Posted by Doug Walmsley on December 10, 2013 at 8:30am
I have some real concerns about this article. Although this article talks about commercial hijacking, I feel this could very well happen to me and other hobbyists. And what can DIY Drones help develop to reduce this probability?
I was less concerned about the lunacy of companies to produce a viable delivery system and more concerned with the security of my hobby/investment. I believe the discussion should refocus on processes and methods all hobbyists and developers need to research, develop, and incorporate into drones to mitigate intentional and unintentional control by anyone other than the pilot.
Not sure how anyone else's feel about this. I certainly do not desire to be caught up in any legal (criminal or civil) action not loss my drone by the actions cause by others because it was open and hack-able.
Why not a encryption pairing process to create a security layer between radio, receiver, and APM?
And to minimize radio interference/jamming, untilize radio systems that already incorporate frequency hopping to minimize interference from other RC radios.
Two distinct security layers should help to avoid lossing your drone and getting caught up in court appearances.
Book delivery isn't the point. The point is that 'Delivery' will happen in some form. Now, the Goal is Declared. The reason to announce the goal before it is real is to find all the holes and plug them so it becomes REAL. That is what will happen. In the early 1960's it was announced to set a Man on the Moon at a time we were blowing up rockets on the launch pad.
i really think all these company's coming out with drone delivery ideas is ludicrous , especially delivering books , the one medium that can easily sent via wireless anywhere in the planet in a matter of seconds , why put a 1kg book on a bloody helicopter risking public safety and wasting a huge amount of resources that a simple ebook upload and download could solve in the time it takes to digitise paper and upload it , as for hacking into drones well, this can be done a number of ways , simply sending a fake gps signal to our big gear is enough to take them out ,at the end of the day we are sending unencrypted signals that can be spoofed and "hacked" this will always be a problem even an encrypted signal can be hacked ,2.4ghz wifi signals being one of the easiest, but who is controlling their $5k octi with wifi??
Isn't the AR Drone simply just an unsecured WIFI network? Why is that so impressive of a hack? I get it, the guy is a legit hacker but seriously? What's the big deal? AR Drones are nothing more then glorified toys in comparison to the real deal R/C quads we fly, right?
One of the main ways of mitigating risk will be the use of the only frequencies that UA will be allowed to use in the future. The WRC is busy allocating them. You won't be able to spot them on almost household gear then.
I've seen this news story before, and it's highly sensational. It reminds me of the story of how somebody figured out how to hack into a car's computer system and take control and possibly make you crash. What wasn't prominent in the article was the fact that it could only be done via wired connection. So yes, if you let a hacker sit in your passenger seat with a laptop while you drive around, he could cause you to crash. Or he could simply grab the steering wheel and make you veer off-course, but that doesn't make for a very interesting news story.
Anyway, this hack is SPECIFICALLY restricted to the AR.Drone.
So yes, if the thought of an army of 1lb foam drones, that have a range of about 5 minutes (?), can't fly in 20mph winds, and that can be defeated with a badminton racket scare you, then you have reason to be afraid. ;)
However, in a general sense, the idea that any drone which is being controlled by computers could be hacked really isn't a surprise.
I am concerned about the fact our telemetry link is completely unprotected. Somebody can take control of our drones simply by scanning the airwaves, finding your NetID, and then jumping onto that NetID and start sending out "Disarm" commands. It's not even a hack, really, could probably done by your average 8 year old.
Comments
If there is some way to steal something.... then someone is going to do it...period.
So if there is goods flying around......... oh wait, I finally have a retirement plan :)
I find this post interesting.
I was less concerned about the lunacy of companies to produce a viable delivery system and more concerned with the security of my hobby/investment. I believe the discussion should refocus on processes and methods all hobbyists and developers need to research, develop, and incorporate into drones to mitigate intentional and unintentional control by anyone other than the pilot.
Not sure how anyone else's feel about this. I certainly do not desire to be caught up in any legal (criminal or civil) action not loss my drone by the actions cause by others because it was open and hack-able.
Why not a encryption pairing process to create a security layer between radio, receiver, and APM?
And to minimize radio interference/jamming, untilize radio systems that already incorporate frequency hopping to minimize interference from other RC radios.
Two distinct security layers should help to avoid lossing your drone and getting caught up in court appearances.
Thoughts?
@ robincfey
Book delivery isn't the point. The point is that 'Delivery' will happen in some form. Now, the Goal is Declared. The reason to announce the goal before it is real is to find all the holes and plug them so it becomes REAL. That is what will happen. In the early 1960's it was announced to set a Man on the Moon at a time we were blowing up rockets on the launch pad.
Robots are now emerging. The age of the Machine.
The real concern for gps guided drones is gps spoofing.
http://www.rawstory.com/rs/2013/08/04/watch-how-gps-spoofing-can-ta...
is only one such discussion.
I seem to recall thats how Iran catured one of the US drones.
I don't think delivering books is the killer app...
I think delivering insulin is.
Or Big Macs.
Or Big Macs until you become a diabetic, then insulin.
http://rt.com/usa/texas-professor-drone-hacking-249/
i really think all these company's coming out with drone delivery ideas is ludicrous , especially delivering books , the one medium that can easily sent via wireless anywhere in the planet in a matter of seconds , why put a 1kg book on a bloody helicopter risking public safety and wasting a huge amount of resources that a simple ebook upload and download could solve in the time it takes to digitise paper and upload it , as for hacking into drones well, this can be done a number of ways , simply sending a fake gps signal to our big gear is enough to take them out ,at the end of the day we are sending unencrypted signals that can be spoofed and "hacked" this will always be a problem even an encrypted signal can be hacked ,2.4ghz wifi signals being one of the easiest, but who is controlling their $5k octi with wifi??
One of the main ways of mitigating risk will be the use of the only frequencies that UA will be allowed to use in the future. The WRC is busy allocating them. You won't be able to spot them on almost household gear then.
I've seen this news story before, and it's highly sensational. It reminds me of the story of how somebody figured out how to hack into a car's computer system and take control and possibly make you crash. What wasn't prominent in the article was the fact that it could only be done via wired connection. So yes, if you let a hacker sit in your passenger seat with a laptop while you drive around, he could cause you to crash. Or he could simply grab the steering wheel and make you veer off-course, but that doesn't make for a very interesting news story.
Anyway, this hack is SPECIFICALLY restricted to the AR.Drone.
So yes, if the thought of an army of 1lb foam drones, that have a range of about 5 minutes (?), can't fly in 20mph winds, and that can be defeated with a badminton racket scare you, then you have reason to be afraid. ;)
However, in a general sense, the idea that any drone which is being controlled by computers could be hacked really isn't a surprise.
I am concerned about the fact our telemetry link is completely unprotected. Somebody can take control of our drones simply by scanning the airwaves, finding your NetID, and then jumping onto that NetID and start sending out "Disarm" commands. It's not even a hack, really, could probably done by your average 8 year old.