Secdocs

Learn, hack!

Hacking and security documentation: slides, papers, video and audio recordings. All in high-quality, daily updated, avoiding security crap documents. Spreading hacking knowledge, for free, enjoy. Follow on .

We Don't Need No Stinkin' Badges: Hacking Electronic Door Access Controllers

General Info
Type
Video
Tags
physical security
Authors
Shawn Merdinger
Event
Confidence 2010 Krakow
Indexed on
May 25, 2013
File details
URL
http://data.proidea.org.pl/confidence/7edycja/materialy/video/Shawn%20Merdinger.mpg
File name
Shawn%20Merdinger.mpg
File size
551.8 MB
MD5
1bbe5c6e32dbbf66d3ea2955729eedae
SHA1
b0e7a050d8f170f5c2d240ec99b8725cdad2d3f3
Abstract

I’d like to mention again that even though I’m presenting on this topic at other security conferences like HITB, the content is derived from ongoing security evaluations. Thus, each presentation will include new content and new vulnerabilities released, with the goal of building on the previous presentation.In the security world, attacker physical access means game over; so what happens if you can’t trust your electronic door system? This presentation and paper explore attack surfaces and exploitation vectors in a major vendor of electronic door access controllers (EDAC). The main focus is on time-constrained rapid analysis and bug-hunting methodologies applicable to a variety of embedded devices, with additional focus on research techniques that assist in locating and targeting EDAC systems. Rounding out the presentation is a review of practical countermeasures and potential research activities in the EDAC space. Attendees can expect an eye-opening experience regarding the insecurities of critical systems controlling physical access to environments like hospitals, schools, fire stations, businesses, etc.

About us

Secdocs is a project aimed to index high-quality IT security and hacking documents. These are fetched from multiple data sources: events, conferences and generally from interwebs.

Statistics

Serving 8166 documents and 531.0 GB of hacking knowledge, indexed from 2419 authors from 163 security conferences.

Contribute

To support this site and keep it alive, you can click on the buttons below. Any help is really appreciated! This service is provided for free, but real money is needed to pay bills.

Flattr this Click here to lend your support to: Keep live SecDocs for an year and make a donation at www.pledgie.com !