-
It's not stupid, it's advanced. -
A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.Comment
-
Re: Key Bumping is for Hacks
Funny. Let's also outlaw matlab, computers, and key-cutters. And eyesight.
The point is that, for a tinfoil hat paranoid, the first suggested solution:
Is in some ways superior to the second one:Originally posted by IAmReck
and the third oneOriginally posted by streaker69
neither address the core issue that the first suggestion did. (preventing photography of keys)Originally posted by streaker69It's not stupid, it's advanced.Comment
-
Re: Key Bumping is for Hacks
Perfect solution. Up north most houses have these things called "arctic entries". It's basically an enclosed unheated(usually) front porch. It's like an airlock for heated inside air. Most people don't lock the door on them, and lock the entry door inside them. Unless someone mounts a camera inside, they aren't getting a photo of your keys.Comment
-
A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.Comment
-
Re: Key Bumping is for Hacks
as most of us TOOOL folk will tell you in our lectures and workshops, if you're worried about copies of your keys, just invest in a higher-security lock.
Abloy's Protec series is not only "unpickable" in the conventional sense, but keys cannot be illicitly duplicated by any means other than making a cast impression (which requires physical possession of the key for a while, and the result is still iffy sometimes)
Keys by the Austrian manufacturer Evva (especially their MCS, magnetic code system lock) cannot be made by anyone who lacks their factory equipment. Yeah, if you're uber-paranoid about key copies, the MCS is the bomb-shizzle with your name on it in neon letters."I'll admit I had an OiNK account and frequented it quite often… What made OiNK a great place was that it was like the world's greatest record store… iTunes kind of feels like Sam Goody to me. I don't feel cool when I go there. I'm tired of seeing John Mayer's face pop up. I feel like I'm being hustled when I visit there, and I don't think their product is that great. DRM, low bit rate, etc... OiNK it existed because it filled a void of what people want."
- Trent ReznorComment
-
Re: Key Bumping is for Hacks
Why not just skip keys altogether?
The latest fad in hardware security seems to be entry locks that use keypads powered by batteries for the user to type in their passcode. Trilogy, Alarm Lock and Codelocks are making these, but I haven't seen any reference to them on the defcon site. Since I didn't get to Vegas for the latest lock picking marathon, I'm wondering if defeating these locks that use piezo technology were in any of the contests and if anybody succeeded in opening them. (I did come across somebody on the net who claims that the "Ring of the Devil" device opens some (all?) piezo locks. If these brands and types haven't been in a defcon contest yet, how having a go at them next year?Comment
-
Re: Key Bumping is for Hacks
Good idea about having them in a contest next year. May a posit an issue?
keypads are single auth. Do you see an issue here? I would much prefer a sturdier key lock (such as DO suggested in the interview he did in 2007 or was it 2006) with a twist to it. Require a bio or key code. Someone steals all the stuff I am carrying, including my keys, they still can't get in my house, even if they require me to give up my ATM code which could empty my bank account. I suppose my point being? First, this is by no way my area of expertise. But, I posit you can throw more tech at keeping things locked up, but if someone can break a window that's not alarmed and get in that way, why go to all the effort? I think we need some more outside of the box thinking here...
Like lasers.... :-)
regards,
valkyrie
__________________________________________________ ________________
sapere audeComment
-
A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.Comment
-
Re: Key Bumping is for Hacks
"Jees Scotty, you got me sharks with frickin laser beams!"
Ahem
Have to agree with Valkyrie, no point in pumping hundreds of dollars/pounds/euro/etc into a kick ass, close to unbreakable lock, if the intruder can simply put a brick through your window and hop in.
Unless of course we're discussing commercial examples like restricted access areas of a company building etc.
But for home security, you definitely have to look at alot more than the lock on your front door.This is a horrible fontComment
-
Re: Key Bumping is for Hacks
Well, then, that would be closer to a physical implementation of "zones of control" hopefully used in reasonable networking environments. I loved Streakers comment:
I would love to see all of these fun devices in action just because I am a geek and I like fun toys. Show me how to hack them, yes. Also show or tell me how to deploy them in the proper environment properly. Perhaps that is what I really meant to say. I meant no detraction from my awesomely skilled lock hacking/picking/deploying friends.Which is exactly why I have my house surrounded by sharks, sharks with lasers on their heads.
Regards
valkyrie
__________________________________________________ ____________________
sapere audeComment
Tweet
Comment