Advertisement
Promo

Security threats Toolkit

Story: Researchers hack 'tamper-proof' PIN terminals

  • Previous comment

Posted by: 182775 (Wednesday 27 February 2008, 3:05 PM)

  • Reply

drilling into the back of an autoteller

I'm not paid to do security in any way, as an amateur and customer of a bank, my thoughts:

Drilling into the back of an autoteller is detectable often I believe:

The back of the autoteller is either in a building or outside:
Outside they are normally clad in concrete and possibly also reinforced. Heavier drilling equipment, and more noise are more detectable. Also it's more difficult to be precise where the drill bit goes (necessary to avoid the antitamper measures)

If the back of the autoteller is inside a building it may be less well physically protected but there is the security of the building; daytime, the human supervision, and at night whatever alarms detectors &c the banks or shops use to protect the building. A break-in is usually detected.

I think the manufacturers sound complacent. And I don't buy their line that you need to be a cambridge boffin to make the hack work.
It sounds like security by obscurity. Skilled electronics engineers are available for hire and not all are squeaky clean.

I speculate the hack used an FPGA for cheapness, and to demonstrate reproducibility, not for speed of processing.

Would the researchers care to comment?

Private message disabled

jayh

jayh
IT Consultant, London, UK
Member since: January 2004

Site Activity Rating:

1

 


  • Previous comment

  • Reply to this comment
  • Return to story
  • Report this as offensive


Full Talkback thread

Sentry Posts Blog

Twitter hack was DNS redirect

Twitter has said an attack on Thursday which took the site offline for many users was the result of a DNS redirect. A group calling itself the Iranian Cyber Army redirected users... More

1 comment

McKinnon lawyers seek judicial review

Lawyers seeking a judicial review for Nasa hacker Gary McKinnon lodged fresh evidence of his psychiatric state at the High Court on Thursday. Karen Todner, McKinnon's solicitor,... More

1 comment

Beware of keeping your head in the clo...

Information security professionals can look forward to a deepening appreciation for their skills as security continues to be recognised as an essential element for doing business in... More

1 comment

Win a BlackBerry with Vlingo voice recognition

Win a BlackBerry with Vlingo voice recognition

What is ZDNet UK's usual tagline?

Competition closes - 14 Jan 2010


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

Newsletters