Published Oct 30, 2024

SE Radio 640: Jonathan Horvath on Physical Security

Jonathan Horvath of Z-bit delves into the complex world of physical security, articulating the technological evolution of access control systems and the critical role of open standards like OSDP in overcoming legacy system challenges, credential vulnerabilities, and proprietary hurdles to enhance security and interoperability.
Episode Highlights
Software Engineering Radio - the podcast for professional software developers logo

Popular Clips

Episode Highlights

  • Cloning Risks

    Jonathan Horvath highlights the persistent risks associated with cloning credentials, emphasizing the historical context of these vulnerabilities. He explains how early systems like mag stripes and Wiegand were easily cloned due to their unencrypted nature, making them susceptible to unauthorized duplication 1. "Nowadays as things got smaller, to clone them is super easy," Jonathan notes, illustrating the evolution of technology that has made cloning more accessible 2. Despite advancements, many systems still use outdated technologies, leaving them vulnerable to breaches 3.

       

    PKI Security

    Public Key Infrastructure (PKI) offers a robust solution to enhance credential security and reduce cloning risks. Jonathan discusses the implementation of PKI, which involves storing a private key within a secure element, ensuring that even if a key is compromised, it only affects a single credential 4. "The nice thing about open standards is everybody can look at it and comment," he says, highlighting the transparency and security benefits of open standards like OSDP and PKOC 5. These protocols enable secure communication between devices, reducing vulnerabilities in physical access systems 6.

Related Episodes