Classification
Car Kit Raspberry
|
Classification
|
Grade
|
D
|
Calculator version
|
1
|
Classification date
|
2024-04-22
|
Information
|
Name
|
Car Kit Raspberry
|
Brand
|
Raspberry Pi
|
Generation
|
3006
|
Model(s)
|
B07KB8S6RP
|
Release date
|
2018-11-08
|
Type/Category
|
Computer
|
Website
|
[1]
|
Status
|
|
More
|
Dimensions
|
|
Mass
|
|
Operating system
|
Android
|
Companion App
|
|
CPU
|
|
GPU
|
|
Memory
|
|
Storage
|
|
Battery
|
|
Power
|
|
Charging
|
|
Display
|
|
Camera
|
|
Sound
|
|
Connectivity
|
|
Device
|
Criterion
|
Value
|
Proof(s)
|
Comment
|
Known hardware tampering
|
Rare
|
[2]
|
|
Known vulnerabilities
|
Very common
|
[3]
|
Vulnérabilités des composants tiers
|
Prior attacks
|
Rare
|
[4]
|
|
Updatability
|
Very common
|
[5]
|
|
Category score
|
2
|
System
|
Criterion
|
Value
|
Proof(s)
|
Comment
|
Authentication with other systems
|
Partial
|
[6]
|
|
Communications
|
No encryption
|
[7]
|
Nous avons un ensemble de capteurs qui s'échangent des informations sans criptage
|
Storage
|
No encryption
|
[8]
|
|
Category score
|
3
|
User Authentication
|
Criterion
|
Value
|
Proof(s)
|
Comment
|
Account management
|
Basic
|
[9]
|
l'authentification est souvent locale et pas robuste
|
Authentication
|
Basic
|
[10]
|
|
Brute-force protection
|
Basic
|
[11]
|
|
Event logging
|
Absent
|
[12]
|
|
Passwords
|
Default/Common/Easy to guess
|
[13]
|
|
Category score
|
3
|
- Vulnérabilités des composants tiers : Nous avons une combinaison de plusieurs composants sur le car_kit_Rasberry qui présentent des vulnérabilité
- Nous avons un ensemble de capteurs qui s'échangent des informations sans cryptage
- capacité mémoire est limité ce qui rend pratiquement impossible la journalisation
- l'authentification est souvent locale et pas robuste