Gregory's Server@ollien @nuthatch @danluu It’s possible one of dozens and dozens of ECUs couldn’t roll back (assuming they all have the flash to roll back). They all have to be set consistently, and it’s possible that one of them failed to take a security key update to its HSM. It might be a corrupted memory problem on an ECU (HSMs that lose power during a key update get very finicky because they’re trying to protect against a glitching attack to force a key rollback).
|
2 comments
 |
@kentindell @nuthatch @danluu Makes sense - this is definitely far removed from my area of expertise and I appreciate the insight :)
Would it be too costly to have redundant systems of some kind to prevent this sort of failure?