This is tautologically true. However, the car manufacturers haven't even tried.
They had the same default password for every car. Then they had wireless systems that were vulnerable to replay. Then they had wireless systems that were vulnerable to relay. etc.
The wireless systems on cars need two things: encryption and time of flight detection. The problem is that adds a couple dollars of cost per car and will lock out users some amount of time inversely proportional to the development cost (which the car manufacturers will shirk on so the system will suck). So, no manufacturer will do it short of being forced by legislation.
From an engineering point of view, the main limitation is the battery in the keyfob. If you interrogate the keyfob too often, it will drain the battery and consumers will complain.
This is tautologically true. However, the car manufacturers haven't even tried.
They had the same default password for every car. Then they had wireless systems that were vulnerable to replay. Then they had wireless systems that were vulnerable to relay. etc.
The wireless systems on cars need two things: encryption and time of flight detection. The problem is that adds a couple dollars of cost per car and will lock out users some amount of time inversely proportional to the development cost (which the car manufacturers will shirk on so the system will suck). So, no manufacturer will do it short of being forced by legislation.
From an engineering point of view, the main limitation is the battery in the keyfob. If you interrogate the keyfob too often, it will drain the battery and consumers will complain.