wolrah
New Member
I respectfully disagree. This is "plain text" only if you gain access to the secured system. It was included with the build not because Tesla didn't think it was a secret, but because they thought the system was secured. Maintaining separate codelines in order to prevent new feature information from entering the builds is time consuming, costly, and a source for issues (missed bug fixes while merging, reduced testing, etc).
I disagree with the assertion that the car qualifies as a "secured system". It's a general rule in computer security that if the attacker has unrestricted physical access to the system they'll be able to access any plaintext stored inside it. It is of course possible to design devices that self destruct (or at least destroy the keys used to secure sensitive data) when physically tampered with, but even that isn't foolproof. Look up the talk on "Shopshifting" from last year's Chaos Communication Congress, around 36:30 in they discuss how they bypassed the protections on the hardware security module in a payment terminal.
Anyways, interested enthusiasts digging through update files for hints about the future is a fact of life these days. Every time Google or Apple release an update for their phone platforms or one of their apps there's pretty much a race to see who can find any potential "leaks" first. Full desktop OSes have the same problem, if closely coupled with hardware (I know Mac OS X has inadvertently leaked details of future hardware, I think ChromeOS might have too). Same with game consoles, or even the games that run on them (see almost every Half-Life 3 rumor spawned by some assets in a /hl3/ directory in some Valve game). Tesla is full of intelligent people who in many cases came from the computer industry, I have a very hard time believing they aren't very aware of this.
You are of course correct about the build side. Unless things are *really* modular it can be really hard to keep bits and pieces of future features from making it in to bugfix releases of the older tree. It's not impossible, but how common this sort of update-mining is it's clear that a lot of major software vendors either don't care or haven't been able to do it.