Title :
Devil in a box: Installing backdoors in electronic door locks
Author :
Seongyeol Oh ; Joon-Sung Yang ; Bianchi, Andrea ; Hyoungshick Kim
Author_Institution :
Coll. of Inf. & Commun. Eng., Sungkyunkwan Univ., Suwon, South Korea
Abstract :
Electronic door locks must be carefully designed to allow valid users to open (or close) a door and prevent unauthorized people from opening (or closing) the door. However, lock manufacturers have often ignored the fact that door locks can be modified by attackers in the real world. In this paper, we demonstrate that the most popular electronic door locks can easily be compromised by inserting a malicious hardware backdoor to perform unauthorized operations on the door locks. Attackers can replay a valid DC voltage pulse to open (or close) the door in an unauthorized manner or capture the user´s personal identification number (PIN) used for the door lock.
Keywords :
electronic engineering computing; electronic products; keys (locking); security of data; DC voltage pulse; PIN; backdoors installation; electronic door locks; lock manufacturers; malicious hardware backdoor; personal identification number; Batteries; Bluetooth; Central Processing Unit; Consumer electronics; Solenoids; Voltage measurement; Wires;
Conference_Titel :
Privacy, Security and Trust (PST), 2015 13th Annual Conference on
Conference_Location :
Izmir
DOI :
10.1109/PST.2015.7232965
