Micah's bloggy widget (![[info]](http://l-stat.livejournal.com/img/userinfo.gif){kind=small} scanwidget) wrote,@ 2008-09-02 01:08:00 |
|
Another successful project!
Today I finished a major update to my software-only RFID decoder for the Propeller microcontroller, and I finally installed my prototype in the garage. Now I can open the garage door with my RFID badge from work, while I'm on foot or on my bike :)
I'll post some pictures once there's some sunlight. (Edit: Took some pictures this morning)
As an aside: If anyone is curious how secure the door entry badges at VMware are, the answer is "not very". Each badge only has 45 bits of unique ID on it, and a lot of those bits are probably site code, CRC, or some other fluff. No cryptography of any sort- the cards are purely read-only. If you wanted to, you could trivially sniff someone's badge code then build an emulator which pretends to be that badge. Of course, why bother with all that when you could just tailgate someone into the building and download all of our source code via the nearest Ethernet port ;)
Today I finished a major update to my software-only RFID decoder for the Propeller microcontroller, and I finally installed my prototype in the garage. Now I can open the garage door with my RFID badge from work, while I'm on foot or on my bike :)
I'll post some pictures once there's some sunlight. (Edit: Took some pictures this morning)
As an aside: If anyone is curious how secure the door entry badges at VMware are, the answer is "not very". Each badge only has 45 bits of unique ID on it, and a lot of those bits are probably site code, CRC, or some other fluff. No cryptography of any sort- the cards are purely read-only. If you wanted to, you could trivially sniff someone's badge code then build an emulator which pretends to be that badge. Of course, why bother with all that when you could just tailgate someone into the building and download all of our source code via the nearest Ethernet port ;)
