Presented at
ShmooCon 2022 Rescheduled,
March 25, 2022, 3 p.m.
(15 minutes)
My building requires an RFID key in order to access the garage. But I ride. Fishing out the only copy of my key, with gloved hands, on a vehicle that requires both hands to operate? Not so simple.
We all know that it’s easy to duplicate these things, but actually doing it? The devil is in the details, and those details are strewn across the internet in blog posts, readme files, and members-only forums. Where do you start?
* So, how does RFID work, anyway?
* What’s the frequency? (Spoiler: Kenneth does not know.)
* What’s a chipset and which am I using?
* How far can ten bucks on ebay get me?
* How far can a couple hundred get me?
* And to solve my problem, what clever form factors are available to get around the gloved motorcycle situation? (No, I did not inject a chip in myself.)
If you’ve ever boasted, “those things are so insecure,” but want to be able to back it up, ten minutes is all you need, to get the basics.
Presenters:
-
Gabe Schuyler
Gabe Schuyler (@gabe_sky) is a constant tinkerer with a penchant for rabbit holes. He loves mapping a path through them, and sharing the route and interesting branches with anyone who wants to learn.
During the day, he’s a web app security specialist at Palo Alto Networks and before that worked professional services at PuppetLabs. Before that, a stint at PlayStation got him into the titles of twenty-odd games.
Gabe’s been in operations for so long, he had a two-digit Internic handle, and knows how to terminate a SCSI bus.
Similar Presentations: