SINCON 2021 Conference — Interactive CAN Bus & Diagnostics Car Security Workshop with RAMN

SINCON 2021 Conference — Workshop

Day 2 (06 Nov 2021)

Run 1

11.00am—1.00pm @ Workshop Room

— Max Capacity: 4 pax

Run 2

2.00pm—4.00pm @ Workshop Room

— Max Capacity: 4 pax

• SINCON 2021 Conference Main Stage Schedule

• SINCON 2021 Conference Open Stage Schedule

Interactive CAN Bus & Diagnostics Car Security Workshop with RAMN

Abstract

This is a collaboration between CSQ (https://twitter.com/csqdiv0) and Toyota Motor Corporation. Toyota provides the RAMN (Resistant Automotive Miniature Network) hardware to gather feedback on its platform to facilitate education and research in automotive security.

Twitter: https://twitter.com/ramn_auto

Github: https://github.com/toyotainfotech/ramn

Theoretical vehicular knowledge

• Introduction to Vehicular Architecture and Technology

• Introduction to vehicle threat landscape – Traditional vehicles, Connected Vehicles and Autonomous Vehicles

• Overview of basic vehicle networks and protocols – e.g. CAN Bus, Flexray bus, J3016 standard etc.

• Introduction to CANbus protocol

• Introduction to CAN frame

• Introduction to Car hacking tools

• Identifying the different CAN types

Introduction to Vehicular Diagnostics

• Introduction to UDS (Unified Diagnostic Systems)

• Introduction to ISO-TP protocol

• Introduction to MOST/LIN/FlexRay/Automotive Ethernet

• Introduction to KWP2000/XCP

Practical hands-on activities on Carla with RAMN

• Introduction to RAMN

• Capture can bus traffic

• Replaying can bus traffic

• Reverse engineering the CAN IDs

• Spoofing the can bus traffic

• Usage of RAMN Diagnostics with KWP2000

• Usage of RAMN Diagnostics with UDS

• Usage of RAMN Diagnostics with XCP

About Alina Tan, Edmund Lim, Javier Yong, Seow Chun Yong

ALINA (0x410x54) TAN is the founder of Division Zero’s (Div0) Car Security Quarter (CSQ). Her expertise lies in securing Operational Technology (OT), Industrial Control System (ICS) and Supervisory Control and Data Acquisition (SCADA) systems — specifically on the offensive security of these systems. Her interest lies in pentesting OT and automotive systems.

EDMUND LIM is an experienced software functional tester & vehicle tester. He is also the pioneer member of Div0’s Car Security Quarter (CSQ). Making a switch into cybersecurity, his interest lies in hardware hacking & pentesting in automotive systems as a start. #animallover #gamer

​JAVIER YONG is currently awaiting his University Studies in Computer Science. He is keen on DFIR, Threat Hunting, DevSecOps and Reverse Engineering.

SEOW CHUN YONG is a Cyber Security Professional in the Government of Singapore. He is interested in threat emulation and creating a larger interest in cyber security amongst the local community.