Status June 2024
A prototype made by Tesla, some years ago:
Our prototype Version
We finished most of the work in 2023 but did not make it available to the public. Here we go. We built this concept not only for Tesla. During our 20 years of WiFi networking, we found many uses for such a product in various projects.
Learnings from pwn2own 2024
In January 2024, during a public hacking event pwn2own endorsed by Tesla, a team identified vulnerabilities in the Tesla car modem. This highlights the tendency of hackers to focus on communication components within systems.
We emphasize this to illustrate that the network infrastructure at supercharger stations is also a primary target for such attacks.
This underscores the critical need for robust security in these systems. During the Pwn2Own Automotive 2024 contest, Security Team Synacktiv successfully compromised the Tesla on the first day by obtaining root access to the Tesla Modem and exploiting three vulnerabilities.
Their prowess continued on the second day, demonstrating an escape from the Tesla Infotainment System's sandbox using a chain of two zero-day exploits. Although the technical details may be complex, the outcome was clear: Synacktiv earned $100,000 in the Tesla-endorsed contest.
source:
https://www.bleepingcomputer.com/news/security/tesla-hacked-24-zero-days-demoed-at-pwn2own-automotive-2024/
Our new prototype 2022
During 2022/2023, we revisited the idea of a RouterTower for Tesla. We continued working on that idea once we received positive feedback from the Tesla team (US & Germany). However, this feedback was only "we like the design" and not a real specification. In general, touchpoints with Tesla were minimal, and we had/have no idea if they have a use for it at all.
We changed the design approach from having a single box and a mounting for a concrete base to today's version with a larger housing for technology and multiple mounting options.
Why Tesla needs WiFi?
WiFi is needed mainly for software updates of the cars and for entertainment. The car needs to connect automatically to a WiFi network, of course not with a pre-shared key. Tesla is using RadSec authentication based on Aruba Networks / HPE WiFi access points.
Network connectivity for SuperCharger cabinets: These big boxes are connected via a network cable, so they need a switch to be able to connect to the internet via Starlink. For that, a router is needed. Today, Tesla is using Aruba access points, and costs will increase if there is a need for a real router instead of access point-only.
Free guest WiFi would also be a nice-to-have, but that opens up even more technology and legal topics around the world, etc. So far, no free guest WiFi is available.
Teslas own Prototype (Germany)
The picture shows an early prototype from Tesla itself. We have nothing to do with this prototype. It was spotted in Germany. We don't know from which date it is or have any other background information about it. Similar installations can be seen at other places.
Why all that matters?
network cabinet,
a famous attack surface. Attack surfaces have evolved from old school phone phreaking in the 1980s, a hacking method aimed at manipulating telecommunication systems, mainly outdoor cabinets. This is especially relevant given the vast network of over 6,000 sites, once they all have a visible network solution.
Current security measures are insufficient against digital attacks like man-in-the-middle, traffic rerouting, or packet sniffing and injecting, posing risks to connected vehicles and software updates.
The cost and ease of executing long-term attacks are low. Attackers can quickly install devices like Raspberry Pis into systems, gaining access to power, network connections, and targeting various IP-based devices.
This necessitates not only improved physical security but also enhanced network defenses. Systems should detect new IP devices, port-scanns, suspicious traffic and implement customizable intrusion detection tailored to specific needs, such as Tesla's with its SuperCharger stations.
With the widespread deployment of these systems, they will likely become prime targets for future hacking attempts when more of the network equipment is visible.
First Email to Elon
Our first email regarding this project went out some months later (the date shows 28th November 2019).
It was clear before sending this email that we wouldn't get any answer. But you know, in Europe, we like to take our time, so we didn't stop and contacted people inside Tesla as well, without any real success by today, 3rd of June 2026. Does that stop us from trying? As you can see, not really. Mostly, we got "too many open projects" aka "fuck-you" emails :) Fair enough, people are busy shipping stuff. Anyhow, we want to save your people some time.
The RouterTower (its real name besides its meme name ElonMast) is a real product used in industrial projects with lots of modifications, of course, to this version. However, we believe the version of ElonMast combined with an open-source approach for software and hardware can bring value to Tesla. We always try to walk in the shoes of our customers. If we were Tesla, we would have built this ourselves or bought it from somebody that provides a clear open BOM. However, till today, we have only seen stuff like this from Tesla, which indicates there was so far no time to build something solid.
First Elon Tweet about WiFi@Superchargers
2019 First mention about WiFi@SuperChargers
We studied many public SuperCharger building plans to understand that the RouterTower should be very close to a SuperCharger cabinet because there is ethernet and power.
However, it's not the best idea to drill holes into the already certified SuperCharger cabinet. So, having a separate and individual cabinet for it seems to be the best option. Nevertheless, you don't want to waste time on the installation by putting in a new concrete socket, which takes some time. There are multiple options for the installation, one of them being to use the remaining space of a cabinet socket.
Problem: Why the F*** should anybody care at Tesla/Starlink?
No plug&play solution -> rollout Starlink/Routing/Switching/Power eats time
No physical security for network tech…
right now: Closed source network technology is used
By today, Tesla uses Aruba/HPE network technology. Check out yourself why HPE/Aruba is maybe not the best option to humanity: https://www.weforum.org/organizations/hewlett-packard-enterprise/
Solution: OpenSource is mostly the answer.
Don't use closed-source network technology, it has no future when it comes to security. That's easier said than done because, as of today, there is only one company on this planet that takes open-source network technology very seriously and has a proven track record of building a solid platform. However, it's early days for our European-based technology company, which is founder-led and has operated for 20 years without a single dime of venture money. The mission is simple: open-source network technology to solve the vendor lock-in and security problems associated with closed-source technology. If you know, you know—no need for a long explanation about why closed-source stuff is the root of it all.