Then were is this sign coming from that you stated:But with regard to police pulling a sign out of their trunk which has been sitting there for a week... they can’t. I’ve explicitly stated that any QR code means absolutely nothing by itself. So you have a copy of a meaningless sign? Tell me what the risk is?
You can't have it both ways -- they either just pull a sign out of their trunk or they don't. Which is it?First responders needn’t generate a new QR code nor anything else you suggest. They pull a sign out of the trunk of their cruiser and put it up. At a minimum it instructs the auto car to go to manual mode. Otherwise, a dispatcher can update specific instructions.
If you are saying that the sign has to be activated each time it is used, then that runs into two of the issues I've already touched on -- it requires the first responders to spend time doing administrative tasks instead of attending to the incident and it requires that all incidents occur in places that have sufficient connectivity for the necessary communications to occur.
Really, these similar issues always appear after the fact. But if the designers looked ahead, it’s a lot easier to design away a problem than try to retrofit a solution.
This is actually an interesting question that I had a long and fascinating discussion with our recent NSA Visiting Professor. I mentioned that it seemed to me that all of these new technologies always bolt on security as an afterthought and never seriously design it in from the beginning. He responded that bolting it on after the fact is the way it should be (or perhaps a more accurate description is that it's the way it has to be). That set me back on my heels (given his background) but over the course of the discussion he pretty much swayed me to his side -- or at least convinced me that he had a very valid view. He pointed out system after system that has attempted to build security into it from the beginning and noted that none of them have ever seen the light of day, including a secure operating system that the NSA has been trying to develop for a couple of decades now. Systems that do see the light of day usually have a relatively basic security foundation and then, as the issues are uncovered, they are addressed through patches and upgrades.
The discussion started over IPv6 and how originally the utopian-dreamers that developed it assumed that you could just assign each person a huge block of addresses or assign a different block of IP addresses to each square millimeter of the Earth's surface (or both) and how later others pointed out the privacy and tracking issues with either approach. The solutions are being developed as after-the-fact bolt-ons. When I claimed that it would have been nice had the original developers at least given some thought to issues such as this, he commented that if they had then they would probably still be going back and forth about how to address them and we would still be years away from seeing IPv6 implemented at all (if ever).