Give him a job!
OK: he might be a bit young - but he sounds like someone with a brain that works.
A Polish teenager allegedly turned the tram system in the city of Lodz into his own personal train set, triggering chaos and derailing four vehicles in the process. Twelve people were injured in one of the incidents. The 14-year-old modified a TV remote control so that it could be used to change track points, The Telegraph …
and we're all worried about the security of airlines and nuclear powerplants, changing the signals/points for a 60 -> 100mph train would appear a far better terror tactic.
As it gives a quad whammy, train crash means
a: injuries/deaths
b: puts a line out of service until fixed and complete investigation done.
c: probably hard to trace if it were possible and the fact that it was intentional may not come to light until it had happend several times.
d: actual fear of using transport network, bombs are far fetched as they're reasonably hard to make and can only be used once, where as a device to change switches or signals, well that'll work as long as you have batteries. You never know when it may go horribly wrong.
Course it may not be possible at all with the UKs aging network, you probably need to move a lever or something.
The 14 year old certainly deserves some punishment as the actions were dangerous, although likely not with malice. At 14 I was smart enough to know better, but probably not wise enough to show it, it sounds similiar here and ruining his life for it is just a waste.
How ever I would want to see who ever is responsible for the flawed system being there in the first place charged with criminal negligence.
Duncan this is a tram line not a train line, the difference is trams are slow moving and hence can stop very quickly (unlike your average train). Therefore I'd assume that the system is totally decentralized (and so cheaper), I'd guess the tram drivers have infrared controls within their trams which they use to switch the points. Through the use of basic procedures etc that the tram drivers follow I imagine the system works very well with minimal costs. The worst case is that two trams end up on the same track but this isn't a problem as long as the drivers are paying attention as they'll notice the other great big tram and stop in plenty of time. All this saves having complicated computer controlled networks, expensive cabling and computer errors.
I imagine this is what the orginal designers thought and they had a point. Unfortunately for them they didn't consider the security implications. At the end of the day though I'm not sure what a sensible solution is, a set of armed guards at every point maybe? Anything less and there is still plenty of options of physical intervention to manually change the point.
Trams and trains are on tracks and would rarely go towards financial or military buildings/installations so the powers than be wouldn't really care about the terror threat.
And theres u thinking it was all about your safety, afraid not its the money and big boys toys they're really worried about :)
The world is full of kids who are too smart for their own good, and full of systems (and system designers) who are too dumb or too short-sighted for their own good.
"Transport command and control systems are commonly designed by engineers with little exposure or knowledge about security using commodity electronics and a little native wit."
Hopefully the Boeing 787 Dreamliner is built with better security procedures.
A lot of people are suggesting that the kid should have known better and deserves a kicking or thrown in front of a train.
Maybe they should stop to realise that a number of these "child geniuses" may be autistic and not know any better? I've known a few prodigies like this who are extremely intelligent and gifted yet don't always know the difference between right and wrong because of their condition.
The authorities should be concentrating their efforts on terrorists realising this untapped potential of high intelligence and 'grooming' them to perform terrorist acts.
"OK: he might be a bit young - but he sounds like someone with a brain that works."
How do you figure? Because he was able to break into the depots, retrieve the necessary specifications, and was able to read them? I know that both the US and UK have education problems, but certainly the ability to read should not be interpreted as "a brain that works", even by today's standards. Nor should it be reason for praise, awards, or anything else.
His actions were unethical, illegal, and dangerous. He should not be awarded, he should be punished.
I thought everyone knew about this one. You just flash your car headlights as you approach (about the same speed as you'd have if it was a police car flashing light) and the light changes to green much quicker.
This works especially well with roadworks at night where there is no one coming the other way, so you don't have to sit at a pointless red light.
Steve
A couple of years ago the powers that be refitted the whole of Clapham Junction train station with new train-information screens. For months after, they helpfully left little stickers bearing their individual IP addresses on each and every one. By itself, this hardly opens a hack, but it does dangle temptation in front of the eyes of potential teenage meddlers...
Miroslaw Micor, spokesman for the Łódź police, contradicts himself:
"He ... built a device that looked like a TV remote control and used it to manoeuvre the trams and the tracks"
then
"He had converted the television control into a device capable of controlling all the junctions on the line"
So did he build a device or convert a telly remote? The Torygraph story said he trespassed at depots to get info and equipment to build the IR device, the latter. There are also photos on the Torygraph story of some of his kit: a lot of keys, and what looks like a front bicycle light and a calculator, possibly connected.
http://www.telegraph.co.uk/news/main.jhtml?xml=/news/2008/01/11/wschool111.xml
It doesn't seem that out of the question that a tram system may have points that are controlled from the cab of the tram, either by IR or radio. All you need to do is assume that the points aren't switched the way you want them and explicitly switch them to the correct direction whenever you approch. There would be no need for security in the points control system if trams don't go over the maximum safe speed (ie the max speed you can be switched from your current line) for the points when they cross.
I suspect what happened here is that the scrote, sorry teen, switched the points when a tram was halfway over the points, cuasing derailment. It's not too long ago that tram systems had manual points which would have been controlled from the street (IIRC). Trams are not like rail systems in that they don't tend to have signalling systems.
As for giving him a job, a kicking would seem more appropriate.
I suspect that the Tram system in Łódź (thanks for the "copy 'n paste" Steve) has been this secure for a looong time.
The only thing that's changed is that, these days, screwing around with it results in arrest, a court case and, probably, a fine. Oh, and a lot of kudos from your mates.
When it was put in, tampering with it would have resulted in some very stern looking people taking you away in the middle of the night, asking you a lot of serious questions in a way that *really* encourages a quick answer. Oh, and your mates will never admit to having ever heard of you ever again.
Deterrence can be just as effective as security.......
This would be the same Łódź that just paid £10,000 for a website. A website that consists of just one page. A page that consists of just one image and no actual text. Image mapped to link to a bunch of external sites. All paid for by Polish tax payers money...
It sounds to me like Governments are just a waste of taxpayers money. Whereever you are in the world...
@nick
"Theoretically you could (at least for some of them). Some traffic lights have sensors in them that detect when emergency service vehicles or buses approach and 'green light' them. Never seen a public exploit for it though..."
Been done, at least once, in the US.
<http://www.msnbc.msn.com/id/12365330/from/RSS/>
>> "He treated it like any other schoolboy might a giant train set, but it was lucky
>> nobody was killed. Four trams were derailed, and others had to make emergency
>> stops that left passengers hurt. He clearly did not think about the consequences
>> of his actions,"
...a fourteen year-old boy who didn't think about the consequences of his actions. I thought fourteen year-old boys are well known for thinking through their actions.
@ Giles Jones
>> It's do to plonkers like this kid that we have DRM and encryption.
It's plonkers who design systems like this without thought to encryption that are the problem. Designing such a system without thought to security akin to designing such a system without thought to safety.
It is almost as bad as bus designers who design buses which are unlockable and bus drivers who leave the keys in the ignition whilst the driver goes to buy fags whilst at a timed stop. Goodness knows how many double deckers (sometimes full of passengers) have been stolen in this manner.
Snopes is wrong on this... One of my college projects was using OpenCV to create a similar system, as well as personal experience with my Motorcycle and Car.
A good majority of intersections work with Camera Vision Systems coupled with Inductive Sensors in the pavement. My small Tiburon (Coupe in the UK) was able to set off inductive sensors, but at night, I would experience problems with intersections that were purely based on camera vision triggered. I saw this 'tip' on snopes and gave it a try. I discovered that turning on my brights (not flashing) would trigger the camera recognition system.
My motorcycle (Honda VTX 1300c) is not able to trigger most inductive systems and has a small profile that very few camera systems would pick up. I discovered tha.the "blaring the higbeam" (again, not flashing) was the only way to trigger some lights.
The CV system works by detecting a change above a certain threshold in it's picture view. Turning on your brights createst a greater change in the picture.
If you happen to live near Overland Park, KS, you can test what I have found at the intersection of College and Nieman in the south left turn lane on Niemen. The intersection would not pick up my bike/car without highbeams (I used to run the light on my motorcycle after sitting for 5-10 mins)
I mean, look at the picture - it's Soviet-era technology. Who needs expensive command and control systems when you've got fear and secret police?
@ andy gibson.
I was wondering how far I'd get down this page without someone mentioning autism. The opinion that (very smart == savantism == autism) belongs in the 1970's, please leave it there :)
The kid is an idiot. He was caught, derailed a tram, got people injured. That's on par with hacking a street signal with a bb-gun.
Also, unless the tram derailed because of a sharp turn the conductor wasn't expecting, it was on purpose. By either fighting with the conductor (left, right, no... left... no right) or waiting until the tram was on the switch. The fact that he's trying to turn the tram in a different direction from the conductor, while there is another tram nearby also seems to point to intentional harm. Depending on the evidence, I hope they slam this kid.
According to Gazeta Wyborcza, where the photo someone else linked to comes from, the system is indeed infrared.
The engineer interviewed here suggests that the system is so underprotected that even a passenger on the tram might accidentally disrupt the system with an unaltered remote control.
http://miasta.gazeta.pl/lodz/1,35136,4824049.html
Did these IP addresses begin with 192. by any chance? If so those are internal network addresses.
If you look correctly at the proper RFC, only those beginning with 192.168.0.0 are "non routeable addresses. There are others (10.0.0.0/8 and 172.16.0.0/12). See RFC1918.
I suspect that they were "private addresses".
>>(very smart == savantism == autism)
Since we've already shown that hacking the system was no great feat, that line doesn't apply. However, autistic people do things like watch the trams and try to figure out how they work, and playing with them "like their own toy set" is entirely consistent with the condition. If he was indifferent to other people (not concerned that they might be injured or angry that they were delayed), then he is pretty much a dead ringer for autism.
Duncan,
Re: "Traffic Lights .... company we used for penetrations tests .... crack the IP interface"
I employed a pen-test company, in nut shell they did not crack my IP interface to the traffic lights (I think it may be the company you are referring to). Hence I do not like the comment:-
"Transport command and control systems are commonly designed by engineers with little exposure or knowledge about security using commodity electronics and a little native wit."
When the Pen-tester compliment you on your set up and can't do anything even with all the passwords, you know you have done a good job with the design.
Posting Anonymous.
Too late, Andy. A couple years ago or so some Palestinian militants talked a kid into strapping on bombs to walk to a checkpoint to blow up. Thankfully the scared-shitless Police were able to get him to take it off and what not without any deaths.
http://en.wikipedia.org/wiki/Hussam_Abdo
"Israeli media described Abdo as a "mentally challenged" boy while his brother, Hosni, said that Abdo "has the intelligence of a 12 year old."
Unfortunately his Mother is just as ignorant.
"If he was over 18, that would have been possible, and I might even encourage him to do it. But it's impossible for a child his age to do it."
- I picked a heart because there was no icon for a broken one.
Chris C
Believe it or not, not everyone who can read has a brain that works. This kid spent a good amount of time researching and building his device to take over the tracks. That requires a little more brainpower than programming a remote. Most people cannot program a remote or a VCR for that matter. You are giving stupid people far too much credit.
I say yeah..give the kid a job.
To all those of you saying: "The kid should be tied to a train track and then shot" & "in my day..." , my missus comes from Łódź (pronounced "ooch", as in "hooch") and from what she tells me the police there are definitely of the "Don't f**k with me if you value your knee-caps" variety.
When I was over there in November the tram drivers all drove like nutters and left the braking very late - more than once I saw a tram nearly rear-end another at a stop!
Remember points (or 'turnouts' for our colonial cousins) have a max speed at which they can be negotiated. Attempt to take one too fast and you_will_leave the track!
The coat with the mittens on a bit of string is mine...thank you
So, yes, some cities do use a transponder system. But, others do in fact just use some kind of flashing light detector. A friend of mine about 10 years ago had a truck with one badly misaligned headlight (my state has no safety inspections so there's some real shitboxes on the road). He found he could flash it and it'd turn the lights for him every time -- until a policemen finally caught him at it, wrote him some ticket for that and a ticket for the misaligned headlight, plus probably some other ones.
I also can second reading about someone (briefly) commercially selling the strobe-boxes, until they were quite quickly pulled off the market.
Intelligence isn't the only quality needed to help society. Sanity, sympathy, and a sense of responsibility are also required.
The last thing any one needs is for this guy to get a job where he get access to privileged information. At least not until he has demonstrated he can and has grown up. (Some people never grow up properly, psychopaths for example, and we have to minimize the control they have over other people.)
You need a the qualities of a responsible person in addition to intelligence, before you can handle a job that involves responsibility.
Tram points are controlled by the driver, not some signalman in a remote location, and in the old days they sometimes had to lean out the cab and physically change the setting using a pull cord or something like that. Using an IR remote is a handy upgrade, especially if you live somewhere cold and wet. The problem here is that the kid changed the track setting after the driver had set it, either sending the tram the wrong way or (if its while the vehicle is going over the switch) derailing it.
Its a lot more difficult to do this on a railroad. We have more opportunities to do this in the US because we put sidings off the main track in all sort of remote locations but changing would be vandalism -- you've got to cut locks and things. It might be easier to just unbolt a section of track.
Incidentally, we do use a form of remote control to change traffic signals in the US. Its supposed to be used on emergency vehicles only but due to an oversight it wasn't illegal to have one until recently.
"Its a lot more difficult to do this on a railroad. We have more opportunities to do this in the US because we put sidings off the main track in all sort of remote locations but changing would be vandalism -- you've got to cut locks and things. It might be easier to just unbolt a section of track."
That would be a federal crime and they would charge you with terrorism.
From what I've read in the Polish press (I'm from Łódź - actually couldn't get to the uni because of the derailment, it's pronounced /wooch/, btw), the problem is that he switched the points when the tram was halfway through it, thus derailing it. There should be some sort of protection against it, but it's installed only in few places (and since the transport company is renting the tracks from the city - which in turn gives them money for renovation - both refuse to take responsibility for that).
@Jeremy
> I mean, look at the picture - it's Soviet-era technology. Who needs expensive
> command and control systems when you've got fear and secret police?
Beg pardon?
My bad - though in fairness I've found the 'w'/Łó is hard to hear to someone used to Germanic languages (English, French, German), as opposed Slavic ones.
Loved the city, by the way (not necessarily the architecture! ;-) ). Was impressed that the road and tram network is being modernised at the time, meaning that although you guys are suffering traffic chaos at the moment, at least you'll get the pain over in one big hit. No-way could any city authority in the UK ever be that coordinated!
@Mitch
I grew up near Bern in Switzerland. On the 'inter-urban' routes (I.e. where the tram runs on dedicated tracks, not on a tracks in the road surface), they regularly hit 80km/h (50mph)- just don't hit the emergency stop (as some 14 yr olds are apt to do...) or the last thing to go through your head will be your arse!
Paris Hilton icon 'cos the girls in Łódź are far cuter....
"Transport command and control systems are commonly designed by engineers with little exposure or knowledge about security using commodity electronics and a little native wit."
As an Engineer who designs Railway Control Systems. I can assure you that every design engineer I have met throughout the UK and Australia has security and safety concerns at the forefront of every design.
If this comment were re-worded to be truthful it would read:
"Transport command and control systems are commonly designed by Engineers and passed through four stages of safety and security analysis processes using proprietary encrypted protocols running on specialised electronics and a lot of experiencial knowledge."
Society needs to stop blaming the kid and find the root cause of the problem. It is clear the engineers did not have a necessary skill / time needed to design a safe and secure system. This was the problem and the solution should be fixing it so that it doesn't happen again (training or providing the time to pick up these skills).
I'm a streetcar i. e., tram, motorman for the Port Authority Transit System here in Pittsburgh, PA, US. I say the Port Authority should bring this kid to Pittsburgh and hire him. We have a "stae of the art" signaling and routng system. Signals and routing can be controlled by the Operations Command Center remotely. In automatic, a route is selected onboard by the motorman by entering a three digit code into the "train-to-wayside" device console. This emits a radio signal which is picked up by receivers installed between the rails on the track.
One day a two car train was approaching a major junction. However its I.D. was lost from the system. As the train passed through the turnout at about 20 mph the following train set up its routing though that same interlock about a mile back. The switch threw under the train sendin the first car the right way and the second the wrong way thus derailing the train. This, they told us in training, "can't happen". I say, bring this kid to Pittsburgh and hire him. Maybe he can figure it out.
"A Polish teenager allegedly turned the tram system in the city of Lodz into his own personal train set, triggering chaos and derailing four vehicles in the process. Twelve people were injured in one of the incidents."
I can't quite work out if these were four vehicles derailed as a result of one signal change or if they were separate acts.
If the former, I can see how it was a prank gone wrong and it'd perhaps be a little shortsighted to be too harsh on him.
If the latter, lock away the key!
A 14-year-old is a child. End of story.
However - no sense blaming the designers of the system for "they should have known" not to build public transport a child can hack. 20 years ago, who was to know that kids would be able to hack (what was then) high-tech semiconductor control systems?