroit St, Ann Arbor MI (map)
Description: Automotive computers, or Electronic Control Units (ECU), were originally introduced to help with fuel efficiency and emissions problems of the 1970s but evolved into integral parts of in-car entertainment, safety controls, and enhanced automotive functionality.

This presentation will examine some controls in two modern automobiles from a security researcher's point of view. We will first cover the requisite tools and software needed to analyze a Controller Area Network (CAN) bus. Secondly, we will demo software to show how data can be read and written to the CAN bus.

Then we will show how certain proprietary messages can be replayed by a device hooked up to an ODB-II connection to perform critical car functionality, such as braking and steering. Finally, we'll discuss aspects of reading and modifying the firmware of ECUs installed in today's modern automobile.

About Chris Valasek, Director of Security Intelligence at IOActive
Chris Valasek (@nudehaberdasher) is the Director of Security Intelligence at IOActive, an industry leader that offers comprehensive computer security services, where he specializes in attack methodologies, reverse engineering and exploitation techniques. While widely regarded for his research on Windows heap exploitation, Valasek also regularly speaks on the security industry conference circuit on a variety of topics. His previous tenures include Coverity, Accuvant LABS and IBM/ISS. He is also the Chairman of SummerCon, the nation's oldest hacker conference. He holds a B.S. in Computer Science from the University of Pittsburgh.

**Did you miss the first Duo tech talk, Dissecting the Android Bouncer? ** View a recording of the presentation here.