Skip to Content

A Secret Tool to Catch the Next VW-Style Emissions Cheat

New software spots anomalies in modified or hacked cars.

Volkswagen’s vast diesel emissions fraud went undetected for years. To finally expose it, an academic group attached portable emissions measurement systems to a diesel Passat and Jetta, then drove the cars round-trip from Seattle to Los Angeles to directly measure exhaust in real-world conditions and prove that VW had programmed the cars to disable the controls.

New software under development could do the same thing in just hours by monitoring vehicle data to infer problems with emissions controls without any need to sample the exhaust or directly detect that emissions controls weren’t engaged.

“It definitely could have caught the VW cheating earlier. If there was a way for emissions enforcement authorities to install this software in cars, we could detect it automatically,” says Armin Wasicek, a postdoc at the University of California, Berkeley, who led the development of the software analysis tool.

His technical paper on the topic, co-produced with a group of researchers at the University of Michigan’s Transportation Research Institute and pending publication, builds on earlier work on the concept. The new research was shown to detect “chip-tuning”—wherein engine control chips are altered to boost horsepower (a trick that tends to worsen emissions). The same detection method would also pick up disabling of emissions controls.

In the VW scandal, diesel emissions controls were designed to work only when the car was stationary and the testing equipment was plugged in. When the car left the testbed and hit the road, proprietary VW software—out of the view or control of regulators—would disable the system. The result: peppier performance and far worse emissions for 500,000 cars on U.S. roads and perhaps 11 million worldwide. Similar scandals are now emerging at Mitsubishi and perhaps other carmakers.

Detecting hacks of engine chips or disabled emissions controls doesn’t necessarily require sniffing the exhaust. Reams of data from the car—on the torque produced by the engine, the engine’s revolutions per minute, the rate of fuel consumption, the temperature of the catalytic converter, and even the position of the accelerator pedal—can, when taken together, provide a telltale fingerprint.

And that’s what the new software does. First it captures data on what a given car’s operating parameters look like during normal operations, then compares it to what’s actually happening. The new technology was able to detect a hacked engine chip when tested in a real car, but the concept could be broadly applicable.

“We could put this inside the car’s computer system and automate the whole thing,” Wasicek says. Then reports on anomalies and their potential causes could be streamed from the cars or stored for later downloading.

The long-term vision is that manufacturers, insurers, registration agencies, and emissions authorities could keep an eye on compliance, safety, and performance—subject to resolving privacy concerns, he says.

The work adds to a large body of security research in the automotive industry in the wake of high-profile hacking demonstrations in the past two years. Car companies are stepping up their security efforts, and big security companies like Symantec are also working on concepts for detecting problems with vehicle IT systems—whether malicious hacks or disabled emissions controls.

Shankar Somasundaram, senior director of Internet of things at Symantec, says that Wasicek’s software is making a key contribution to the field. “Future-looking work like [his] on automotive intrusion detection is so important,” says Somasundaram. “It provides us alternative ways to look at a vital need as the industry continues to evolve.”

 

Keep Reading

Most Popular

Large language models can do jaw-dropping things. But nobody knows exactly why.

And that's a problem. Figuring it out is one of the biggest scientific puzzles of our time and a crucial step towards controlling more powerful future models.

OpenAI teases an amazing new generative video model called Sora

The firm is sharing Sora with a small group of safety testers but the rest of us will have to wait to learn more.

Google’s Gemini is now in everything. Here’s how you can try it out.

Gmail, Docs, and more will now come with Gemini baked in. But Europeans will have to wait before they can download the app.

This baby with a head camera helped teach an AI how kids learn language

A neural network trained on the experiences of a single young child managed to learn one of the core components of language: how to match words to the objects they represent.

Stay connected

Illustration by Rose Wong

Get the latest updates from
MIT Technology Review

Discover special offers, top stories, upcoming events, and more.

Thank you for submitting your email!

Explore more newsletters

It looks like something went wrong.

We’re having trouble saving your preferences. Try refreshing this page and updating them one more time. If you continue to get this message, reach out to us at customer-service@technologyreview.com with a list of newsletters you’d like to receive.