Encryption & Frequencies
Military-grade encryption = 100% hack-proof! Reliable frequencies = stable performance!
Encryption algorithms used in StarLine products are the stongest on the market, making our products literally unhackabe; resistant to any and all code scanners and grabbers currently known. StarLine equipment uses stable frequencies, -- the product will perform reliably under any conditions.
433MHz and 868MHz are two major frequency bands commonly used in wireless home alarm system and 2-way vehicle alarm systems. Both belong to free-license ISM bands.
The 433MHz frequency band is being widely used in almost every control applications, while 868MHz is exclusively reserved for communication between wireless sensor networks.
The 868Mhz frequency band is strictly regulated and is dedicated to security equipment, i.e. alarm systems and their peripherals.
Due to its very common use, the 433Mhz frequency can suffer from congestion, i.e. interference and disturbances, and become unstable / unreliable, particularly in radiointerference-dense places, such as near masts, television towers, radio broadcasting stations, large shopping centres, hospitals, and event stadiums.
The 868MHz band is exclusively opened for wireless alarm system, hence – it’s far less likely to be interfered.
Keeloq is an encryption method used in all factory security system by vehicle manufacturers, in vehicles’ keyless entry systems, and many aftermarket security products.
Keeloq uses dynamic encryption (rolling / hopping code), which has been officially compromised, and proven vulnerable to what is known as the ‘replay attack’ or ‘rolljam’.
Even though newer versions of Keeloq have surfaced since, which mitigate the ‘rolljam’ vulnerability, the protocol still uses dynamic (rather than dialogue) encryption, and therefore cannot be considered hack-proof.
Dialogue encryption is not vulnerable to any of the attacks that dynamic encryption is vulnerable to, and therefore provides much stronger security.
Learn more about Keeloq encryption and how it is compromised >>>
More detailed information on different types of encryption used in vehicle security systems can be found below.
Products marketed as ‘OEM upgrade’ or ‘factory upgrade’ that work on the ‘Slave’ or ‘Adaptive’ principle appeal to the end-user due to two factors: simplicity of use and authenticity. These are basic CAN-BUS car alarm systems that ‘adapt’ to the vehicle i.e. the alarm is tied to the vehicle’s factory key / fob and is operated exclusively through it, without additional owner authentication.
The alarm system becomes a ‘slave’ to the vehicle’s factory key / fob and is controlled (armed / disarmed) using in a single-stage authentication (command from the factory key / fob), meaning that there is only one layer of security, which, if compromised, disables the rest of the components of the vehicle security system i.e. siren / horn, any sensors, engine immobilisation, etc.
StarLine vehicle security systems use the same principle for convenience, without compromising on security — the StarLine system will integrate with the factory key / fob via CAN-BUS, so the user can control the security system using their factory key / fob, but, unlike standard CAN-BUS alarm systems, StarLine uses the Superslave™ concept, meaning that in addition to the factory key / fob, there is at least one more owner recognition stage, such as presence of a contactless ID tag, the owner’s personal smartphone, and/or entry of a unique PIN sequence on the vehicle’s dash buttons is required in order to disarm the security system and use the vehicle.
Types of Encryption
There are 2 types of encryption currently used in OEM and aftermarket vehicle security systems - dynamic (rolling / hopping code a.k.a. Keeloq) and dialogue encryption. Let's look at them in more detail...
Static (Fixed) Code Authorisation
No longer in use
Hackable
The earliest version of today’s alarm systems had a static or ‘fixed’ code. Each bit communication transmitted between the vehicle and the remote control of the security system corresponded to its own data pack. In short, since the variations of the code formats were finite, one remote control could be used to control (lock/unlock) a different vehicle and disarm the security system or someone else’s car.
Obviously, this type of coding is highly unstable and provides very poor protection. A static code can be intercepted and replicated easily. It is enough to obtain the data pack sent by the remote control to the vehicle, corresponding to the “Disarm” command, and the thief is able to use their device the same as the owner uses the remote control of their vehicle security system.
It wasn’t long before criminals figured out how to compromise static code, and it was then that the first code-grabber appeared on the black market. Learn more about code-grabbers and find out if your vehicle is susceptible to them >>>
Rolling (Dynamic) Code Authorisation
Used in factory car alarms, keyless entry cars, and genetic aftermarket alarms
Hackable
Rolling code, sometimes also called ‘hopping code, is used in all factory security systems (Keeloq), vehicles with keyless entry, and many aftermarket car alarm systems. The rolling code offers better security compared to the static (fixed) code as it is unique to each system and the its structure is ‘dynamic’ i.e. the data packs change with each command, so same command cannot be used more than once.
It seemed that the rolling code had solved the vulnerability of OEM and aftermarket alarms systems and fixed the code-grabbing issue. However, it wasn’t long before the rolling code was compromised too.
The rolling code can be compromised in 2 ways: passive and active.
The passive (or ‘analytical’) hack is based on ‘gaps’ in the encryption algorithms that the thief can exploit, and the active hack requires code-replacement: using a code grabber, the thief captures several data packs as they are transmitted from the remote control to the security system (car alarm), and then uses one of them to deactivate security and unlock the vehicle.
Many aftermarket vehicle security system manufacturers use their own dynamic coding that differs from that used in OEM alarms, and hence is more resistant to hacking, but it is important to note that no variation of dynamic coding (rolling code) is immune.
Dialogue (Multilayered) Code Authorisation
Used in new-generation premium vehicle security systems
The encryption algorithm that currently constitutes the highest crypto-security, and is most reliable for 2-way communication in vehicle security systems, is called the Dialogue code. It is different from dynamic coding is that Dialogue encryption requires that both – receiver and transmitter – are in the same module (the main unit of a vehicle security system) and in the remote control / fob / pager / tag.
Some aftermarket vehicle security product manufacturers claim to use Dialogue encryption, but not every Dialogue is hack-proof. In order for the Dialogue to be so, the following conditions must be present:
- Quantitative algorithm of random number generation (the algorithm that creates a ‘riddle’ for the receiving device to ‘solve’);
- A unique digital ‘key’ for each security system;
- Automatic digital ‘key’ replacement in case of repeat remote control / fob / pager / tag assignment to the security system (if a new device is registered or an existing one is being replaced);
- Sufficient length of the unique digital ‘key’ (128-bit is considered the most secure).
If one of these conditions is absent, the Dialogue code cannot be considered hack-proof as it can be compromised if the thief has the firmware to the vehicle security system’s main unit or remote control / fob / pager / tag (these are freely available from the manufacturer and can be downloaded by anyone).
Another important condition for the quality of Dialogue encryption, is the communication channel, which must be fast and reliable. This is important, because every press of the button on the remote control / fob / pager / tag, activates the communication channel and initiates data exchange, and even if a single data batch is lost, the whole process needs to be repeated anew. A poor quality communication channel can cause the system to become unstable, creating security loopholes as well as severely undermining user convenience.
The Diffie-Hellman Dialogue Encryption
There is no stronger encryption available today than that used in StarLine's vehicle security products!
The Diffie-Hellman algorithm is used for safe and hack-proof assignment of control devices (remote control / fob / tag / pager / phone registration) to the vehicle security system.
One of the fundamental cryptography issues is secure data exchange through the communication channel. Messages must be encrypted and decrypted, but, the one condition for this exchange to be hack-proof, is that both – the sender and the receiver of the data – must have a common ‘key’ that is used as a ‘password’ that only the two can know. If this ‘key’ (password) is transmitted via the same communication channel, it can be intercepted by a third party, rendering encryption entirely pointless.
StarLine security systems with Dialogue encryption use a modern and highly reliable communication channel for data transmission; the channel is built on a single-chip transceiver. This allows for instant and accurate Dialogue exchange, while encryption keys (128-bits long; individual for each system), offer military-grade security and resistance to digital theft.
The StarLine Tags & Pagers
The StarLine ID Tag
BluetoothSmart | 2.4Ghz | Dialogue Encryption
StarLine driver ID tags are resistant to all forms of hacking and cannot be cloned or otherwise compromised.
The tag can be used on it’s own or in addition to other owner authentication methods.
For those who don’t want to carry a tag at all, owner’s smartphone can be paired with the system and used the same way as an ID tag, using the same secure and reliable communication channel and military-grade encryption.
Click on the “Information” icon over the image for specifications.
StarLine 2-Way Pagers
RF 868Mhz | Dialogue Encryption w/ Individual 128-Bit Keys
StarLine 2-way pagers use the strongest possible encryption and are resistant to all known code-grabbers, relay boxes, and any other form of digital theft.
A StarLine pager, beside 2-way communication, can also be used as additional driver authentication for another layer of security.
Click on the “Information” icon over the image for specifications.
Financial Guarantee
StarLine offers a 55K reward to anyone able to break the encryption used in our products.
At StarLine, we are confident that the dialogue encryption used in our products the strongest available on the market today, and we expect that this encryption will not be compromised in at least the next decade. The company offers GBP 55K reward to anyone able to break this encryption.
It is estimated that it would take hundreds of years and hundreds of thousands of world’s most powerful mainframes to go over all the possible number combinations of the AES 128-bit individual encryption key.
More importantly, even if the algorithm is solved (which in itself is highly improbable) – the combination obtained will only work on one individual product, not the entire range of products using this encryption.
- The 433Mhz frequency is unreliable and can become unstable.
- Any type of dynamic encryption (rolling / hopping / Keeloq code) is hackable.
- Aftermarket alarms marketed as OEM-upgrade (factory upgrade) that work on the 'Slave' or 'Adaptive' principle are very easily compromised..
- Not every aftermarket security product manufacturer that claims to use Dialogue encryption provides adequate security and meets the conditions for the encyption to be considered hack-proof.
- StarLine vehicle security equipment uses the strongest possible encryption that is 100% resistant to digital theft.