Slashdot Mirror

← Back to Stories (view on slashdot.org)

Robotic Kiosk Stores Digital Copies of Physical Keys

Posted by Soulskill on from the what-could-possibly-go-wrong dept.

An anonymous reader writes "The New York Daily News reports that a startup company in Manhattan is putting robotic key copying machines in 7-Eleven stores. The machines can automatically create physical copies of common apartment and office keys. What's more interesting is that they allow users to save digital copies of their keys, which can later be created when the original is lost or the user is locked out of their home."

9 of 192 comments (clear)

  1. What could possibly go wrong? by Simulant · · Score: 4, Insightful

    May as well just get rid of physical keys altogether.

    1. Re:What could possibly go wrong? by Smidge204 · · Score: 4, Insightful

      Crowbar marks, splintered door jams and broken glass are evidence of forced entry.

      Using a key leaves no evidence and may not even raise suspicion should anyone see you do it.
      =Smidge=

    2. Re:What could possibly go wrong? by Charliemopps · · Score: 5, Interesting

      I used to think this to. Then, about 10 years ago, an apartment complex I lived in turned on the heat for the winter. It was set to 65. This is when I realized that I had no thermostat in the apartment. They told me there was no way to turn it up, it was a "fixed system" uh huh... after a bit of exploring I found a locked door in the basement. I did a couple of internet searches, watched some videos and an hour later I was standing in the now unlocked utility room looking at a VERY adjustable thermostat which then got set to 75 for the rest of the winter. When it got too hot we'd just open a window.

      And just for clarification, picking a dead-bolt by a complete novice that had never done it before took all of 2min.

  2. Public keys by ChumpusRex2003 · · Score: 4, Funny

    Could this be the first case of public key encryption getting broken?

  3. Double edged sword... by mlts · · Score: 4, Interesting

    Copy of physical key's bitting dimensions + address info from a credit card. A remote intruder could download that, then sell lists of those to local gangs wanting some easy prey for home invasions.

    Of course, there is the fact that if you want to buy a bump-resistant lock [1], it won't be something a key copying kiosk can copy easily.

    [1]: I'm partial to Abloy's Protec2 Cliq line because it has the top tier mechanical pick resistance in addition to an electronic lock. Makes life easier to reprogram the lock to deny access just to the single lost key than have to rekey the lock and hand out new keys.

  4. Re:It could work securely by ChumpusRex2003 · · Score: 4, Informative

    This type of scanning key cutting machine has been around for ages - the storing of the key bitting is new.

    In general, this type of machine designed for public use, is only loaded with blanks for "unrestricted" keys.

    "Do not duplicate" keys are not protected by just being labelled, they are physically a different shape (often with patented curves and bends), and genuine blanks can only be bought by registered locksmiths who have signed an agreement with the manufacturer not to duplicate keys without proof that the customer is authorised to duplicate that key.

    Manufacturers do cut off supply to locksmiths that engage in unauthorized duplication (if they find out). Similarly, the manufacturers will use patent laws to block sale of 3rd party key blanks.

    You can still get unauthorized copies made, but it's more difficult. The higher end manufacturers part-key the key blanks to a locksmith's unique code (using difficult to copy modifications - e.g. holes drilled to a specific depth along the length of the key, or curves engraved on the side of the key); a locksmith can only obtain blanks to duplicate keys that he himself sold, making it much easier to trace unauthorized duplication.

  5. Sure, why not? by Valdrax · · Score: 4, Interesting

    That's what my roommates did at the house I live at. Keyless entry via numeric pad attached to a battery-powered* dead bolt. Simple, convenient, and no less secure than physical keys. It just replaces "something I have" with "something I know," and it isn't vulnerable to bump-keys or lock-picking tools.

    *Lasts for months and gives plenty of warning before it goes out, so no worries there.

    --
    If it's for-profit but free, you're not the customer -- you're the product (e.g., the Slashdot Beta's "audience").
    1. Re:Sure, why not? by Anonymous Coward · · Score: 4, Interesting

      High voltage electricity acts funny. It doesn't really respect things like insulation or air gaps. Normally-insulating materials like concrete become conductive. When indiscriminately applied to electronics, high voltage doesn't generally do what you want.

      Inappropriately high voltage to the contacts on a digital lock keypad -- not the faceplate, which is floating on a wooden jamb or grounded for a metal jamb -- will, at best, burn out the microcontroller which is responsible for engaging the relay which releases the door. At worst it will simply burn out the input pins responsible for the keypad, leaving a perfectly functional digital lock with no input available to unlock it.

      If you're lucky, or the protagonist in a drama, it will fail in exactly the right way to engage the relay while not damaging any of the other circuitry in the device. This is difficult to achieve in practice and rarely occurs outside of high-pressure situations in TV shows or movies.

      If the bolt relay is activated by putting +Vcc on a transistor or the legs of a solid-state relay, you will have to apply just the right voltage and current through the keypad in order to turn the microcontroller into a blob of solder. However, the resulting blob will simply short out the batteries, either sending no current to the relay, or leaving insufficient current available to drive the bolt motor. If the device has a pair of relays (one per motor direction) then both may become energized, resulting in no motion or a dead short.

      If the bolt relay is activated by grounding a pin, you're screwed unless the circuit designer added a failsafe where the bolt will be released if the microcontroller fails to initialize. Since the failsafe circuitry in most keypad locks is a few lines of code inside the microcontroller's interrupt handler, this is not likely to be triggered by the protagonist's magic lightning.

      I've seen a badly designed keypad lock drain its batteries trying to lock itself repeatedly when the batteries got low. The device had a beeper in it to alert users that its batteries were running low. After several days of unattended beeping, the lock suddenly began to beep twice a second while simultaneously engaging its lock motor. The low voltage began playing havoc with the latches on the keypad input pins and it was interpreting the incoming noise as a user pressing the "lock" button on the keypad. The batteries died in seconds once this failure mode took hold. Fortunately, people were on the correct side of the door to replace them.

  6. Re:IAALS by adolf · · Score: 4, Insightful

    That may cause problems if the fire department wants to get in in a hurry, for example if your house is on fire.

    If the maximum level of security for a home is governed by a fireman's ability to break in, then we're done here. There's nothing left to discuss.

    --
    Kid-proof tablet..