Learn about physical access control system vulnerabilities in this 17-minute conference talk from DEF CON 32. Explore various exploitation methods targeting credentials, communication protocols, hardware, and firmware, with a special focus on how multiple weaknesses can be combined for more effective attacks. Discover both simple exploits requiring minimal expertise and more complex attacks demanding deeper technical understanding. Gain insights into the importance of mutual authentication verification in physical access control systems through interactive demonstrations featuring HID readers, hardware, proxmark3, and flipper zero devices. Master practical mitigation strategies to enhance facility security and protect against these potential threats.
Mutual Authentication Vulnerabilities in Physical Access Control Systems
Overview
Syllabus
DEF CON 32 - Mutual authentication is optional - Xavier Zhang
Taught by
DEFCONConference
Related Courses
-
Your Smartcard is Dumb: A Brief History of Hacking Access Control Systems
-
RFID 101: Understanding Badge Systems, Readers, and Security Exploits
-
Hi-Intensity Deconstruction: Chronicles of a Cryptographic Heist
-
Access Control System Implementation Best Practices and Security Guidelines
-
Understanding Authentication Bypass Vulnerabilities in Industrial VPN Gateways
-
Unlocking Doors Through Long-Range Relay Attacks on Contactless Credentials
