Version 2.01 no time to cry
lecture: Keys? Where we’re going we don’t need keys.
This event is not going to be recorded
Smartlocks are the new way of securing doors by replacing the old mechanical locks by new high-tech and connected locks, able to communicate with other smart devices such as smartphones
Vendors argue that „key dematerialization“ is the future of keys, where anybody would be able to give, control and revoke keys for one or multiple locks by using his smartphone. No more physical keys needed for a better control, or not.
We’ll go through the challenges of key dematerialization in the actual
world, from technical challenges to real world implementations ... and failures.
Widespread smartlocks are not so smart, and developers often fail at
correctly implementing cryptographic algorithms (especially when the smartlock is advertised as using a strong AES-256 implementation), and of course security by obscurity is
still used and broken when dealing with critical embedded systems.
During this talk, we’re going to demonstrate some real world attacks on one of these smartlocks, from information leaks to „wireless lockpicking“ through fuzzing.
Start time: 12:00
Room: Project 2501
Track: Security & Hacking
- Building a culture of courage