RFID Keyfobs atana Frequency dik tak thlan dan

RFID Keyfobs atana Frequency dik tak thlan dan

 

March 2024 khan security researcher pawl pakhatin hotel industry-ah bomb an thlak a. KU Leuven atanga Lennert Wouters leh Ian Carroll te chuan Unsaflok-Dormakaba Saflok lock-a vulnerability chain an tih chu an tichhuak a, chu chuan hotel-a kawngkhar eng pawh chu forged keycard pahnih hmangin a hawng thei a ni. Lock maktaduai 3 chuang. 131 ram. 13,000 chuang property.

 

Kicker chu a ni em? Chu lock chu kum 1988 atang khan hralh a ni tawh.

 

WIRED chuan a khuh ta a. Chutiang bawkin BleepingComputer, The Hacker News leh SecurityWeek te pawhin an ti ve bawk. Dormakaba hian patch system-ah an inhnukdawk a, mahse March 2024-a an puan chhuah thleng khan lock a nghawng zinga 36% chauh siamṭhat a ni. A bak zawng chu an la chhuak vek.

 

Eng thilin nge beih theihna a siam? Lock-ah hian MIFARE Classic chip Crypto-1 encryption hmanga siam a ni a-he system hi kum sawm chuang zet cryptographer-te chuan an lo vaukhân tawh a ni. Researcher te chuan Flipper Zero hmangin an crack a. Thil hmanrua man: dollar za engemaw zat.

 

Hei hi frequency selection hian access control atana a awmzia tak chu a ni.

 

 

125 kHz dinhmun chu

 

Hetah hian a nuam lo lam chu a awm.

 

125 kHz-a low-frequency RFID hi technology hmanlai ber a ni a, hman lar ber a ni. EM4100, TK4100, HID ProxCard-hming, apartment building atanga corporate campus thlenga hmun tina spec sheet-a lang thin.

 

Heng chip te hian thil pakhat an ti a, chu chu reader hnaih an nih chuan number ruat sa an broadcast thin. Kut inthlakna a awm lo. Challenge-chhanna a awm lo. Encryption a awm lo tak zet.

 

New Zealand-a access control company ICT chuan kum 2023 khan demonstration an post a, an team chuan $30 man device hmangin second nga chhungin 125 kHz card an clone tih an tarlang. Security vendor dang Kisi chuan documentation a tichhuak a, Flipper Zero hian second khat aia rei lovah wallet leh pocket hmangin credentials a copy thei tih a tarlang. TikTok hi video hrang hrangin a khat a. Hei hi theoretical a ni lo.

 

Chuti a nih chuan engvangin nge tu pawhin 125 kHz hi an la deploy? A tam zawk chu legacy infrastructure a ni. Reader 500 leh credential 10,000 awmna building chuan zan khat thil thuah engkim a rip chhuak thei lo. Tin, EM4100 keyfobs-a bulk pricing man-chu unit khatah $0.15 emaw a aia hniam emaw a ni thei bawk. Threat model chu "mi pakhatin a rawn luhchilh mai thei" tih gym emaw storage facility emaw tan chuan chu math chu awmzia a nei thei.

 

Security mamawh tak tak nei eng thil pawh tan chuan a ni lo.

 

13.56 MHz hi automatic safety a ni lo

 

Unsaflok thil thleng hian "upgrade to high frequency" tih hi chhanna kimchang a nih loh chhan chiang takin a tarlang a ni.

 

MIFARE Classic hi ISO 14443 hnuaiah 13.56 MHz-ah a kal a, encryption a nei bawk. Authentication a nei a ni. Tin, engtin pawhin a crack ta a, a chhan chu Crypto-1 hi proprietary leh chak lo tak a nih vang a ni. Dormakaba lock tichhia zirchiangtute hian vulnerability thar an hmuchhuak lo-kum 2008 aṭanga security community-in an hriat tawh chu an hmang tangkai a ni.

Heta pattern: 13.56 MHz hian encryption dik taka tih theihna tur infrastructure a pe che a, mahse a chhunga chip hi label-a frequency print aiin a pawimawh zawk.

 

AES-128 hmanga MIFARE DESFire chu attack hriat lar tak lakah a him reng a ni. NTAG series chips hmanga hman awlsam zawk. Hengte hian an chelh tlat a ni. MIFARE Classic hian a la nei lo.

 

 

Distance leh interference chhiar rawh

 

Mite chuan 13.56 MHz keyfob te hian 125 kHz angin thawmhnaw hmangin hna an thawk em tih an zawt fo thin.

 

Chhanna tawi: a ni. Frequency pahnih hian access control distance pangngaiah inductive coupling an hmang a. Range hi keyfob form factor tam zawk tan chuan 1-10 cm vel a thut a ni. Metal thil awmte-phone, key, belt buckles-te hian antenna chu a detune thei a, second tap a ngai bawk. Dramatic engmah a awm lo.

 

860-960 MHz-a UHF hi physics danglam tak a ni. Inductive coupling ai chuan electromagnetic backscatter a ni. Metre engemaw zat range chhiar rawh. Parking gate emaw warehouse inventory atan a tangkai a, user-in a tum hun chauha credential authenticate i duhna hmunah door access atan harsatna a awm.

 

Regional frequency allocations hian North America leh Europe inkarah UHF band hrang hrang a ṭhen bawk a, hei hian international deployment a ti buai hle.

 

Chaos awm lovin migration

 

Dual-frequency keyfob hi phased transition atan bik a awm a. Housing pakhatah hian 125 kHz leh 13.56 MHz chip pahnih a awm a. Legacy reader te chuan pakhat an hmu a, upgraded reader te chuan pakhat an hmu bawk. Swap chhung zawng hian credentials hi users te hnenah a awm reng thin.

 

Constraint chu antenna design a ni. Chip pahnih hi tihbuai lohvin rintlak taka chhiar a ngai a ni. Keyfob factory zawng zawng hian hetiang hi an hmu vek lo. Volume order-a commit hmain performance enfiah hmasa phawt ang che.

 

Zawhna tak tak chu

 

Frequency thlan hi thutlukna danglam tak siamna proxy a ni: mi pakhatin credential a copy chuan eng chen nge i ngaih pawimawh?

 

• 125 kHz hian defence a nei lo. $30 leh YouTube minute sawm nei apiangin keyfob clone an ti thei.
• 13.56 MHz with MIFARE Classic chu a him hmel hle a, mahse a him lo. Hotel-te chuan a fallout hi an la hmachhawn mek a ni.
• 13.56 MHz chu DESFire emaw a tlukpui emaw hmangin tunah chuan a hold up-.

- Unsaflok zirchiangtute chuan

 

Kum sawmthum-ruk chhung vulnerable lock. Chu chu frequency leh chip selection dik lo hmuhna senso a ni.