?

Log in

No account? Create an account
Ramblings Journals I Read Calendar The Dirt MegaZone's Waste of Time Older Older Newer Newer
Master-Keyed Lock Vulnerability - MegaZone's Safety Valve
The Ramblings of a Damaged Mind
zonereyrie
zonereyrie
Master-Keyed Lock Vulnerability
A post by mindways reminded me of this. I'd seen a link to this paper some time ago, probably on some crypto forum, and well before that I'd heard of this kind of attack anecdotally. Having taken apart pin tumbler locks myself to play with the keying, and sometimes fix them, this kind of attack certainly makes sense.

But I'd bet that a lot of people, including people who decide to install these kind of master key systems in their institutions, have no idea how vulnerable they are.

If you live or work in a building that has a master key system, you want to read this and the paper it links to.

I am: hungry hungry
Current Media: office buzz

4 STDOUT || STDIN
Comments
z_gryphon From: z_gryphon Date: October 21st, 2004 11:16 am (UTC) (Direct Link)
Hell, I don't even have keys to a couple of the doors on my house.
(Deleted comment)
akawil From: akawil Date: October 21st, 2004 12:40 pm (UTC) (Direct Link)
I am the proud owner of two master keys for the buildings I work in, cut by Matt Blaze himself.

The master key that opens my office door is generally more reliable than my actual office key — it was cut directly to the appropriate pattern, rather than being a copy-of-a-copy...
rbarclay From: rbarclay Date: October 21st, 2004 01:04 pm (UTC) (Direct Link)
Ah yes. The joys of physical cryptanalysis.

My own apartment complex allegedly has no master-key, but since I don't trust the landlord in this, I have made sure my insurance calso covers theft with no physical evidence of breaking in (I blame Bruce Schneier for that one).
4 STDOUT || STDIN