Okay, I didn’t realize we were assuming an exploit in the parser which allows for arbitrary message sending. When I would write CAN logic we didn’t do any sort of authentication. And I know parsers have historically been an attack vector but I don’t understand how people write parsers that are exploitable for arbitrary CAN message sending.