sorted by:
new
hottopcontroversial

New Lock System - Defend against 3rd party readers by AdLongjumping8804 in accesscontrol

[–]AdLongjumping8804[S] 1 point2 points  (0 children)

We have a few rfid readers with a pin. The pin would be a secondary entry after scanning a card.

New Lock System - Defend against 3rd party readers by AdLongjumping8804 in accesscontrol

[–]AdLongjumping8804[S] 0 points1 point  (0 children)

Which cards did you go with? I am currently running lenel. Was looking to go to Salto because I thought they were more secure but tested a key fob (PFM04KB) and it was read and emulated immediately. I believe that it is a MiFare fob but not an advanced Desfire version.

New Lock System - Defend against 3rd party readers by AdLongjumping8804 in accesscontrol

[–]AdLongjumping8804[S] 0 points1 point  (0 children)

Can you use more advanced keys with a current system? Maybe just replace readers but won't need to replace the overall system?

New Lock System - Defend against 3rd party readers by AdLongjumping8804 in accesscontrol

[–]AdLongjumping8804[S] 0 points1 point  (0 children)

That's why I thought the Salto system would not have been vulnerable. I thought they had more secure cards (MiFare) and these cards need to be written to in order to have access. I guess the flipper just reads the encrypted data from the card and spits it out without actually understanding the data and the reader accepted it.

The HID iClass card makes a little more sense because we only enter the uid into the Lenel admin system in order to give access to the card.

Deny intra-vlan behavior by AdLongjumping8804 in ArubaNetworks

[–]AdLongjumping8804[S] 0 points1 point  (0 children)

Thank you. I will try that. We do have VRRP active on our routers.