How secure are mobile keys?
The FBI says it hasn't found any cases of compromised hotel mobile key systems in the U.S., but hotel hacks aren't unheard of. Last year, the Romantik Seehotel Jagerwirt in Austria made headlines when hackers attacked the hotel's electronic key system, locking the property out of its computer system and preventing management from accessing the reservation system. The hotel was using interchangeable key cards. New guests cannot use the card and the receptionist cannot create a new key for them.
The hackers reportedly sent a ransom request to the hotel via email for two bitcoins to return management's access to the electronic key system. Hotel manager Christophe Brandstatt says the ransom has been paid and the hotel has been restored to its traditional keys.
This "trading software" strategy has been evolving in recent years toward system-connected devices such as locks, said Michel Chamberland, head of North American operations at Trustwave's Spider Labs. Trustwave is a security company that protects businesses from cybercrime. Chumberland is a so-called "ethical hacker"; he works with his team to crack the mobile keys and locks of hotel customers to find vulnerabilities before hacking.
Chumberland said: "On one of the locks we looked at, we were able to reset the admin password without authorization."." We are able to manage the entire environment. He added: "As mobile apps are updated, new vulnerabilities emerge.
TJ Person, founder and CEO of mobile key provider OpenKey, says nearly all digital locks in the hospitality space have encryption features that reflect the security of financial institutions. The company has a cloud security company that monitors its servers 24/7 to help find and correct vulnerabilities.
ted Harrington, executive partner of the Maryland-based security firm Independent Security Evaluators, recommends that manufacturers of these solutions perform the same level of security assessment on their systems as the attackers.
Harrington said:-"There is a misconception that only encryption can provide security, and that is fundamentally incorrect". He suggests using encryption as a lock on your house. If the front window of your house is open, the attacker won't bother to break the lock on the door; he'll come in through the window.
Are mobile keys safer than plastic key cards?
Traditional key cards are often still an option for guests who prefer them, but they are not necessarily more secure than mobile keys. Chamberland said some magnetic keypad cards can be cloned wirelessly and read using an antenna. Of course, physical theft is a risk, especially if hotel guests keep their key cards and room numbers together for convenience (all information thieves need to access the room).
Of course, smartphones can be stolen, but setting a phone lock and requiring a separate login for the mobile key app can provide some additional protection over a keypad card.
Harrington said:“ I think people should be wary of using mobile keys， They should realize that there are security issues involved。”。“ Be an informed consumer。 Read as much news as possible， Understanding the security field， And proceed with caution.。"
>>1、Who has Wanted to spell three Zhangs hanging Spell three Zhang how to open hang someone bought Wanted to spell three Zhang cheats2、In the future will you really fall in love with a robot3、Where are all the DDoS broilers coming from4、Firecoin compilation the Dutch central bank will strongly support blockchain landing5、Android exposed a major vulnerability someone can use his phone to steal your money