Biden Calls Chinese Electric Vehicles a Security Threat::The president ordered an investigation into auto technology that could track U.S. drivers, part of a broader effort to stop E.V. and other smart-car imports from China.

  • tabular@lemmy.world
    link
    fedilink
    English
    arrow-up
    17
    arrow-down
    1
    ·
    10 months ago

    China and America are not the same but the solution works against all actors: permit users to audit and change the code so dependencies on servers can be removed or replaced with ones of our choice. Without the source code to learn what it’s actually doing then all software is potentially a security threat, at best it’s just not yet guilty of being malware or having anti-features.

    • gregorum@lemm.ee
      link
      fedilink
      English
      arrow-up
      4
      arrow-down
      5
      ·
      edit-2
      10 months ago

      Why should every car owner have to also be a tech nerd or security specialist just to guarantee their car is safe to drive and own? They should be guaranteed safe before they are even sold.

      Of course, consumers should have full control over the technology they buy, but it should be safe and secure before it is even sold in the first place. 

      • tabular@lemmy.world
        link
        fedilink
        English
        arrow-up
        9
        ·
        edit-2
        5 months ago

        The only way to know it is safe is 3rd parties auditing it. The manufacture saying “trust me bro” ain’t it and a government audit that doesn’t show their work could be bullshit too. A single tech nerd or security specialist is in the same boat as the regular Joe - it’s a group effort. Non-techies can contribute in other ways (e.g. reporting bugs).

        • gregorum@lemm.ee
          link
          fedilink
          English
          arrow-up
          2
          arrow-down
          1
          ·
          10 months ago

          That’s why government agencies should be transparent and better funded

          • tabular@lemmy.world
            link
            fedilink
            English
            arrow-up
            5
            arrow-down
            1
            ·
            edit-2
            5 months ago

            To be so transparent that we can actually verify the government’s findings means a 3rd party is doing the same job the government did. Anything less is the government saying “trust us”. [Edit to clarify what I meant] It’s cheaper for a bad company to pay for lobbyists or buyout a few politicians than to somehow buyout every 3rd party.

              • tabular@lemmy.world
                link
                fedilink
                English
                arrow-up
                3
                arrow-down
                1
                ·
                10 months ago

                Non-profits and charities also create software but it’s like verifying a scientific experiment: doesn’t matter who did it first if we can verify their results.

                Sadly, bad incentives trend politicians to appeal to just select groups needed to win. Many countries use unrepresentative voting systems which trend to a 2 party system, permits jerrymandering, etc. What can I do about my government?

                At least I can try to avoid proprietary software - if I needed a car I would look for one which comes with open source software, or buy a dumb while I still can.