Welcome to Tesla Motors Club
Discuss Tesla's Model S, Model 3, Model X, Model Y, Cybertruck, Roadster and More.
Register
  • Want to remove ads? Register an account and login to see fewer ads, and become a Supporting Member to remove almost all ads.
  • The final cut of TMC Podcast #27 is available now with topics time-stamped. We discussed: Consolidation in LiDAR manufacturers; Volvo EX90 shipping with LiDAR; FSD Beta Full Release in N.A.; FSD detecting autopilot cheats, Gwen Shotwell directly overseeing SpaceX Starship; and more. You can watch it now on YouTube. We should have it published to podcast networks shortly.

Phone App v2.0 (FW v6.0)

pgiralt

Active Member
Supporting Member
Jun 16, 2013
1,521
157
Cary, NC
Nice new features included in the new iOS app related to 6.0. From the release notes on the phone:

Owners will now be notified when:
- There's a software update available for install on Model S
- Charging has started, been interrupted, or is complete
- Car alarm has been triggered

Owners will now be able to start their Model S from the app
Support for the new Calendar feature in Model S Release v6.0
New UI Layout
 

FlasherZ

Sig Model S + Sig Model X + Model 3 Resv
Jun 21, 2012
7,030
1,030
So, can you start the car from your iPhone? I see that's not mentioned in the 6.0 release notes.

Yes.

Android app out this morning.

Requires you to enter your My Tesla password to start the car, though. I think that's an incredible mistake as my phone is already secured, the keyfob is already less secure, and typing my (properly) complex password is a pain in the ass. I want the convenience... and if (Apple)pay can be as simple as tapping your phone to a pay kiosk, then (Tesla)Start can be as simple as just hitting the button. If you want security, Tesla could force you to log into the app each time you want to bring it up. I'd opt-out of that.

It's a button at the top of the "controls" screen.

Does not require BT or proximity to the car, just used OTA like the rest of the app functionality.

ymy9ejez.jpg
 

DaveT

Searcher of green pastures
Nov 15, 2012
3,502
11,184
Texas
Yes.

Android app out this morning.

Requires you to enter your My Tesla password to start the car, though. I think that's an incredible mistake as my phone is already secured, the keyfob is already less secure, and typing my (properly) complex password is a pain in the ass. I want the convenience...

I am very confident that this will be updated in the future. The Tesla app will allow TouchID (on at least in iOS) instead of having to manually input your password to start the car. I think as is its an okay first iteration that will improve over time.
 
I am very confident that this will be updated in the future. The Tesla app will allow TouchID (on at least in iOS) instead of having to manually input your password to start the car. I think as is its an okay first iteration that will improve over time.

Unfortunately it will only encourage people to use simple passwords on their account. This is textbook bad security. I though they hired some security expert out from Apple? They should know better.
 

bollar

Disgruntled Member
May 1, 2013
2,667
882
Southlake, TX
For now, it looks like this should be considered an emergency backup only
Yes. If I understand FlasherZ correctly, it is using the API, so you would't be able to start the car if you didn't have some sort of WAN connectivity. That plus the password makes it emergency-only for me. So, instead of the zOMG!!! I was hoping for, I give it a "Nice."
 
Unfortunately it will only encourage people to use simple passwords on their account. This is textbook bad security. I though they hired some security expert out from Apple? They should know better.

Disagree. It's up to the owner to secure their own car. If they want extra security they'll make a strong enough password. Otherwise, oh well, but who are we to tell them which passwords they can and cannot choose. That's one of my pet peeves about internet security. My passwords are not the strongest but they're fairly decent. I've never been hacked and I'm ok with taking the very small risk it entails.
 
Yes. If I understand FlasherZ correctly, it is using the API, so you would't be able to start the car if you didn't have some sort of WAN connectivity. That plus the password makes it emergency-only for me. So, instead of the zOMG!!! I was hoping for, I give it a "Nice."
For those of you with jailbroken iPhones, you can use tweaks like iTouchSecure to use TouchID for autocompleting passwords. Combine that with Activator and you can start your car just by holding the home key for 5 seconds for instance :)
 
Unfortunately it will only encourage people to use simple passwords on their account. This is textbook bad security. I though they hired some security expert out from Apple? They should know better.


Know better than what?
Tesla is giving the opportunity for people to determine their own risk levels. Continue to use your highly secure password and this is a non-issue for you.
 

DaveT

Searcher of green pastures
Nov 15, 2012
3,502
11,184
Texas
Firmware 6.0

For those of you with jailbroken iPhones, you can use tweaks like iTouchSecure to use TouchID for autocompleting passwords. Combine that with Activator and you can start your car just by holding the home key for 5 seconds for instance :)

That's pretty awesome. Too bad I don't have my iPhone jailbroken.

If the remote start uses their REST API, then I wonder if it's possible to create a custom ad hoc app where you can just launch the app and the car will start.
 
Know better than what?
Tesla is giving the opportunity for people to determine their own risk levels. Continue to use your highly secure password and this is a non-issue for you.

That's not actually the point. Think about it this way:

Another bad practice is to require users to rotate password too often. Sounds good on paper. People should be more secure because old passwords will have a limited life, and users will need to use more complex passwords instead of using the same password everywhere.

But in the real world all it does is encourage users to write down passwords they can't remember, or use password that are as simple as they can get away with so they can remember them. Overall is lowers the security of a system.

Same goes here. Most users will just be annoyed by this and use a password that is simpler than they would have otherwise. The end result may be compromised Tesla accounts. The press around it won't blame the users for using bas passwords, it will blame Tesla for having a system that was compromised.
 

DaveT

Searcher of green pastures
Nov 15, 2012
3,502
11,184
Texas
Most users will just be annoyed by this and use a password that is simpler than they would have otherwise.

I think most users will use remote start just in emergency situations, thus won't be changing their password to make it simpler. It's probably just the very, very small 0.1% or less of users that will use the function as a key fob replacement and those owners if they change their password to make it simpler should understand the risks involved. Also Tesla probably has restrictions on how short/simple your password can be.
 

bollar

Disgruntled Member
May 1, 2013
2,667
882
Southlake, TX
I think most users will use remote start just in emergency situations, thus won't be changing their password to make it simpler. It's probably just the very, very small 0.1% or less of users that will use the function as a key fob replacement and those owners if they change their password to make it simpler should understand the risks involved. Also Tesla probably has restrictions on how short/simple your password can be.
At the car, even if the password is "1", that's substantially more secure than the fob. Of course, this is at the expense of opening up your Tesla account to some sort of malfeasance. I doubt most owners will understand that risk.

My current password can't be typed into a phone, so I will have to decide if the emergency value of the feature is worth it.
 

FlasherZ

Sig Model S + Sig Model X + Model 3 Resv
Jun 21, 2012
7,030
1,030
I think most users will use remote start just in emergency situations, thus won't be changing their password to make it simpler. It's probably just the very, very small 0.1% or less of users that will use the function as a key fob replacement and those owners if they change their password to make it simpler should understand the risks involved. Also Tesla probably has restrictions on how short/simple your password can be.

My phone is already protected by security because of the immense amount of access/information behind that security screen, which to me is a far greater risk than someone using my phone to start my car. The amount of damage someone can do with my unlocked phone is far, far greater than just taking my car. I want the convenience of the app to start the car with a simple one button push.

Or, if you INSIST that it be protected, do like OnStar does - their remote start app doesn't require you to deal with a complex password, instead requiring a simple 4-digit PIN to unlock/start/lock the vehicle.
 

About Us

Formed in 2006, Tesla Motors Club (TMC) was the first independent online Tesla community. Today it remains the largest and most dynamic community of Tesla enthusiasts. Learn more.

Do you value your experience at TMC? Consider becoming a Supporting Member of Tesla Motors Club. As a thank you for your contribution, you'll get nearly no ads in the Community and Groups sections. Additional perks are available depending on the level of contribution. Please visit the Account Upgrades page for more details.


SUPPORT TMC
Top