A Logo

Feel free to include my content in your page via my
RSS feed

Help Irongeek.com pay for
bandwidth and research equipment:

Search Irongeek.com:

Affiliates:
ISDPodcast Button
RootSecure Button
Social-engineer-training Button
Irongeek Button

Web Hosting:
Dreamhost Logo
Help Irongeek.com pay for bandwidth and research equipment:

paypalpixle


“Electronic Safe Fail: Common Vulnerabilities in Electronic Safes” - Jeff Popio Derbycon 2013 (Hacking Illustrated Series InfoSec Tutorial Videos)

“Electronic Safe Fail: Common Vulnerabilities in Electronic Safes” - Jeff Popio
Derbycon 2013

Description: “Commonly safes are used in IT to secure backup tapes, certificate roots, and other sensitive material. This talk will demonstrate that many of the safes used to secure these sensitive materials are ineffective. Today there are many varieties of electronic safes that utilize a VERY weak mechanism to physically lock the safe. In many cases there are ways to open the safe in less than a minute that leaves no evidence behind. (Sometimes only a few seconds) This talk will cover my experience discovering the flaw and dealing with a safe vendor to issue a fix, then discovering the inadequacies of the fix itself and vendor’s continuing ignorance of the problem with most electronic locks. Fixing these problems is relatively easy. There will be general instruction on how to fix the problems and what needs to be done by the vendors to make safes well… safer.”

Bio: “I currently work for the State of Ohio specializing in Vulnerability Assessment. I break things… Make observations… and fix stuff occasionally. Regrettable certifications include: CISSP, CEH, CCNA, RHSCA @jpopio”

Back to Derbycon 2013 video list

Printable version of this article

15 most recent posts on Irongeek.com:


If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2014, IronGeek
Louisville / Kentuckiana Information Security Enthusiast