IT securityBay Area's FasTrak road tolls easy to hack
Toll transponders can be cloned, allowing fraudsters to travel for free while others unwittingly foot the bill; more seriously, criminals could use the FasTrak system to create false alibis by overwriting one’s own ID onto another driver’s device before committing a crime
It’s always something — if it’s not one thing, it’s anoyher. Now we learn that drivers using the automated FasTrak toll system on roads and bridges in California’s Bay Area could be vulnerable to fraud, according to a computer security firm in Oakland, alifornia. Despite previous reassurances about the security of the system, Nate Lawson of Root Labs claims that the unique identity numbers used to identify the FasTrak wireless transponders carried in cars can be copied or overwritten with relative ease. Technology Review’s Duncan Graham-Rowe writes that this means that fraudsters could clone transponders by copying the ID of another driver onto their device. As a result, they could travel for free while others unwittingly foot the bill. “It’s trivial to clone a device,” Lawson says. “In fact, I have several clones with my own ID already.”
Lawson says that this also raises the possibility of using the FasTrak system to create false alibis, by overwriting one’s own ID onto another driver’s device before committing a crime. The toll system’s logs would appear to show the perpetrator driving at another location when the crime was being committed, he says.
So far, the security flaws have only been verified in the FasTrak system, but other toll systems, like E-Z Pass and I-Pass, need to be looked at too, argues Lawson. “Every modern system requires a public security review to be sure there aren’t different but related problems,” he says. Indeed, in recent weeks, researchers announced flaws in another wireless identification system: the Mifare Classic chip, which is used by commuters on transport systems in many cities, including Boston and London. However, last week, the Massachusetts Bay Transportation Authority (MBTA) filed a lawsuit to prevent students at MIT from presenting an analysis of Boston’s subway system.
The Bay Area Metropolitan Transport Commission (MTC), which oversees the FasTrak toll system, maintains that it is secure but says it is looking into Lawson’s claims. “MTC is in contact with vendors who manufacture FasTrak lane equipment and devices to identify potential risks and corrective actions,” says MTC spokesman Randy Rentschler. “We are also improving system monitoring in order to detect potentially fraudulent activity.” In the past, authorities have insisted that the FasTrak system uses encryption to secure data and that no personal details are stored on the device — just two unique, randomly assigned ID
