For ISSA members:
I have written an article entitled “The Rise of the Analog Hacker: A New Physical Security Concern” for the November 2005 issue of the ISSA Journal. You can check it out here (ISSA account required).

On September 11th, 2005, Sportsfreunde der Sperrtechnik (the German lock picking club) sponsored an impressioning contest. Impressioning is the technique of taking a key blank and filing it down to make a working key. This is done by inserting the blank inside the lock, twisting it back and forth, and then filing where marks appears along the upper edge. This year champion was Oliver Diederichsen from the Hamburg Sportsgroup. He successfully made a working key for an ABUS C83 in 6 minutes and 53 seconds. You can watch a video of Mr Diederischsen during the contest here.

To make a copy of key you need a key blank. A key blank is just a piece of metal which is designed to fit into a particular kind of key-way.

Getting key blanks for most locks is easy, you just order one (or a thousand) from any number of manufacturers who make blanks for that particular model of lock. While this system is convenient for locksmiths and contractors, having easy access to key blanks presents a security risk. If someone ‘borrows’ a working key they can easy create a duplicate of it, if a key blank is available.

To prevent this from happening, many high security locks feature ‘patent protected’ keys. Because of the patent, these companies can prevent other firms from manufacturing key blanks and they, in turn, can closely control who can get key blanks for these locks.

However, what if a machine existed which would duplicate the shape of most patent protected keys? Well it does, the Easy Entrie key duplicator is designed to copy the side grooves of almost any key onto standard metal plates so they will fit into various locks. This, in effect, creates a key blank for almost any pin tumbler lock in the world.

The good news is that the Easy Entry can’t cut a ‘overhanging’ groove, which appears on a handful of key designs. These keys are therefore safe from Easy Entrie duplication. Also the Easy Entrie machines currently cost almost $10,000. This effectively places them out of the hands of any hobbyists, but security experts need to be aware that the protection provided by ‘patented’ key-ways is slowly being eroded by advances in key duplicating machines such as the Easy Entrie.

I will be speaking at the Texas Regional Infrastructure Security Conference in Austin Texas on September 20th, 2005 at 10:45. If you missed my talk on “Non-Destructive Compromise of Physical Security” at Dallacon or the North Texas ISSA meeting, this is a good chance to see a variety of lock picking and bypass techniques demonstrated for the security professional. You can learn more at TRISC.org.

My article describing the current state of Analog Hacking and it’s potential impact on information security has been accepted for publication by the ISSA (Information Systems Security Association) Journal. It should appear in the November edition.

Every year Las Vegas witnesses a strange site (ok, there are a LOT of strange sites in Vegas, just stick with me), thousands of geeks descend on the city for three days of Defcon. Defcon, now it it’s 13th year, features talks by some of the world’s leading hackers (and some hacks, like me ), as well as, a number of unofficial ‘contests’. One of these is LPCon (LockPickingCon), which is now in it’s third year. LPCon pits dozens of lock pickers, organized into groups of six, against the clock trying to open a standardize lock.

^{(sorry for the poor quality camera phone shots)}

Besides LPCon, there were a number of speeches given on lock picking and physical security. Deviant Ollam and fellow pickers presented an excellent overview of lock picking and some bypass techniques in their talk (the bulk of the presentation is available at http://deviating.net/lockpicking/ ).


^{(sorry for the poor quality camera phone shots)}

A record 67 contestants at LPCon and the large crowds attending the various physical security presentations at Defcon seems to indicate an growing interest in lockpicking and other forms of physical security compromise in the hacker community.

Kim Bohnet, president of the newly formed LockSport International (LSI), was kind enough to take the time to answer some of my questions about lock sports and the new organization.

Q: What is your definition of “Locksports”?

A: LockSports in brief, is the sport and hobby of lockpicking done in a legal and competitive manner either against a competitor(s) or against the clock with emphasis on speed.

Q: What do you see is the role of LockSport International?

A: The primary role of LSI is to globally bring together the locksport community in a legitimate, law-abiding manner, and to promote and give a “face” to an exciting, growing activity. By providing a central location for communication and contact, we can help legitimize the sport, and offer guidance to both established and starting clubs. Through membership fees we will be able to support and help form local, national, and international sporting events to bring both the budding enthusiast and the experts together for mutual benefit and enjoyment, ultimately culminating in a competitive championship series. We strive to provide a legal and safe atmosphere where enthusiasts can gather to enjoy their hobby without fear of reprisal or harassment.

We recognize and are thankful that our counterparts in Europe and the UK (TOOOL and others) have opened the way in their part of the world, but we’re looking not just at the Americas, but at a truly global network of association chapters that can be recognized and organized in a collective fashion for benefit to all.

Q: The LSI charter speaks of practicing locksports with highest ethical and moral principles. How will your organization address the potential ethical issues of lockpicking?

A: Good question. By organizing as a group we can have a strong united voice when it comes to not just the laws surrounding lock tools, etc.. but a voice when it comes to designing solutions to better the security of locks and associated hardware. LSI doesn’t exist just to find out the weakness’ of locks and locking systems, but to provide real solutions in making things BETTER.

At some point we may request adding criminal background checks to the application process, but it is extremely unlikely due to the many who now enjoy the hobby and sport with a high degree of moral, ethical, and legal practices.

Again, thanks to Mr. Bohnet for answering these questions.

Today on Lockpicking101 a new organization was announce; LockSport International. Headed by several Lockpicking101 regulars, Varjeal, Digital_Blue and Frostbyte, the organization’s mission is to:

…promote the hobby and competitive sport of lockpicking internationally, to aide in the development of the lockpicking skill of its members, and to provide a safe and fun environment where people can meet and exchange ideas.

If you haven’t heard of locksports, it is a growing hobby across North America and Europe. The sport’s goal is to learn how to pick various difficulties of locks as quickly as possible. Locksport clubs, particularly in Europe, are well organized and even hold annual tournaments where their members try to best each others picking skills.

I will be speaking at Defcon 13 on two safe vulnerabilities, back-dialing and spiking. So, if you are interested in learning how to protect your safes (that sounds redundant, but isn’t), just hop a plane to Vegas during the weekend of July 29th – 30th.

LockPicking101.com is one of the most active on-line forums in the lock picking community. That was proven yesterday (June 24th, 2005), when the 10,000th user joined LP101.

^{(click for a larger image)}

In fact, the growth of LP101 has been amazing. Since it’s start in the Spring of ’03, about 20 new users have been added each day:

^{(click for a larger image)}

Certainly the interest in lock picking continues to grow.