Months ago I was pondering taking apart a car’s authentication system and using a car ignition as my front door lock due to the added security of transponders and the car’s ECU, which is two-factor authentication, somewhat rare on consumer door hardware. Today I noticed that manufacturers of door hardware have caught up with the times and I would be reinventing the wheel. Mul-T-Lock has had two factor authentication for some years now, but “unikey” has just come out with their “Kevo” lockset which interacts with Bluetooth 4.0 devices.
Apparently all you have to do is touch the lock while your phone is in close proximity. Knowing the distance that Bluetooth can go, I wonder if somebody could amplify the signal and unlock the Kevo by touching it while you are inside, if the phone is within 30 feet or so of the lock (distance required by bluetooth to work). According to this article the lock can determine if you are inside or outside, so this may already have been addressed by the manufacturer.
Most interesting to me is that the Kevo has the ability to share e-keys to different people’s phones, including one use only e-keys. Unfortunately, the only devices able to interact with the Kevo at the moment are iOS devices, though android apps are in development. Probably iPhone owners are the only ones who would buy a $200 deadbolt that works with their phone anyway.
A competitor that also offers these abilities is “Lockitron”. Interestingly, they have engineered their lock to be connected to your wireless network allowing the owner to lock or unlock the door remotely from anywhere in the world they have internet access. I imagine it is only a matter of time before somebody figures out how to defeat the security of this detail, if this lock becomes more popular.
Somebody reading this, if you buy one of these locks I will help you install it for free. I am interested in seeing this beast up close.
There are some crews around the Seattle area pillaging mailboxes and using the information gleaned from their bounty to steal your identity! One thing you can do to prevent this is to get a locking mailbox.
Before you go out and buy a locking mailbox though, you have to know what kind of locking mailbox. Sometimes the mailman won’t deliver your mail because the slot isn’t big enough! Take notice of the size of your daily mail deliveries, because the thickness of these deliveries is the necessary dimensions your mailbox slot must have at a minimum. Otherwise, the mailman will claim the slot isn’t large enough and you will have to go to the post office to get your mail that wouldn’t fit!
While on the subject of mailbox locks, I will change a mailbox lock or install one for $65 flat, no fees, service call already included, parts already included. You can also see my mailbox lock page to view a video on how to change them yourself.
Here is the dilemma: you need to let somebody into your house while you aren’t there for some reason, but you are worried that the key may be used for an ulterior motive. I have the answer for you.
1. The cheapest solution is to have a side or back door keyed differently. Make the doorknob work with a key you lend out but the deadbolt lock is thesame as the rest of the house. When you want somebody to be able to access your house, just leave the deadbolt unlocked. After the workman has finished his work, leave the deadbolt locked and nobody can enter with the spare key because the deadbolt is still locked.
2. A more elegant solution is to masterkey the doorknob. Then the doorknob can be unlocked and relocked with both keys. You can lock out people with the loner key with the deadbolt.
3. Another solution is to get locksets installed that are interchangeable core. Then you can change your locks at will. Change the lock for the day, when you get home change it back. This is probably too extreme for most homeowners and reserved for sufferers of paranoia and control freaks.
4. My favorite solution, a combination of 1 and 2, is to change your locks to use a restricted keyway and masterkey the doorknob on any door of your choosing. Then you lend out a key to somebody and they can’t copy it anywhere. I can supply you with the MX2 keyway, one which locksmiths and distributors are legally bound to not sell blanks or copies of. If you get MX2 locks from me, I write down your name and bitting and encrypt it using PGP. If anybody asks me to copy an MX2 key, unless I made it I will say no.
I can assist you in this matter using any of the strategies outlined. Keep a knob separately keyed and save $20 on rekeying. Have me rekey just one lock for $20. Installing interchangeable core locks is more expensive and worth an estimate.
Today a charming lady called me because she was locked out of her car. After making quick work of opening the 2003 Saab, I returned to my own car to get back home before my better half. In my haste, I inserted my motorcycle key into the ignition. It felt like the first tooth might have cleared two wafers.
It was interesting being the 1% of people who could remove the key without actually getting any additional tools. A lockpick was all that was necessary for manipulating the stuck wafers out of the way and getting the motorcycle key out. It made me think what would happen to somebody else though.
For people without lockpicks or a firm understanding of how locks work, getting your key out will be more difficult. The first step is of course to wiggle and pull the key lightly. If you pull too hard you could bend the wafers and damage the lock.
The second step is to find something really thin made of metal, like a hacksaw blade. You have to stick it in alongside the stuck key, right down the middle. Then, you move it up and down and try to visualize what it is getting stuck on. If you feel something that won’t move easily, try pushing slightly harder. Hopefully it is the wafer that is sticking.
Of course, this whole process has an added level of complexity if you have successfully turned the ignition partially with the wrong key. Then you have to torque it back into the position for taking the key out before performing the above steps. You can also possibly remove the entire ignition if you have turned the key and more easily manipulate the inner workings of the ignition, assuming it is the type where the wafers are visible. Don’t bend it too hard or you will shear off the key! The best way to accomplish this is with some vicegrips and grip as close as possible to where the key comes into contact with the keyway.
Of course, if you mess anything up this was just friendly advice and I am not to be held liable for your own dumb self. Call a pro if you can’t get it!
If you are like most Seattlites, you have a wireless access point transmitting and receiving your data for all the world to listen to. If you are smart, you will encrypt this traffic using WPA2 using a complicated passphrase involving letters, numbers and symbols. If you are really cagey, you won’t transmit information wirelessly at all but use ethernet cables.
The reason for this paranoia is that there are entire linux distributions written for the express purpose of decrypting your passphrases and gaining access to your wireless network, where various actions of ill intent can be taken such as hijacking your internet sessions with facebook or even worse your bank, accessing your financial records and important information about you that can be used to steal your identity, etc. This can also be accomplished by those with less technical knowhow by applying elbow grease and digging through your trash.
How to prepare against this possibility? Put a passphrase on your wireless internet. Shred important documents. Practice good computer security, i.e. don’t set up data shares without passwords on your home network.
There are programs available that can let somebody crack WEP in a few seconds flat, if the password is easy. Likewise for windows user passwords. Therefore, use strong encryption like WPA2 and use complicated passwords, and especially don’t use common passwords like the word password, because people who like to compromise networks have built dictionaries (called rainbow tables) of the most common passwords and can cycle through the 5000 most common ones in ten seconds.
If you are concerned about lending out a key to somebody and then they go to the hardware store (or Fred Meyer’s) and copy it and then give it back to you without telling you that they still retain a copy, you can prevent this hypothetical problem with getting keys in a restricted keyway. This means that the profile of the key looking at it when pointed at your eye will be a different shape than fits in other locks. This also means that people can’t buy the same key blank, and thus can’t copy your key. If they had detailed information about the key they could copy it, or they could use a lost wax method or something to copy the key with a different medium than pre-cast key blanks. They will also have to go to a great deal more trouble to do so however. More trouble than simply pulling your door off with a tow hitch or blowtorching through your wall, etc.
The point of all of this is that with a restricted keyway, you can protect against a lot of scenarios involving security breaches that you can’t protect against if you have a common keyway. The costs are minimal: changing your keyway won’t break the bank. You are also not tied to my business. If you want you can pay another locksmith to change the keyway. If you want key copies however you have to come to me, and I maintain a database of who has what keys, and if you aren’t the same person who bought that key I will call the person in my database for that key. That is called key control management, and it means that nobody has the key unless you give it to them.
When I rekey people’s houses I always ask if they would like one knob or lever to be keyed differently to allow them to give out a key to workmen. On days when workers are expected, the deadbolt can be left unlocked and entry is permitted by unlocking the knob or lever. When entry by people without the common housekey is not desired, the deadbolt is left locked. This allows you to maintain a relatively safe and secure house though it still leaves you vulnerable to impressioning, picking and bumping. Criminals don’t usually employ these methods but it is worth thinking about to employ a keyway that makes it almost impossible to use a bumpkey or impressioning on. Such a lock is still susceptible to picking, but I also offer the upgrade of anti-pick pins which will defeat those of common criminal lockpicking skill. If your door is thick and your door frame is secure and your lock is grade 2, with a restricted keyway and anti-pick pins you are going to be nearly unassailable.
For those who are interested in the most reasonable prices, I can also give you a less expensive keyway that isn’t restricted, but is old and unused by most and only a locksmith will probably have access to the same key blank. Let me know!
Today I was reading lock related periodicals as I am wont to do when time weighs heavily and I came across some interesting information regarding masterlock. Nobody thinks of this company as producing anything that could be called high security as everybody knows somebody that can open their combination locks using a pop can or by listening to the clicks and writing down numbers and doing a small amount of number crunching.
Apparently masterlock did a study on bumpkeying locks and figured out a way to prevent it. Unfortunately the changes they made to their locks make it even easier to pick them. You can turn the plug after setting 3 of the 4 pins! They have always been easy to impression as well. The silly part is that their locks are now being marketed as “high security” and “ultra security” at Home Depot even now. Of course, none of this will stop anybody who has a $35 bolt cutter found farther down the store a few aisles, or even a digging bar that will fit in the shackle.
The best security against bumpkeying to my knowledge without buying better locks is to retrofit your locks with higher tension springs and spool pins or serrated pins. These won’t stop bumpkeying but they will require about ten more taps which is enough to make burglars think twice in the middle of the night. A well-lubricated Kwikset lock with no security pins only requires one or two taps, for comparison’s sake.
Some days we start at 5am and don’t stop working until after midnight. There’s plenty of time for a nap in between jobs though!
Today I only had a few jobs and it left me some time to reflect on increasing door security (these are the things locksmiths muse about). A common mantra amongst the security conscious is that your total security is only as good as the weakest link in the chain. A good lock is only as good as the door and the door frame if somebody kicks your door.
The good news is that you don’t have to be a locksmith or a genius to improve your door security. You can certainly call a pro and get it done right probably, but you can also just buy a strip of steel and cut holes in it and screw it into your doorframe. One of my favorite sites has a walkthrough for how to do this.
Illustrating the idea is this wonderful video from a “master locksmith” in Atlanta:
I can also install a door jamb reinforcer for $60. As mentioned above, you can do this yourself by screwing a strip of steel with holes for your strikes. Or you could buy this thing for the same price as I charge to install one.
Don’t use kwikset smartkey!