科学美国人60秒:车门遥控装置是汽车的安全隐患
日期:2016-09-30 11:58

(单词翻译:单击)

2(T=qqfHHDudYWFfA^lSFZzFj@TN)5Y

听力文本

m,KdkanEqxe7m.IpOWsu

This is Scientific American — 60-Second Science. I'm Christopher Intagliata.
Got a minute?
Today's cars have loads of computer smarts built in. Like the chips that allow you, with the push of a button to unlock your car. And as new cars move down the assembly line, automakers program those functions into the car.
"They produce one car and they program a cryptographic secret in it, in order to secure it against thieves." Timo Kasper, a cryptographer and engineer at the security and IT consulting company Kasper & Oswald. "Then comes the next car on the production line and they put the same secrets into the second car. And then comes the third car on the production line and they again put the same secrets into this car. And they repeat this process for millions of cars in the world. And now millions of cars in the world share the same cryptographic secret. Of course, this secret is not so well protected anymore, because it's in every of these million cars, and in every remote control. And this is of course a typical example of how to not do it."

3F2w~)m9rP|

^9NvT|)(nG*Xbn

And yet, he says that's exactly how the Volkswagen Group did do it, for many cars manufactured in the last 20 years. Kasper and his colleagues decoded that shared cryptographic secret by studying the design and operation of chips from VW Group cars and remotes. After hacking the hardware, they were easily able to eavesdrop on and decrypt unlocking signals, clone the remote control and unlock cars. They presented the details August 12th at the USENIX Security Symposium, in Austin, Texas.
Kasper says VW is aware of the problem—and they're not alone. "This is not a VW bug but this is a red line, as we Germans say, through all the automotive industry." In fact, in the same study, they showed that another encryption system used by many other brands, including Ford, Chevy, Nissan and Mitsubishi, has a weak cryptographic algorithm—which, again, allowed the team to break into more than a dozen cars.
Bottom line? It's easier to hack into cars than many drivers might have imagined. So if you want to avoid eavesdropping, the researchers recommend simply ditching remote controls and cryptography, and just go back to the good old metal key.
Thanks for the minute for Scientific American — 60-Second Science Science. I'm Christopher Intagliata.

.0F*woH@o_mco

d2JE][7h!L

参考译文

lwxBx&M;44

这里是科学美国人——60秒科学tiyV9rb9*##TSIMhcmD。我是克里斯托弗·因塔利亚塔,zr7mO(OIF)b
有一分钟时间吗?
现在的汽车配备了大量电脑智能系统^V]Hqgy]sg6o。比如芯片,让你可以一按按钮就打开车门|cc-fx+|Q8。新车从装配线下线时,汽车制作商就已经将这些功能编入汽车jvJ]*.yA5&p4.CoZ3E_t
“汽车制造商每生产一辆汽车,就会在车内编写一个加密程序,目的是确保汽车可以防盗(;6h)3h_3Q。”蒂莫·卡斯珀是卡斯珀和奥斯瓦尔德安全信息咨询公司的密码学家兼工程师4*vA=@@77K|!b&m.。“然后在生产下一辆车时,他们会在这辆车上装上同样的密码系统I^gT|=pa@PTde。在生产第三辆车时,他们会再次装上同样的密码系统W@aVTLdX+XS@dVYq4qjs。他们在全球数百万辆车上重复这一过程lz~7qgLuYm~O-d.。现在全世界有数百万辆汽车拥有同样的加密程序UNaJE+Q=~b@2^G。当然,这个密码系统不再受到较好的保护,因为在这数百万辆车中,每辆车、每个遥控装置中都有这一密码系统4s2Et0AgS%45sK[SLt7m。这当然是个应该避免的典型的例子Fel9NIC[jt=bN|。”
他表示,大众汽车就在对过去20年间生产的汽车上进行了上述操作+D)TgUZrWCm1P&0(E。卡斯珀和同事们通过研究大众汽车和其遥控装置的芯片,解码了车辆共享的密码系统op-N|GsR~Pj&3cn3。在入侵硬件之后,他们很容易能够窃听和解密释放信号,克隆遥控装置解锁汽车a][fDr2ukbFZ1)0es,r。8月12日,他们在得克萨斯州奥斯汀举行的USENIX安全研讨会上公布了具体的信息G+#Yb83Jm@4#K=3T!Opf
卡斯珀表示2=JihlY*8GLC[8s。大众公司已经意识到了这个问题——意识到问题的不仅仅是大众公司XquYHCc_*+6+X5%~。“这不是大众的漏洞,就如我们德国人描述的那样,这是整个汽车行业的红线*Sy2@=fw4E~pLV。实际上,在同一个研究中,他们发现福特、雪弗兰、尼桑、三菱等其他品牌使用的加密算法也有纰漏,这使研究团队再一次成功解锁了10多辆汽车D.(Ux[w.sGZ.OQs.(9W
底线?入侵解锁汽车比许多司机想的更容易K8@Qp-*f4;_+=G-P7H3J。如果你想避免被窃听的话,研究人员建议,只要不使用遥控和加密装置,重新使用传统的金属钥匙就可以了-PG39=32X(D]lnw
谢谢大家收听科学美国人——60秒科学uo;VO0I.C2F,rMh。我是克里斯托弗·因塔利亚塔zcwDb~N=]%g)2EJ=X

P.Cl[U!&(oC,qg

f0NqbMEMX[!ACH(67

译文为可可英语翻译,未经授权请勿转载!

CH2O;.Oh;;*

G&ooSBjVKRvBcUJcuyBd

重点讲解

h^D1xw^-s@kBXWF7pTbz

QTrvO&!!(dRnM1Ei@g=M

重点讲解:
1. in order to 为了;以便;目的在于;
例句:She stepped forward in order to see clearly.
她向前走了一步以便能看得更清楚WVJHy%P8Ru
2. eavesdrop on 偷听;窃听;
例句:German hacker claims to have cracked the encryption that protects most cellphone calls, potentially paving the way for others to eavesdrop on conversations.
一名德国黑客声称破解了保护大部分手机通话的加密编码,使窃听他人手机通话成为可能RIwzo=m8.t=|^Q9!D9[
3. be aware of 注意到的;察觉到的;意识到的;
例句:John has been aware of having done something wrong.
约翰已意识到自己做错了事情+zjCrb^_S%jn#.O
4. break into 强行进入;闯入;
例句:They break into computers and break the phone system. Real hackers call these people crackers and want nothing to do with them.
他们入侵电脑,破坏电话系统M]D;[)MwQ~.Jv|(。真正的黑客叫这些人骇客,而且不想与他们扯上边9KnS%i~tZcvGS
5. hack into (尤指为获取机密信息)侵入,非法进入(他人的计算机系统);
例句:There is no doubt that it is a criminal offence to hack into others' computers and get secret data .
毫无疑问,非法侵入他人电脑获取机密资料是刑事犯罪EB5t,AVL~)K]X6r-T;z

yxsGMDpBgDD

Ldh8Qk+iu8+JC8l[x^W(33SHbTJiFL&ukEk7)+uc7,dOXe
分享到
重点单词
  • remoteadj. 偏僻的,遥远的,远程的,(感情等)距离很大 n
  • controln. 克制,控制,管制,操作装置 vt. 控制,掌管,支
  • potentiallyadv. 潜在地
  • hackn. 劈,砍,出租马车 v. 劈,砍,干咳
  • avoidvt. 避免,逃避
  • criminaladj. 犯罪的,刑事的,违法的 n. 罪犯
  • producen. 产品,农作物 vt. 生产,提出,引起,分娩,制片
  • securityn. 安全,防护措施,保证,抵押,债券,证券
  • recommendvt. 建议,推荐,劝告 vt. 使成为可取,使受欢迎
  • eavesdropvi. 偷听