Abusing the Internet of Things

When a guest inserts a card into the lock, the data on the card is decrypted using the site- code. Next, the expiration date is ...

of the venue with different master keys, so the master keycard can be limited to a particular section of the hotel real estate. ...

ond, given the interest of independent researchers in security analysis, vendors need to be more transparent and engage with the ...

Network layer Z-Wave uses mesh-based networking that enables any node to talk to nearby nodes directly or through available rela ...

The flaw here is that, once paired with the controller, the lock should check the current key in its electrically erasable progr ...

FIGURE 2-3. The Kwikset Kevo door lock Here we will discuss known BLE weaknesses and how to capture wireless traffic, but we wil ...

The broadcasting device sends an advertising packet, which contains a 31-byte payload that includes information about the broadc ...

Every BLE packet contains an access address (AA), which is a unique identifier to refer to a specific connection. When a device ...

FIGURE 2-6. Simulating a BLE device with the LightBlue iOS app The master and the slave use this formula to calculate the next c ...

exchange protocol begins by selecting a temporary key (TK) based on the well-respected Advanced Encryption Standard (AES) encryp ...

FIGURE 2-7. Minimum password requirements in the Kevo iPhone app As shown in Figure 2-8, the Kevo app implements a policy that l ...

FIGURE 2-8. Kevo account lockout after six incorrect attempts A user who has forgotten her password must provide a correct answe ...

FIGURE 2-9. Kevo security question for password reset The security risk here is the possibility of a malicious entity having gai ...

FIGURE 2-10. Sending electronic keys to external parties However, someone with a new iPhone that has never been programmed can j ...

FIGURE 2-11. Program button on physical lock to associate an iPhone A caveat to this is that the individual would have to be ins ...

FIGURE 2-12. Reset button on physical lock This section provides a good example of issues we need to think through as we increas ...

information, yet the same attacks on platforms such as the Kevo iPhone app can compromise the physical safety of our homes and o ...

entity with brief physical access to the lock needs only an iPhone in lieu of specialized tools and a lesson in lock picking. We ...

Assaulting the Radio Nurse—Breaching Baby Monitors and One Other Thing. The license plate 4U-13-41-N.Y belonged to a blue Dodge ...

placed near by the child’s crib, and a receiver device called the “Radio Nurse,” to be placed in a location near the parents or ...