Learn about physical access control system vulnerabilities in this 17-minute conference talk from DEF CON 32. Explore various exploitation methods targeting credentials, communication protocols, hardware, and firmware, with a special focus on how multiple weaknesses can be combined for more effective attacks. Discover both simple exploits requiring minimal expertise and more complex attacks demanding deeper technical understanding. Gain insights into the importance of mutual authentication verification in physical access control systems through interactive demonstrations featuring HID readers, hardware, proxmark3, and flipper zero devices. Master practical mitigation strategies to enhance facility security and protect against these potential threats.
Mutual Authentication Vulnerabilities in Physical Access Control Systems
Overview
Syllabus
DEF CON 32 - Mutual authentication is optional - Xavier Zhang
Taught by
DEFCONConference
Related Courses
-
Your Smartcard is Dumb: A Brief History of Hacking Access Control Systems
-
RFID 101: Understanding Badge Systems, Readers, and Security Exploits
-
Bypass Techniques for Door Entry Without Lock Manipulation
-
The Dark Side of Physical Access Control Systems
-
Unlocking Doors Through Long-Range Relay Attacks on Contactless Credentials
-
Breaking Access Controls with Blekey
