DEF CON 27 - BILL GRAYDON - restricted keys

1. Duplicating Restricted Keys
Billy & Bobby Graydon

2. Outline
1. Keyways
2. Other Stuff

3. How keys work

4. How Key Cutting works

5. How keyways work

9. 3D Printing

11. The Old Approach to Keyway Research

12. Our Approach to Keyway Research

14. C: E: F: ∩: ∪:

18. BEST A Bump Key

29. Pic of CPC arrow press dies

31. Pic of pressed CPC blanks

40. Medeco Press

43. Lost Lock...
+
+ =

44. Lost Lock...
+
+ =

46. Lost Lock...
+
+ =

49. M3 Blank Manufacturing

50. m3
Variations

51. Master m3
Keyway

56. M3 Cut on M19, working

58. Photographing a Lock
→

60. Measuring the Key

62. Photographing the Key

63. Milling Marks - Shallow Slope Gives Precision
rD
G

65. Outline
1. Keyways
2. Other Stuff
a. Sidewinder Keys
b. Primus
c. Assa
d. Medeco Angled Cuts
e. Dimple Locks, Mul-T-Lock
f. Interactive Components, Mul-T-Lock
g. Disc Detainer Locks, Abloy
h. Patents
i. Duplication Authorisation Cards

84. MT5 Patent = No ebay blanks

86. Outline
1. Keyways
2. Other Stuff
3. Bonus! Remediation

87. Lost Lock = Lost GMK
=

88. Sectional keyways -
great as an extra
security control. Bad as
the only one.

89. Restricted keyways -
great as an extra
security control. Bad as
the only one.

90. “physical keys are dead hurr durr”

91. “physical keys are dead hurr durr”

92. Understand your threat model.

95. 4N6

96. Microscopy

97. Questions!
b.graydon@ggrsecurity.com
r.graydon@ggrsecurity.com