In light of the growing number of hacks and data theft going on in the US, I've been giving some serious thought to tightening up my online security.
One thing I've been working on is how to keep the convenience and security of having a connection to my car with OVMS while also making it secure against internet hackers. While it seems like a simple solution to just turn off GPRS on the module, I want to maintain the ability to locate the car should it be stolen or towed, and turning off GPRS kills that ability. So, the solution appears to be to remove the server IP address from the module and delete my account from the server. This also requires that I change notification to SMS and possibly expect a higher bill on the SIM card, though that seems unlikely. Leaving GPRS enabled allows the module to reach Google and send the map link via SMS, but with server address removed, it's not sending the location data to Tesla's servers.
Is it also possible that the module could simply send coordinates via SMS, eliminating the need to be online altogether? Or could it ping the coordinates and send the approximate address via SMS to be compatible with basic cell phones (no Google maps link)? A firmware update could allow both of these. If no GPRS connection, send SMS coordinates. If there is a connection, lookup nearest address and send that.
Also, at the start of a charge, have an option to automatically send STAT? results with the nearest address or coordinates. That way, future location inquires can be checked against the location sent when the car was plugged in.
"Bear" - 2012 Diamond White Pearl ES with QC - 2/21/2013
"Koorz" - 2012 Cool Silver Metallic ES with QC - 1/5/2015
"Photon" - 2017 Bolt EV LT in Orange with QC - 7/31/2017
Solar-powered since 10/10/2013