Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
×
Privacy Security Science Technology

Researchers Can Duplicate Keys From the Sounds They Make In Locks (kottke.org) 33

Researchers have demonstrated that they can make a working 3D-printed copy of a key just by listening to how the key sounds when inserted into a lock. Slashdot reader colinwb writes: While you cannot hear the shape of a drum it seems you can hear the shape of one type of key from the sound it makes in the lock. That says it all really, but [here's how Soundarya Ramesh and her team at the National University of Singapore accomplished this feat]: "[The NUS team developed and tested what it calls SpiKey, an end-to-end attack technique for, as its name suggests, spying on Yale/Schlage type keys and using signal processing software to infer their correct shapes.] Once they have a key-insertion audio file, SpiKey's inference software gets to work filtering the signal to reveal the strong, metallic clicks as key ridges hit the lock's pins [and you can hear those filtered clicks online here]. These clicks are vital to the inference analysis: the time between them allows the SpiKey software to compute the key's inter-ridge distances and what locksmiths call the 'bitting depth' of those ridges: basically, how deeply they cut into the key shaft, or where they plateau out. If a key is inserted at a nonconstant speed, the analysis can be ruined, but the software can compensate for small speed variations.

The result of all this is that SpiKey software outputs the three most likely key designs that will fit the lock used in the audio file, reducing the potential search space from 330,000 keys to just three. 'Given that the profile of the key is publicly available for commonly used [pin-tumbler lock] keys, we can 3D-print the keys for the inferred bitting codes, one of which will unlock the door,' says Ramesh." The article has a link to a 15-minute video presentation of the research and to another article on the research.

This discussion has been archived. No new comments can be posted.

Researchers Can Duplicate Keys From the Sounds They Make In Locks

Comments Filter:
  • Would this work for, say, a disc detainer lock?
    Or something like a Schlage Primus? Or a BiLock? Or any of the other higher security locks on the market?

    Its not like there aren't already many easy ways to get into these cheap insecure locks...

    • by klashn ( 1323433 )
      The research seems to be focused on the common key/lock type such as Schlage. Yes there are many ways to get into these cheap insecure locks, but the focus of this research was to determine a way to do that through capturing the audio from the key insertion as the bittings drop off the ridges in the lock. With a proof of concept here, if the disc detainer locks also have repeatable audio cues, then could theoretically a key could also be created to unlock that lock. The "key" to this was - how could you d
      • If you mean the type of lock that has sliding discs instead of pin tumblers, yeah probably - the edge of the disc hitting the key ridge probably makes a similar sound and by amplitude you can figure out how deep the cut is.

        On tubular tumbler locks, the technique is probably worthless, as all the tumblers hit the key at the same time.

        Take a Medeco - they have 3 rows of pin tumblers at differing angles so again the technique is probably useless on them. Trying to figure out which row is making which sound ef

    • by msauve ( 701917 )
      You're thinking too deeply. Anyone can break a physical lock with brute force. And anyone with the required tech to listen to a lock without you being aware already has better ways to finesse their way in.
    • "Would this work for, say, a disc detainer lock?"

      No, you need the "Lockpick that Bosnian Bill and I made" from the Lockpicking Lawyer.

  • by JasonM314 ( 1866144 ) on Tuesday August 18, 2020 @07:36PM (#60416789)

    I applaud these guys for their research, but the number of scenarios in which this is relevant is super super small.
    For even a semi-experienced person, picking a simple tumbler lock is a 3-10 minute operation. For a really experienced person, it's a good deal faster.
    Then there's bump keys.
    And lock rake guns.
    And going under/over the door.
    But sure, with this, you can walk up with 3 potential keys and about 5-20 seconds after stepping up, you're in the door.
    You just need a high-quality recording of the key being used in the door. However, the number of times when you can get that recording, but you can't just get a quick photo of the key are pretty few and far between.
    Plus you need a 3D printer and the know-how to use it (this is getting more common all the time, of course).
    Basically, if someone needs to be ninja-like enough to make use of this method, both from a timing and effort standpoint, then you probably already should have upgraded that lock to something other than a simple pin tumbler setup.

    Still, it is super neat.

    • by UnknownSoldier ( 67820 ) on Tuesday August 18, 2020 @08:15PM (#60416877)

      > picking a simple tumbler lock is a 3-10 minute operation. For a really experienced person, it's a good deal faster.

      Indeed. LPL (LockPickingLawyer) picked a disk detainer core in less then 30 seconds [youtube.com]. With the right tools and some experience SpiKey sounds (pardon the pun) to be extremely inefficient.

      Still neat proof of concept.

    • by PPH ( 736903 ) on Tuesday August 18, 2020 @09:22PM (#60417033)

      Sometimes the point is to get a key made. So that future entries can be made in full view of people who will assume that your possession of a key makes you 'authorized'. An orange vest and clipboard help as well.

      Even with a cheap, easy to pick lock, you are busted if the door is in view of other people. Somebody fiddling with a pick set is going to attract attention.

    • by GuB-42 ( 2483988 )

      The advantage of this technique is that if you can make a recording, you can make a key. Making the recording can be tricky if you don't want to be seen, however, once you have it, you can make a key at home.
      And once you come back you just open the door normally, with the key, something you can do in broad daylight without raising suspicion.

      The use case I can think of is if you want to enter something like a storage room or a locker box in a busy office building. Have a good microphone on you, be there when

    • by pjt33 ( 739471 )

      Plus you need a 3D printer and the know-how to use it

      Or an old-fashioned key cutting machine; or a blank key, a file, some calipers or reference keys, and patience.

      The question I find more interesting is to what extent the attack can be hindered by using a mix of springs of different strengths in the lock. Or would that help by essentially giving you multiple sets of data once you untangle them?

    • by tlhIngan ( 30335 )

      That's because most locks are terrible. Of Master Lock type security (there's a reason Master Lock 3/5 is a beginner practice lock - to practice raking attacks). Master Locks in general are a good practice lock - they are consistently crappy so they make great training locks as you can buy them anywhere and know they will be the same difficulty. You can't say the same for cheap Chinese made locks which are wildly inconsistent in quality.

      The front door of your house is no better for the most part unless you

  • by dogsbreath ( 730413 ) on Tuesday August 18, 2020 @08:21PM (#60416885)

    If you have the correct key, you can record audio of it and infer the cut by the sound. Maybe. Instead of just going and getting the key copied.

    or

    A nefarious nerd bugs your door lock with a recorder and waits in the shadows until you use your key. Really? Instead of just picking the lock or better yet, breaking a window?

    or whatever.

    No matter how you imagine it, sound inferring shape is a bit of fun but it ain't any kind of a security threat to locked doors that isn't already out there. This is really just "I can get in if I have physical access".

    Show me this works on a high security lock from 50 m away even with a human body standing between the recorder and the lock, then I will be impressed.

    • by quenda ( 644621 )

      Show me ... then I will be impressed.

      Wow, you totally don't get it. This is "news for nerds". It was an awesome hack. It does not need to be useful to be interesting.

      • Hey, I get it. The pin has a characteristic tone depending on length and shape which infers key shape. Cool. Not surprising but cool. Fun stuff and this is a good forum to talk about it. Neat things you can do with physics.

        However, the researchers present it as a security vulnerability which it really isn't, or if you must: it is a threat at less than the lowest category.

    • Look at it from the positive side - this research will probably create a movie franchise or three, with key sound being the main feature. One, a blind woman can do it and... Two, a kid can do it and... Three, zombie Bruce Willis can do it with his eyes closed and Stallone is called up from the grave to get him...

  • Allegedly there was this locksmith shop, that, if you brought in a key stamped "Do Not Duplicate", they would make a copy of the key anyway and then stamp "Do Not Duplicate" on the copy.

    In the end it didn't matter because master keys were easy replicated using just a file and a (*** cough ***) Yale Y4 blank.

    • by cusco ( 717999 )

      Allegedly? I've done it several times at two different locksmiths, once while I was still a high schooler with a purloined janitor key.

    • What is this "Do Not Duplicate" shit, and if it is real, how could it ever have stopped keys from being duplicated?

      • by Pascoea ( 968200 )
        Yes, it's real. I used to work at a hardware store in a small town, got a few people that came in with keys stamped "do not duplicate". I don't know of the level of criminality for copying them, but my boss made it abundantly clear that my employment would not continue if I copied one. Just like stealing money is illegal, that's literally the only thing stopping people from doing it.
    • I wanted a spare key for my apartment, just in case I got locked out. (It happens.) I kept one at work.

      When I went in to get they key copied, I didn't know it had that stamped on it. The lock smith told me, and followed up with, "I don't care, it doesn't matter to me -- but you probably signed a contract saying you're not allowed to copy this key. It's not on me, it's on you."

  • by JoeRobe ( 207552 ) on Tuesday August 18, 2020 @09:06PM (#60416981) Homepage

    ...couldn't you just take a picture of the key? Maybe a high end camera with a good zoom lens?

  • The conceit is you need to somehow get a quality audio recording of the proper key being inserted into the lock in a quiet location. I'm not clear how one can manage to get the recording without taking possession of the key, and if you've gotten even temporary possession of the key, wouldnt it be easier to jam it into a ball of clay sideways to get the cut pattern?

    As a hack, it's clever - as a security vulnerability, it's nearly useless.

    • Many places are quiet, so you just need a listening device.

      For that matter, a second listening device a little further away could record ambient noise, then used to cancel it out from the primary recording.

As you will see, I told them, in no uncertain terms, to see Figure one. -- Dave "First Strike" Pare

Working...