UPDATE UPDATE: Jeff's scheduling conflict has been resolved, and unless something else comes up he will be joining us on the 19th. Sorry for the confusion!
UPDATE: Something came up and Jeff will no longer be able to join us. Instead, we'll watch a video of Jeff's presentation and I'll handle the physical demos. As a bonus, I'm going to bring an extra safe for us to examine for vulnerabilities.
We have another guest speaker tonight! Jeff Popio will be teaching us about common vulnerabilities in electronic safes.
Commonly safes are used in IT to secure backup tapes, certificate roots, and other sensitive material. This talk will demonstrate that many of the safes used to secure these sensitive materials are ineffective.
Today there are many varieties of electronic safes that utilize a VERY weak mechanism to physically lock the safe. In many cases there are ways to open the safe in less than a minute that leaves no evidence behind. (Sometimes only a few seconds) This talk will cover my experience discovering the flaw and dealing with a safe vendor to issue a fix, then discovering the inadequacies of the fix itself and vendor’s continuing ignorance of the problem with most electronic locks.
Fixing these problems is relatively easy. There will be general instruction on how to fix the problems and what needs to be done by the vendors to make safes well… safer.
Common note: As always, there is a beginner class at 6PM for 30 minutes if you have never picked. Pick sets are available to borrow, and are for sale for $20, cash or charge. The annual membership fee is not required to attend meetups.