Apple CarPlay Security Uncovered: What's Under the Hood

This week's Security Bite column on 9to5Mac discusses the security of Apple CarPlay, an often overlooked service provided by Apple. The article highlights a talk given by security researcher Hannah Nöttgen at the TROOPERS24 IT conference in Heidelberg, Germany, where she delved into CarPlay's basic security architecture and evaluated its security.

Nöttgen explained that CarPlay relies on two primary protocols: Apple’s proprietary IAPv2 (iPod Accessory Protocol version 2) for authentication and AirPlay for media streaming. These enable the seamless experience we’ve all come to love, letting drivers access messages, calls, music, order food, and other features without having to unlock their phones.

During her analysis, Nöttgen explored several attack vectors, focusing on the risks of unauthorized access to personal information, which could threaten driver privacy and safety. While CarPlay’s authentication system is quite hardened to prevent replay attacks, Nöttgen found other vectors like DoS attacks targeting any wireless third-party AirPlay adapters remained possible, albeit difficult to execute.

Another interesting layer is Apple’s tight control over CarPlay hardware through its Made for iPhone (MFi) program. All certified CarPlay devices are required to include an Apple authentication chip, which car manufacturers pay to integrate into their vehicles. While Apple’s closed ecosystem has faced criticism for limiting third-party access, it also creates a significant hurdle for would-be attackers.