Hackers could engineer traffic jams, by using their cars to lie to smart traffic lights

Uhoh. Image: Getty.

The day when cars can talk to each other – and to traffic lights, stop signs, guardrails and even pavement markings – is rapidly approaching. Driven by the promise of reducing traffic congestion and avoiding crashes, these systems are already rolling out on roads around the U.S.

For instance, the Intelligent Traffic Signal System, developed with support from the U.S. Department of Transportation, has been tested on public roads in Arizona and California and is being installed more widely in New York City and Tampa, Florida. It allows vehicles to share their real-time location and speed with traffic lights, which can be used to effectively optimise the traffic timing in coordination with the real-time traffic demand to dramatically reduce vehicle waiting time in an intersection.

Our work, from the RobustNet Research Group and the Michigan Traffic Laboratory at the University of Michigan, focuses on making sure these next-generation transportation systems are secure and protected from attacks. So far we’ve found they are in fact relatively easy to trick. Just one car that’s transmitting fake data can cause enormous traffic jams, and several attack cars could work together to shut down whole areas. What’s particularly concerning is that our research has found the weakness is not in the underlying communication technology, but in the algorithms actually used to manage the traffic flow.

Misleading an algorithm

In general, algorithms are meant to take in a variety of inputs – such as how many cars are in various locations around an intersection – and calculate an output that meets a particular goal – such as minimising their collective delay at traffic lights. Like most algorithms, the traffic control algorithm in Intelligent Traffic Signal System – nicknamed “I-SIG” – assumes the inputs it’s getting are honest. That’s not a safe assumption.

The hardware and software in modern cars can be modified, either physically through the car’s diagnostic ports or over wireless connections, to instruct a car to transmit false information. Someone who wanted to compromise the I-SIG system could hack her own car using such methods, drive to a target intersection and park nearby.


Once parked near the intersection, we’ve found that the attacker could take advantage of two weaknesses in the algorithm controlling the light to extend the time a particular lane of traffic gets a green light – and, similarly, the time other lanes get red lights.

The first vulnerability we found, which we call “last vehicle advantage,” is a way of extending the length of a green-light signal. The algorithm keeps an eye on approaching cars, estimates how long the line of cars is and determines how long it thinks it will take for all the vehicles in a line of traffic to get through the intersection. This logic helps the system serve as many vehicles as possible in each round of light changes, but it can be abused. An attacker can instruct her car to falsely report joining the line of cars very late. The algorithm will then hold the attacked light green long enough for this nonexistent car to pass, leading to a green light – and correspondingly, red lights for other lanes – that is much longer than needed for the actual cars on the road.

We called the second weakness we found the “curse of the transition period,” or the “ghost vehicle attack”. The I-SIG algorithm is built to accommodate the fact that not all vehicles can communicate yet. It uses the driving patterns and information of newer, connected cars to infer the real-time location and speed of older, noncommunicating vehicles. Therefore, if a connected car reports that it is stopped a long distance back from an intersection, the algorithm will assume there is a long line of older vehicles queuing ahead of it. Then the system would allocate a long green light for that lane because of the long queue it thinks is there, but really isn’t.

These attacks happen by making a device lie about its own position and speed. That’s very different from known cyberattack methods, like injecting messages into unencrypted communications or having an unauthorised user logging in with a privileged account. Therefore, known protections against those attacks can do nothing about a lying device.

Results from a misinformed algorithm

Using either of these attacks, or both in concert with each other, can allow an attacker to give long periods of green lights to lanes with little or no traffic and longer red lights to the busiest lanes. That causes backups that grow and grow, ultimately building into massive traffic jams.

A congestion attack on a traffic signal control system.

This sort of attack on traffic lights could be just for fun or for the attacker’s own benefit. Imagine, for example, a person who wants to have a faster commute adjusting his own traffic-light timing, at the expense of other drivers’ delays. Criminals, too, might seek to attack traffic lights to ease their getaways from crime scenes or pursuing police cars.

There are even political or financial dangers: a coordinated group could shut down several key intersections in a city and demand a ransom payment. It’s much more disruptive, and easier to get away with, than other ways of blocking intersections, like parking a car across traffic.

Because this type of attack exploits the smart traffic control algorithm itself, fixing it requires joint efforts from both transportation and cybersecurity fields. This includes taking into account one of the broadest lessons of our work: the sensors underlying interactive systems, such as the vehicles in the I-SIG system, aren’t inherently trustworthy. Before engaging in calculations, algorithms should attempt to validate the data they’re using. For example, a traffic-control system could use other sensors – like in-road sensors already in use across the nation – to double-check how many cars are really there.

This is just the beginning of our research into new types of security problems in the smart transportation systems of the future, which we hope will both discover weaknesses and identify ways to protect the roads and the drivers on them.

Qi Alfred Chen, Ph.D. Candidate in Computer Science and Engineering, University of Michigan and Z. Morley Mao, Professor of Electrical Engineering and Computer Science, University of Michigan

This article was originally published on The Conversation. Read the original article.

 
 
 
 

Here’s how we plant 2 billion more trees in the UK

A tree in Northallerton, North Yorkshire. Image: Getty.

The UK’s official climate advisor, the Committee on Climate Change (CCC), recently published a report outlining how to reduce the 12 per cent of greenhouse gas emissions that come from land use by two thirds by 2050. Alongside recommending cutting meat and dairy consumption by 20 per cent, the report calls for the annual creation of up to 50,000 hectares of broadleaf and conifer woodland for the next three decades. This would increase forest cover from 13 per cent to at least 17 per cent – a level not seen in Britain since before the Norman invasion.

Reforestation at that rate would mean creating roughly the area of the city of Leeds every year for the next three decades. At typical stocking densities of 1,500 stems per hectare, the ambition is to establish some 2.25 billion additional trees. Given that the UK, as with most of Europe, is in the grip of ash dieback, a disease likely to prove fatal for many millions of native ash trees, the scale of the challenge is massive.

On a crowded and intensively farmed island like Britain, unlocking a million and a half hectares of land will be no mean feat. But it’s not impossible – and is an unprecedented opportunity not only to tackle the climate crisis but also the biodiversity crisis that is every bit as detrimental to our wellbeing.

Trees and farms

One million and a half hectares is just 6 per cent of the mainland UK’s land area. To give some sense of perspective on this, 696,000 hectares of “temporary grassland” were registered in 2019. So if land supply is not the problem, what is? Often it’s cultural inertia. Farmers are firmly rooted to the land and perhaps understandably reluctant to stop producing food and instead become foresters. But the choice need not be so binary.

The intensification of agriculture has caused catastrophic declines in many species throughout the UK by reducing vast wooded areas and thousands of miles of hedgerows to small pockets of vegetation, isolating populations and making them more vulnerable to extinction.

Integrating trees with the farmed landscape delivers multiple benefits for farms and the environment. Reforestation doesn’t have to mean a return to the ecologically and culturally inappropriate single-species blocks of non-native conifers, which were planted en masse in the 1970s and 1980s. Incentivised under tax breaks to secure a domestic timber supply, many of the resulting plantations were located in places difficult or in some cases impossible to actually harvest.

Productive farmland needn’t be converted to woodland. Instead, that 4 per cent of land could be found by scattering trees more widely. After all, more trees on farmland is good for business. They prevent soil erosion and the run-off of pollutants, provide shade and shelter for livestock, a useful source of renewable fuel and year-round forage for pollinating insects.

The first tranche of tree planting could involve new hedgerows full of large trees, preferably with wide headlands of permanently untilled soils, providing further wildlife refuge.


Natural regeneration

Where appropriate, new woody habitats can be created simply by stopping how the land is currently used, such as by removing livestock. This process can be helped by scattering seeds in areas where seed sources are low. But patience is a virtue. If people can learn to tolerate less clipped and manicured landscapes, nature can run its own course.

A focus on deliberate tree planting also raises uncomfortable truths. Most trees are planted with an accompanying stake to keep them upright and a plastic shelter that protects the sapling from grazing damage. All too often, these shelters aren’t retrieved. Left to the elements, they break down into ever smaller pieces, and can be swept into rivers and eventually the ocean, where they threaten marine wildlife. Two billion tree shelters is a lot of plastic.

The main reason for using tree shelters at all is because the deer population in the UK is so high that in many places, it is all but impossible to establish new trees. This also has serious implications for existing woodland, which is prevented from naturally regenerating. In time, these trees will age and die, threatening the loss of the woodland itself. Climate change, pests and pathogens and the lack of a coordinated, centrally supported approach to deer management means the outlook for the UK’s existing treescape is uncertain at best.

An ecologically joined-up solution would be to reintroduce the natural predators of deer, such as lynx, wolves, and bears. Whether rewilding should get that far in the UK is still the subject of debate. Before that, perhaps the focus should be on providing the necessary habitat, rich in native trees.

A positive response would be to implement the balanced recommendations, made almost a decade ago in a government review, of creating more new habitat, improving what’s already there, and finding ways to link it together. Bigger, better, and more connected habitats.

But the UK is losing trees at increasing rates and not just through diseases. The recent removal of Victorian-era street trees in Sheffield and many other towns and cities is another issue to contend with. As the climate warms, increasing urban temperatures will mean cities need shade from street trees more than ever.

Trees aren’t the environmental panacea that the politicians might have people believe – even if they do make for great photo opportunities – but we do need more of them. Efforts to expand tree cover are underway across the world and the UK will benefit from contributing its share. Hitting the right balance – some commercial forestry, lots of new native woodland and millions of scattered trees – will be key to maximising the benefits they bring.

Nick Atkinson, Senior Lecturer in Ecology & Conservation, Nottingham Trent University.

This article is republished from The Conversation under a Creative Commons license. Read the original article.