#LOLBitcoin Party Access Control System Setup
At Defcon 21 earlier this month ExploitHub and Rift Recon held #LOLBitcoin, a party at a two story Sky Villa in the Palms Hotel. In order to get in, guests had to solve a multi-phase crypto challenge (Walkthrough posted on the ExploitHub blog) or receive a VIP pass. Here Rift Recon engineer John Norman describes our setup utilized for the party.
With 10 days to go before Blackhat, and an epic party planned at the Palms Hotel, we had a problem. Some of the key sponsors were still on the fence about doing the RFID-based party access system we’d proposed earlier. With the deadline fast approaching, our fearless leader decided it was time to just “go all in” on the project and asked if it was too late to roll out something amazing.
Fortunately, I had just completed a redesign of Open Access, an open-source security and RFID research platform. The Open Access is a full-featured access control and security system, designed around a robust industrial controller project I had done earlier. The system features (2) standard RFID reader inputs, 4x5A relay outputs, 5x alarm zone inputs, a real-time clock, and optional direct-connection to a Raspberry Pi Linux PC.
My new intern Melissa Dunn had just finished building and programming the first two prototypes of this open-source security system, and I got to work building it out into an awesome party system.
First, I modified the Open Access for Arduino code (http://code.google.com/p/open-access-control) to work with the new on-board micro and peripherals. I added logic that would allow 2 different classes of users to be logged and identified by the Raspberry Pi, via it’s on-board 3.3V UART connection over serial.
Next, I wrote scripts for Raspberry Pi to do the following:
1. Automatically connect to the system and log to a file via minicom.
2. Display a “Welcome to the LOL Bitcoin” party logo when idle.
3. Tail the minicom log and search for successful access messages from either the “challenge” or “VIP” class of invites.
4. Display a graphics directly out the HDMI of the Raspberry Pi for the appropriate class of badge.
5. Display a “No bitcoin for you!” graphic for an unidentified/unknown badge attempt.
I programmed the card ranges for 500 EM-4102 class cards I had on hand. Since time was tight, I sent them directly to the Rift Recon team already in Vegas.
And finally, I packaged everything up into a bomb-proof Pelican 1050 case and made my way to Vegas.
End result: 400+ attendees, with zero failures. Regrettably, nobody tried to come in with a spoofed or cloned badge. I purposely chose an inexpensive, easy-to-clone badge for cost reasons, and to make it potentially hackable if someone put some effort into it.
What does it mean when a gathering of 10,000+ of the world’s best hackers aren’t immediately hacking this?
To me, it signals that while there is plenty of published research on-line with regards to 125Khz RFID hacking, there isn’t much out there in the way of a ready-made, “just works” solution. While it’s feasible to start a fire with a finely polished Coke can, many security researchers would rather buy an off-the-shelf Zippo lighter if they could.
-John Norman
Subscribe Follow Us
Recent Articles
- A little spring cleaning at Rift
- Art of Escape - Hack In the Box - Amsterdam
- The Next Art of Escape - Coming Soon
- Rift Recon Beginner Series Presents: Raking 101 with Aaron Autrand
- Rift Recon Beginner Series Presents: Picking Locks 101 with Aaron Autrand
Tags
- 1st Year (1)
- 31c3 (1)
- 911 (1)
- ACCESS PROHIBITED (1)
- AccessControl (0)
- activism (3)
- advisor (1)
- amsterdam (1)
- anonymity (1)
- antifraud (0)
- AoE (1)
- ApertureLabs (1)
- Art of Escape (3)
- artofescape (6)
- bayarea (1)
- beginner (1)
- bitcoin (0)
- bitpay (0)
- blackhat (0)
- blog (1)
- Books (0)
- brian o'shea (1)
- bypass (4)
- carl vincent (1)
- Casascius (0)
- CBS (1)
- Chaos Communication Congress (1)
- Chaos Computer Club (1)
- classes (1)
- community (1)
- competition (0)
- consultation (1)
- CORE (0)
- corporate (1)
- Crypto Seal (0)
- customer satisfaction (1)
- darknet (1)
- defcon (0)
- defense (1)
- derbycon (1)
- design (1)
- Development group (1)
- DEVGRU (1)
- dossier (0)
- Education (0)
- Electronics (0)
- Engineering (0)
- entry (4)
- eric michaud (1)
- escape (2)
- escapering (1)
- evasion (1)
- Evil Maid (0)
- Evil Maid Attacks (1)
- executive (1)
- experience (1)
- exploithub (0)
- firstresponder (1)
- fraud (0)
- gear (2)
- hacker (1)
- hacker news (1)
- Hacking (1)
- Hamburg (1)
- hiring (0)
- Hollywood (1)
- human rights (2)
- Human Rights Foundation (3)
- Humint (1)
- impressioning (0)
- InfoSec (1)
- Intelligence (1)
- ISSW (1)
- journalism (3)
- Journals (0)
- kidnapped (2)
- learn (2)
- lesson (1)
- lock picking (1)
- lockcon (0)
- lockpicking (3)
- lockpicking locks riftrecon schuylertowne (0)
- locks (1)
- LOLBitcoin (0)
- Los Angeles (1)
- makingof (0)
- manhattan (1)
- Micro (1)
- Mission Impossible (1)
- new (1)
- new york city (1)
- news (1)
- newsletter (0)
- NYC (1)
- Oslo Freedom Forum (3)
- OsloFF (1)
- pii (1)
- Priority International (1)
- privacy (2)
- product review (1)
- products (1)
- raking (1)
- Recap (0)
- Red Team Kit (1)
- Red Team Kit Micro (1)
- redteam (1)
- restraints (2)
- review (0)
- RFIDler (3)
- Rift Recon (10)
- riftrecon (2)
- riftrecon exploithub hardware firmware pressrelease (0)
- rtk (0)
- RTKMicro (1)
- rtkmini (0)
- rtkv1 (0)
- Safe Cracking (0)
- safety (1)
- san francisco (2)
- security (5)
- service (1)
- Shipping (1)
- shop (1)
- shove knife (1)
- Social Engineering (1)
- speedpicking (0)
- stickers (0)
- store (1)
- Striker Pierce (1)
- survey (1)
- Swag (0)
- tamperevident (0)
- teach (1)
- tools (1)
- toool (0)
- tor (1)
- Trailer (1)
- Training (2)
- trainings (1)
- Triple Aught Design (0)
- tripleaughtdesign (1)
- tubular pick (0)
- tutorial (2)
- twitter (1)
- underthedoortool (1)
- USPS (1)
- utdt (0)
- venture capital (1)
- violet blue (1)
- worldchampionships (0)
- WPIX11 (1)
Cyber and Physical Security Specialists
Analysis | Verification | Instruction and Outfitting | Expert Referrals | Assessment
Website: riftrecon.com | Social: @riftrecon | CEO: @ericmichaud
Rift Recon tailors its clients from a suite of exclusive security service providers, in order to meet their specialized needs in software or hardware, utilities for cyber/physical security assessment, tool creation and team outfitting, as well as specialized trainings, and expert referrals.
Our team meets and verifies all equipment needs from solid standards to exotic tooling, and deftly handles client needs for cyber and physical security specialist placement.
Rift operates across a variety of security disciplines including product security, physical security, hardware/software research, and development (including middleware, electronic devices and kits). We also cater to professionals who are striving to meet their own clients’ various cyber and physical security needs.
Our client range spans independent trainers, corporations, to high net worth individuals. We consult red teams, independent cyber or physical security contractors, product security teams, and companies that require exacting, and/or executive-grade assessment reports.
Rift provides a suite of services.
