locks – WindowsTechs.com

Security Vulnerability in Saflok’s RFID-Based Keycard Locks

Posted on March 27, 2024 by Bruce Schneier

Today, Ian Carroll, Lennert Wouters, and a team of other security researchers are revealing a hotel keycard hacking technique they call Unsaflok. The technique is a collection of security vulnerabilities that would allow a hacker to almost instantly open several models of Saflok-brand RFID-based keycard locks sold by the Swiss lock maker Dormakaba. The Saflok systems are installed on 3 million doors worldwide, inside 13,000 properties in 131 countries. By exploiting weaknesses in both Dormakaba’s encryption and the underlying RFID system Dormakaba uses, known as MIFARE Classic, Carroll and Wouters have demonstrated just how easily they can open a Saflok keycard lock. Their technique starts with obtaining any keycard from a target hotel—say, by booking a room there or grabbing a keycard out of a box of used ones—then reading a certain code from that card with a $300 RFID read-write device, and finally writing two keycards of their own. When they merely tap those two cards on a lock, the first rewrites a certain piece of the lock’s data, and the second opens it…

Continue reading Security Vulnerability in Saflok’s RFID-Based Keycard Locks→

Are hardware locks resistant to port snooping? [closed]

Posted on December 27, 2022 by Iman Lari

When I searched on the internet, I saw that there are ways to crack the hardware locks, which method is to listen to the connected ports and copy the information that is exchanged, and design a simulator that runs the program.
Is there a m… Continue reading Are hardware locks resistant to port snooping? [closed]→

Security Vulnerabilities in Honda’s Keyless Entry System

Posted on July 12, 2022 by Bruce Schneier

Honda vehicles from 2021 to 2022 are vulnerable to this attack:

On Thursday, a security researcher who goes by Kevin2600 published a technical report and videos on a vulnerability that he claims allows anyone armed with a simple hardware device to steal the code to unlock Honda vehicles. Kevin2600, who works for cybersecurity firm Star-V Lab, dubbed the attack RollingPWN.

[…]

In a phone call, Kevin2600 explained that the attack relies on a weakness that allows someone using a software defined radio—such as HackRF—to capture the code that the car owner uses to open the car, and then replay it so that the hacker can open the car as well. In some cases, he said, the attack can be performed from 30 meters (approximately 98 feet) away…

Continue reading Security Vulnerabilities in Honda’s Keyless Entry System→

Bluetooth Flaw Allows Remote Unlocking of Digital Locks

Posted on May 20, 2022 by Bruce Schneier

Locks that use Bluetooth Low Energy to authenticate keys are vulnerable to remote unlocking. The research focused on Teslas, but the exploit is generalizable.

In a video shared with Reuters, NCC Group researcher Sultan Qasim Khan was able to open and then drive a Tesla using a small relay device attached to a laptop which bridged a large gap between the Tesla and the Tesla owner’s phone.

“This proves that any product relying on a trusted BLE connection is vulnerable to attacks even from the other side of the world,” the UK-based firm said in a statement, referring to the Bluetooth Low Energy (BLE) protocol—technology used in millions of cars and smart locks which automatically open when in close proximity to an authorised device…

Continue reading Bluetooth Flaw Allows Remote Unlocking of Digital Locks→

What is the difference between a code and a cipher (Cypher)? [closed]

Posted on May 15, 2022 by learner

I have understood from reading in "Hit the expert" in Hebrew Wikipedia that a Cipher is a code which includes a key in the input.
Also:

A code affects the word, and a cipher affects the individual letters. Cipher — A cipher is a… Continue reading What is the difference between a code and a cipher (Cypher)? [closed]→

Tricky apartment key fob copies frequency & code correctly but the copy doesn’t work – not a rolling fob

Posted on December 14, 2021 by Gimme the 411

I have this key fob for our apartment building, and I want to make a copy of it.
I’ve taken it to 3 locksmiths who are able to create a copy, but the copies don’t work.
I’ve confirmed that it doesn’t appear to be a rolling fob by comparin… Continue reading Tricky apartment key fob copies frequency & code correctly but the copy doesn’t work – not a rolling fob→

Determining Key Shape from Sound

Posted on March 24, 2021 by Bruce Schneier

It’s not yet very accurate or practical, but under ideal conditions it is possible to figure out the shape of a house key by listening to it being used.

Listen to Your Key: Towards Acoustics-based Physical Key Inference
Abstract: Physical locks are on… Continue reading Determining Key Shape from Sound→

Thoughts on Vaccine Security

Posted on January 15, 2021 by emory

Are there any recommendations for the physical security of COVID-19 vaccine?
I recently watched this video https://www.youtube.com/watch?v=uoqMA9vAOrQ on covid-19 vaccine distribution. At the 0:40 mark, someone enters a code to access a l… Continue reading Thoughts on Vaccine Security→

Copying a Key by Listening to It in Action

Posted on August 20, 2020 by Bruce Schneier

Researchers are using recordings of keys being used in locks to create copies. Once they have a key-insertion audio file, SpiKey’s inference software gets to work filtering the signal to reveal the strong, metallic clicks as key ridges hit the lock’s pins [and you can hear those filtered clicks online here]. These clicks are vital to the inference analysis: the… Continue reading Copying a Key by Listening to It in Action→

Smart Lock Vulnerability

Posted on August 10, 2020 by Bruce Schneier

Yet another Internet-connected door lock is insecure: Sold by retailers including Amazon, Walmart, and Home Depot, U-Tec’s $139.99 UltraLoq is marketed as a "secure and versatile smart deadbolt that offers keyless entry via your Bluetooth-enabled smartphone and code." Users can share temporary codes and ‘Ekeys’ to friends and guests for scheduled access, but according to Tripwire researcher Craig Young, a… Continue reading Smart Lock Vulnerability→