Submit a link Features Reviews Podcasts Video Forums More ▾

Attacking the popular Kwikset lock: open in 15 seconds with a screwdriver and a paper clip


Kwikset makes an incredibly popular line of reprogrammable locks that can be easily re-keyed, meaning that landlords don't have to physically change the locks when their tenants move out. Kwikset boasts that their locks are extremely secure, but Marc Weber Tobias and Toby Bluzmanis will present six Kwikset vulnerabilities at DEFCON; their demo includes an attack that opens the lock "in 15 seconds with a screwdriver and a paper clip." Tobias and Bluzmanis have spoken to Kwikset technicians about this, and in recorded conversations, the Kwikset employees insisted that the product was secure, something that can't be taken seriously if you've seen Bluzmanis and Tobias work on them.

Read the rest

Combination-lock-cracking robot

Students at Olin College have made a robot that can crack a MasterLock brand padlock's combination; it can work faster depending on whether it knows some, none or all of the combination. The documentation for the project is quite good.

Our final design was able to dramatically reduce the amount of material needed by turning the entire assembly on its side. In this way, the motor mount and spindle, the lock holder and the solenoid could all be considered distinct entities attached to a single base plate. Since torque on the base was not an issue like it was with the first two "tower" designs, we could make the base much thinner. This allowed us to make our slots longer without increasing the total cost much. Thus, we were able to make every component adjustable relative to the fixed lock base which allowed for quick insertion and removal of the lock, as well as easy tuning of the solenoid distance that allowed it to consistently pull the lock latch all the way open. This was critical because one of the main problems we dealt with was assuring the location of the solenoid relative to the lock. The solenoid had a very thin range of positions that it would work from; too far from the lock it did have enough energy to pull the latch, too close to the lock and it didn't have the travel to pull the latch completely open.
The LockCracker (via Neatorama)