PDA

View Full Version : Seedkey algorithms (oldie but goodie)


rodrigon
June 26th, 2013, 11:56
hello everybody

there was upon a time a long thread once started which lived here ("http://www.woodmann.com/forum/archive/index.php/t-9806.html")

6 years later I find myself in the same sittuation as its original poster

That's it: i'm trying the same things as nobber was by that time and i need help from you guys

CAR COMMUNICATION
to make car diagnostic via OBD (on-board diagnostics, ("http://en.wikipedia.org/wiki/On-board_diagnostics")just in case you feel interested) the car ECU communicates with the diagnostic equipment.

-the equipment will ask for a SEED
-the ECU generates a random number (2 or 4 bytes) and sends to the equipment
-the equipment uses an algorithm/calculation to find a new value and send as a response to the ECU. this new number is the KEY

i want this algo

SITTUATION:
only original equipment from a specific car manufacturer has the calculation and there are some cases (most) that the algo/calculation is performed online ~> meaning that the hardware does not contain the algo, therefore, just the ECU is granted to have the calculation/algo, because it must also know the answer to check if the communication is legit

SOLUTIONS:
1. reverse engineer the ECU to find the calc/algo
2. emulate the ECU for the equipment and send sequencial numbers (00000001, 00000002, etc) and get a database to find out the calc/algo

PROBLEMS: (with these solutions)
1. reverse engineering the ECU requires experience and specific techniques i do not have
2. the sequencial numbers logged are suspicious, the dealership original equipment may:
A) block the user
B) register an attempt to collect "critical" (this isn't the perfect word, but.. you get it!) data

SO WHAT?
so you guys would be helpful if you can:
- reverse engineer ECUs
- provide me the calculation/algorithm i need (in this case we need discuss car makes/model/year etc. you have/i need)
- show up with a magic (wand) solution telling me "hey guy! there is another way nobody else has ever heard about!! check it out, we can blablabla" but with a real solution in place of "blablabla"

yes, i'm willing to pay for it
yes, i'm currently working on some seed-key analysis
nope, english is not my first language so sorry for being a little confusing or unclear

thank you guys

---------------------------------------------------------------------------------------------------------------------------------------
rodrigon
~the cool guy~
keep peaceful, be cool
672795354 ICQ

rodrigon
June 27th, 2013, 08:11
people who want to discuss this theme and any other related to development of diagnostic are welcome to my group on facebook

use the link http://facebook.com/groups/car.phisician to visit, please ask to join to view and post content

thank you
cheers!!