RollBack: A New Time-Agnostic Replay Attack Against the Automotive Remote Keyless Entry Systems. (arXiv:2210.11923v1 [cs.CR])

Today's RKE systems implement disposable rolling codes, making every key fob
button press unique, effectively preventing simple replay attacks. However, a
prior attack called RollJam was proven to break all rolling code-based systems
in general. By a careful sequence of signal jamming, capturing, and replaying,
an attacker can become aware of the subsequent valid unlock signal that has not
been used yet. RollJam, however, requires continuous deployment indefinitely
until it is exploited. Otherwise, the captured signals become invalid if the …

attack automotive entry keyless keyless entry replay systems