Physical security and cryptography can learn from each other, part 11367:
Hotels wisely don't put the room number on guest keycards so if someone finds your card, they'd have to exhaustively search the hotel to find the room it opens.
Some hotels now have elevators programmed to only let you call the floor for which your keycard is coded, preventing guests from wandering to other floors.
But it also means the elevator can be used as an efficient oracle to determine the floor of a found key.
In the holiday house we rent there is a masonite panel in a closet under the stairs, with screws in the corners.
Since it seems to hide something (actually it hides just the heating pipes) I wrote on the wall behind it: "The safe is not here! Try again!".
@mattblaze I am in a hotel now (in Japan, for context).
I observed that you could access any floor when my backpack pressed several floor buttons on our first ride.
When I later attempted to access the laundry room floor but could not, but could access my floor, thought that perhaps the first observation was an anomaly associated with the fact that the only other elevator was being attended by an elevator repairman at the time of the multiple floor incident.
It turns out that I had my Suica card in my hand, not my hotel card, had selected my floor based on the swipe of another guest in the elevator, but was unable to select the laundry floor after a time out.
I discovered this when I couldn't open my room with the Suica.
The flaw in this hotel is that one swipe enables multiple floors, defeating the security access aspect while providing the anonymity. A guest can swipe, and an intruder can then access a floor that they have previously observed a target accessing, and then, presumably, having determined the room number via other (social engineering) means, door knock with "hotel engineering".
@BernardSheppard @mattblaze In a hotel I stayed in a few years back, someone discovered an interesting hack: while you could only select a floor after swiping your card (IIRC and only your own), after someone had selected a floor you could select any additional floor by pushing the button of the already selected floor and the new floor at the same time, thanks to the physical wiring of the card-reader add-on.
Not sure whether you'd count that wiring as "software bug" or "physical security issue" :)
@mfdeakin @mattblaze It's easy enough to decide. Are hotels interested in security or in cost? If the room number was on the key, it's extra cost to manufacture, it's extra cost because you'd need twice as many to allow for losses, it's extra cost because you'd need racks to store them, it's extra cost because reception would have to sort returned keys
So instead of having the room number on the key, it's quickly handwritten on the card folder, and you'd never lose that with the key
the solution is for the hotel itself to drop keycards around the hotel and in the surrounding area
then when that honeypot keycard is used on the elevator it takes the potential burglar to the basement where a burly guy named Steve is waiting for them with a grin
well if i was being serious, the burly guy in the basement would have been named Bob
@rhelune Also annoying if you are staying at a hotel with a group of friends (e.g. for an event). Then you cannot easily go to their floor and have to always meet in the lobby.
EDIT: OK I am an idiot, @mattblaze already covered this exact point! 🤪
>… harder for guests to visit their friends on other floors…
Matt Blaze
Mike Kershaw / Dragorn
rag. Gustavino Bevilacqua
Bernard Sheppard
Ysegrim
mfdeakin
Carolyn
🔶Mark Nicoll 3.5%🏴🇬🇧🇪🇺🇺🇳
Mark Otway
Alan Bellingham
WellsiteGeo
ᴮᵉⁿ ᴿᵒʸᶜᵉVOTE IN THE PRIMARIES
Pete / Syllopsium
Trammell Hudson
Ariadne Conill 🐰
Enola Knezevic
halfa
kit
Velocipede Rider
1000millimeter
Lstn2urmama 🇨🇦