Login

u/ktauchathuranga

▲ 0 r/research

Request - arXiv endorsement needed for cs.CR (Cryptography and Security)

Hi everyone,

I am preparing to submit my paper to arXiv under the cs.CR (Cryptography and Security) category, and I am looking for a registered endorser for this section.

My paper, titled "Exploiting Fixed-Code RF Protocols in Micro-Mobility: A Case Study of the Yadea T5 Keyless Entry System (CVE-2025-70994)" , presents a comprehensive security analysis of the EV1527 fixed-code RF protocol. It details a methodology using low-cost SDR hardware to passively intercept and synthesize high-sensitivity vehicle commands due to a lack of rolling code mechanisms.

Here is the abstract:

"The rapid adoption of micro mobility vehicles, such as electric bicycles and scooters has driven manufacturers to replace or combine traditional mechanical locks with electronic keyless entry systems. however, to reduce manufacturing costs, many of these systems rely on legacy radio frequency (RF) integrated circuits that lack modern cryptographic protections. this paper presents a comprehensive security analysis of the EV1527 fixed-code RF protocol as implemented in the YADEA T5 electric bicycle platform. we demonstrate a critical weak authentication vulnerability (CWE-1390) [1], officially designated as CVE-2025-70994. because the EV1527 protocol utilizes a static 20-bit device address and lacks rolling code mechanisms, it is highly susceptible to RF replay attacks. utilizing low-cost, readily available software-defined radio (SDR) and microcontroller hardware, we outline a methodology to passively intercept, decode and synthesize high-sensitivity vehicle commands, such as ignition, without authorization. the vulnerability yields a CVSS v3.1 base score of 7.3 (High). finally, this paper proposes immediate physical security mitigation for current vehicle owners and long-term cryptographic protocol upgrades for hardware manufacturers to secure the next generation of micro mobility platforms."

If you are an eligible endorser for cs.CR and would be willing to read my draft and potentially endorse my submission, please send me a Direct Message or comment below and I will reach out. I can provide the full PDF for your review along with the endorsement code.

Thank you for your time and help!

reddit.com
u/ktauchathuranga — 13 hours ago
▲ 3 r/srilanka

Anyone planning to get the amateur radio license this year? - 2026

if do please add a comment and say hows your preparations and exams are expected in which month?
:(

reddit.com
u/ktauchathuranga — 4 days ago
▲ 24 r/Operatingsystems

PrivilegeOS - a tiny, purpose built OS for Windows pentesting

Hey guys,
just wanted to share this project called PrivilegeOS. It's a super small Linux distro you can boot right from a USB in under 30 seconds.

Basically, it's built to help you get into a locked Windows machine. It automatically mounts your Windows drive and runs a built-in tool that uses the old sticky keys trick to give you full admin access. It even handles the annoying hibernation files for you automatically so it mounts properly.

Really handy for pentesting labs or if you just forgot the password to an old PC and need to get back in.

Check it out here:https://github.com/ktauchathuranga/privilegeos

Let me know what you think!

u/ktauchathuranga — 7 days ago