Slashdot Mirror

← Back to Stories (view on slashdot.org)

The Study of Physical Hacks at DefCon

Posted by Zonk on from the old-ways-are-the-best-ways dept.

eldavojohn writes "DefCon usually focuses on electronic security, but Saturday a talk was held that focused on possibly the oldest form of hacking — lockpicking. As software security becomes better and better, the focus may be shifting towards simple hacking tips like looking over someone's shoulder for their password, faking employment or just picking the locks to gain access to the building where machines are left on overnight. From the article: 'Medeco deadbolt locks relied on worldwide at embassies, banks and other tempting targets for thieves, spies or terrorists can be opened in seconds with a strip of metal and a thin screw driver, Marc Tobias of Security.org demonstrated for AFP ... Tobias says he refuses to publish details of 'defeating' the locks because they are used in places ranging from homes, banks and jewelers to the White House and the Pentagon. He asked AFP not to disclose how it is done.' I'm sure all Slashdot readers are savvy enough to use firewall(s) but do you know and trust what locks 'physically' protect your data from hacks like these?"

21 of 299 comments (clear)

  1. "Hacking" by Arthur+Grumbine · · Score: 5, Informative
    From TFS,

    "...simple hacking tips like looking over someone's shoulder for their password."

    How far the meaning of this word has come from it's original usage.

    --
    Now that I think about it, I'm pretty sure everything I just said is completely wrong.
  2. How to pick Medeco locks by Iphtashu+Fitz · · Score: 2, Informative

    Google is your friend. All of about 30 seconds of searching came up with this article as well as others. Although I didn't watch them I also found a few videos posted on YouTube that claim to demonstrate how to do it.

    1. Re:How to pick Medeco locks by mlts · · Score: 4, Informative

      From what the original poster's article said, this appears to be a valid method against the original Medeco and the Medeco Biaxial line [1], but I don't see how this would have any effect at all versus the latest Medeco3 mechanism (well, latest since 2003), which uses side bitting on the key as well as the usual Medeco rotating pins.

      Other than Medeco, there is one type of lock that would be excellent for security, Abloy's Protec line, which from what I read takes 10-12 hours to pick even for the pros at detainer disk type of locks. However, the Protec line isn't sold in the US. Older Abloy lines are decent, but it would take far less time for a pro to pick them open. There are other high security locks out there, and one can read from a lock site what the weaknesses are of each of them.

      Nothing is 100% secure. If some thief is determined enough to bypass something, they can.

      Lastly, high security locks just one tool, in a toolbox of security options. If its worth locking with a high security cylinder, its worth having a centrally monitored alarm system (with a duress code [2] option.)

      [1]: Biaxial isn't that much more secure than the original Medeco, but it allows for (IIRC) 10 times as many key combinations, allowing for more flexible keying options.

      [2]: Yes, home invasions are on the rise, so make sure an alarm system has a duress feature (where it disarms, but silently calls the central station)... and USE the alarm. If at home, use the alarm's "at home" feature which monitors the doors and windows, but doesn't arm the IR detectors. A high security lock is no good when it is opened by the owner at gunpoint.

  3. Re:Backstop that lock... by swb · · Score: 4, Informative

    No, it was meant to be serious. Locks keep out honest people and lazy criminals (given how often the police issue updates reminding us to lock the doors because they've had a run of unforced entry burglaries, there must be a lot of them).

    Weapons keep out ANYBODY, but watch out for criminal-friendly laws on deadly force that either require you to flee your own home or prove that you were threatened with imminent risk of death or great bodily harm.

    Fortunately where I live, deadly force is justified within your own home top stop the commission of a felony, and burglary is a felony.

  4. How Medeco locks work by Beryllium+Sphere(tm) · · Score: 4, Informative

    The cuts in the key are individually angled so they rotate the tumblers as well as lifting them. Slots in the tumblers are lined up by the rotation to unlock a sidebar that fits into a longitudinal slot in the cylinder.

    Bump keys can't even get started opening that.

    More burglars have feet than have lockpicking skills. Step one in physical security is to combat kick-in attacks. Replace your strike plate, which I can almost guarantee is inadequate, with a reinforced model like the Mag-3 and most important, install it with #10 wood screws at least 3" long, so it can't tear out of the studs when subjected to a good kick. Predrill the holes and put soap on the threads so you don't break screws as you install it.

    A block watch is a great idea too. Neighbors are a security mechanism.

    An alarm system also protects you against fire, which depending on where you live can be a bigger threat than burglary.

    1. Re:How Medeco locks work by Tamugin · · Score: 2, Informative

      Predrill the holes and put soap on the threads so you don't break screws as you install it.

      Replace soap with beeswax in this case. The moisture in soap will affect the wood surrounding the screws and weaken it. Beeswax leaves the wood in good shape as well as helping you to drive 3" screws without shearing the heads off when you're almost finished.

      --
      Chris
  5. Re:Backstop that lock... by kd5ujz · · Score: 4, Informative

    I take it you have not seen the "Protected by Smith & Wesson" Signs.

    http://www.smith-wesson.com/webapp/wcs/stores/serv let/CustomContentDisplay?langId=-1&storeId=10001&c atalogId=11101&content=36818

    http://www.preparedness.com/protbysmitwe.html

    --
    -William
    God is everything science has yet to explain.
  6. The article summary must be misleading. by Anonymous Coward · · Score: 1, Informative

    The summary must be butchering Marc Tobiases recent claim of the obvious: The slider mechanism in the Medeco M3 is a patent extension feature and provides virtually no additional security.

    Gasp! You don't say?

    Almost all lock manufacturers add these useless features every time their patent expires. The M3 one being particularly worthless, but others that come to mind are the Bilock trigger, the Schlage Everest Slider, and the Mul-T-Lock interactive element. I believe it's EVVA that added a similar mechanism to their locks, but one that is almost worthy of being called an upgrade.

    They all accomplish the same thing: A "specially" made portion of the key, moves(or allows to move) a spring loaded obstruction until it now longer obstructs the shear line. Most of these obstructions can be cleared out of the way with a lockpick or aren't even an issue if the lock is being picked.

    If Marc Tobias ACTUALLY accomplished as the article suggested, then he would have to provide extraordinary proof to match his extraordinary claim. I am intimately familiar with Medeco, and a strip of metal and a paperclip isn't going to open these locks mounted on a door short of a comb attack which I doubt would work, or through an extraordinary amount of skill. Medeco are a BITCH to pick.

    1. Re:The article summary must be misleading. by nehumanuscrede · · Score: 2, Informative

      Gotta agree with you on this one. I too am somewhat familiar with the Medeco series of locks and until I see
      someone actually open one without a key, I will remain very, very skeptical of any claim otherwise.

      The units I am familiar with were used on high security doors. Things like weapons lockers, arms magazines,
      even my Armored Box Launched Tomahawk Cruise missile launchers. . . . .

      I did lock picking as a hobby and a means to keep my sanity during deployments. I was able to pull apart a
      Medeco cylinder to see what made them so tough. Besides the fact that the pins are made of carbide ( as well
      as carbide inserts in the face of the lock to deter drilling ) there is no shear line that you will be able to
      hear or feel.

      Medeco's use an angled tumbler concept where a hole is drilled into the side of each tumbler. The key is
      beveled so it will both lift and twist the pin to the proper height and angle for the drilled hole to line
      up with a pinned sidebar. My cylinder was equipped with six or seven tumblers. Thus lifting to the correct
      height, twisting for the correct angle and holding it for each of the tumblers is a very tall order for someone
      trying to ' pick ' the lock.

      Once all the tumblers are lifted to height X and twisted for angle Y, all of the drilled holes line up with the
      pins on the sidebar. The sidebar is able to seat and the cylinder will now open.

      Bottom line, they can make all the claims they want. I'll believe it when I see it. Easier to blast the door open
      with some C-4. :)

  7. Medeco by ls671 · · Score: 2, Informative

    I think you need to check out medico locks if you think they are in the same line of locks that can be picked with a bump key.

    I think it is medeco http://www.medeco.com/ not "medico". Medico locks are for locking up your girlfriend so nobody can access her private parts.

    These locks are harder, but not impossible to bump for a very skilled locksmith. Nothing is 100% hack-proof, just harder to hack.

    --
    Everything I write is lies, read between the lines.
  8. Keyboard JitterBug eavesdropping by stock · · Score: 3, Informative

    The Dell key-logger hoax has probably the best decoy story to move
    professional hackers/security staffers into the wrong direction, as in
    May 2006, USENIX published the following research article :

    "Keyboards and Covert Channels"
      by Gaurav Shah, Andres Molina and Matt Blaze , 2006-05-17
      Department of Computer and Information Science
      University of Pennsylvania
    http://www.usenix.org/events/sec06/tech/shah/shah_ html/jbug-Usenix06.html

    In it the authors demonstrate that todays unwarranted wire tapping NSA
    activities, normally don't result in much success as serious internet
    users routinely apply encryption into their communications, like IPSec
    tunneling, ssh, VPN access connections, secure web-traffic https when
    i.e. doing Internet banking activities.

    However, secret service found a clever approach to all this, by
    covertly installing a Keyboard JitterBug into your keyboard. Here's
    how to secure your most trusted keyboard :

    Keyboard JitterBug eavesdropping
    http://crashrecovery.org/internet/#jitter

    where i may add, that lock picking _ALSO_ has been the best hoax ever
    on public display. Why? How many people today design their _OWN_
    locksmith locks? All installed door-locks worldwide are somehow sold in
    stores, hence its products and replacement keys are in the archives of
    the local secret service.

    Robert

  9. For details... by Stone+Rhino · · Score: 3, Informative
    See tobias's post on engadget a couple weeks ago: http://www.engadget.com/2007/07/19/the-lockdown-th e-medeco-m3-meets-the-perilous-paper-clip/

    Medeco offers several levels of key control to insure that its patent protected blanks cannot be copied, replicated or simulated. In many systems, proprietary keyways are available to further ensure that keys cannot be improperly compromised. Although the m3 is a very secure lock, we were able to simulate Medeco keys that can be made to bypass the keyway and slider protection of almost any system -- all without infringing on any Medeco intellectual property. It turns out that a standard paper clip will depress the slider precisely to the correct position. A wire or paper clip, fashioned as shown, is inserted into the keyway and wedged at the end of the body of the slider.
    So, with a proper paperclip, you can eliminate the additional security and remove its advantages against certain types of attacks.
    --


    Remember, there were no nuclear weapons before women were allowed to vote.
  10. Re:Interesting by icegreentea · · Score: 2, Informative

    you can't bump medeco's. the pins are all placed on angles (like 15 degrees or something). that's was the whole point of medeco's to start with, they're impossible to bump, and a headache to pick traditionally.

  11. Re:If guns stop crime then why crime in the USA? by zmollusc · · Score: 3, Informative

    Here in the uk it seems (although i cannot be arsed to look for stats) that shootings are steadily increasing in frequency, too.

    --
    They whose government reduces their essential liberties for temporary security, receive neither liberty nor security.
  12. Re:Backstop that lock... by Loucks · · Score: 2, Informative

    This statistic is tossed around quite a bit, but I'll bet you can't cite a source. There was one study that found this (I believe it was 21x more likely), but it has been pretty thoroughly debunked. There's no need to let reality prevent your anti-gun agenda, though. Carry on!

  13. Re:Backstop that lock... by Worthless_Comments · · Score: 2, Informative

    And how large of a blade exactly do you think it takes to kill a person?

    It doesn't need to be three inches, I'll tell you that much. Espically if the person is unarmed...or asleep in their bed.

  14. razor, no by Spy+Handler · · Score: 2, Informative
    "Most modern stick frame construction houses are vulnerable to a razor knife. Just pick a section of wall and slice a hole. You got plastic siding, a thin tyvek sheet, some cheap ass pressboard stuff,(glorified cardboard really), some spun fiberglass insulation, then drywall. That's all you need, a couple minutes with a razor knife and any thief can get in easy, let alone if they use something like a cordless sawzall thing."

    The "pressboard stuff" you're referring to is called OSB (Oriented Strand Board). Yeah it does look cheap, like scraps glued together, but actually it's stronger than either plywood or a wooden plank of the same thickness. (Both plywood and OSB are what they call engineered woods)

    Anyways there's no way in hell you're going to punch a hole that you can walk through on an OSB exterior wall with a razor, in any reasonable amount of time. (it will take you hours)

    Yes you can saw through it with a power tool, but that applies to any wooden house of any vintage, not just "modern stick frame" ones.

  15. Re:Backstop that lock... by Filip22012005 · · Score: 2, Informative

    Not entirely the same, but still interesting: http://www.amstat.org/PUBLICATIONS/chance/103.myth 0.pdf. It's 10 years old though. Still, there are some relevant numbers in the article. Atlanta Police Department reports show that, in 198 cases of burglary, offenders obtained the victim's gun in 6 cases. Victims were able to use their gun in self-defense in only 3 cases.

    --
    When the policeman of the tie, rule you violate, hello punishment of the kitty?
  16. Re:Abloy by eskotanakka · · Score: 2, Informative

    Probably so but at least your military uses (some) Abloy locks...

  17. Re:Backstop that lock... by knewter · · Score: 3, Informative

    The kind of person that puts one of those signs in the front yard has no problem with said criminals coming to take it. He kind of yearns for it.

    If someone's going to be an asshole, I'd rather they try it against someone who is overwhelmingly better-armed than they are.

    --
    -knewter
  18. Re:Abloy by advid.net · · Score: 2, Informative

    It seems that Abloy now owns Medeco. Of course this doesn't change the design of Medeco locks.