Recently, a video of a professional "hacker" analog attack smart door lock, electronic camera and other smart home products appeared on the network, which has aroused the attention of many people. This hacker attack video is an attack experiment conducted by cyber security experts in the lab at the recent China Internet Security Conference.
Is the smart lock in real life really easy to crack like in the test? In the era of smart lock explosion, how should we rationally treat this hacker to crack the smart lock incident?
When a hacker attacks a smart lock into a social game
During this period of time, the incident of intelligent locks has been attacked, which has aroused everyone's attention. This kind of concern also shows that consumers' attention and acceptance of smart locks have been greatly improved compared with previous years. In the past two years, the popularity of smart locks in the domestic market has become wider and wider, and it has been widely used in domestic high-end residential areas, office buildings, government agencies and other use scenarios.
After becoming a star category, smart locks have also encountered many doubts, including concerns about the need for networking for smart locks. Of course, this concern is not limited to smart locks. Almost all new products that need to be connected have experienced consumer doubts when they are available.
It is this kind of questioning that makes this offense and defense become a social game that combines many interests and satisfies everyone's needs. Just like Apple's new IPhoneX released a few days ago, it has also set off a wave on the Internet. IPhoneX's unique face recognition technology has been ridiculed by netizens as a “card reader†and a “passportâ€. Apple, the segment, the consumer, the three parties in this game, each has its own gains and losses.
Putting aside the game and returning to the facts itself, we can trace the source from the experiment in the video and try to restore the smart lock as the status quo and future of an emerging industry.
The laboratory environment and the real environment, the difficulty is different.
In the laboratory environment, the network security expert attacked the cloud server of the smart lock through the user's mobile phone number information that was mastered in advance, obtained the unlock password of the user, and smoothly opened the door lock. If you have the heart, you will find two key hidden information in this attack experiment: the undisturbed laboratory environment, and the user's mobile phone information that is known in advance.
Although the reality of hacking a single smart lock is not significant, there are still many people who are worried about the security of smart lock networking. So in real life, how difficult is it for hackers to crack the smart lock of the user's home?
In response to this concern, we interviewed Director Xu Tujin of the National Quality Supervision and Inspection Center for Anti-theft and Alarm Monitoring Products (Zhejiang). On this issue, Director Xu made a detailed explanation for us. "In real life, if a hacker wants to crack the smart lock of a user's home, he needs to have three conditions: First, the hacker needs to get the server network interface of the smart lock. Secondly, Hackers need to get the mobile number that users use to set smart locks. This is also a key condition for hackers to crack smart locks. Finally, hackers need to crack smart locks at close range."
For the feasibility of cracking, Director Xu said, "The hacker cracks the smart lock in life, the feasibility is actually not high. In real life, the hacker wants to crack the smart lock of a user's home. First, he needs to obtain the user through other means. The exact address of the home also needs to obtain the mobile phone number that the user uses to set the smart lock. The user often has more than one mobile phone number in the home, and any one may be used to set the smart lock. In this way, the hacker wants to get the user settings. The mobile phone number of the smart lock may be more difficult than the smart lock itself. In addition, the hacker needs to crack the Bluetooth or WiFi for a long time at your doorstep or at a door not far from the door. It is more difficult to do this under the eyes of the eyelids and the improvement of the monitoring and security forces."
The network security engineer of Gemalto, a leading international digital security company, also said in an interview that "hackers have obtained the user's mobile phone number in advance, which actually reduces the simple attack after the difficulty of cracking. For the intelligence without designing the remote unlock function. Locks, stand-alone fingerprint locks, and smart locks in a non-networked state make it harder for hackers to crack. In fact, no professional hackers will carry a computer to your doorstep to crack."
In addition to the technical difficulty and the interference of the attack environment, the biggest problem faced by hackers is the legal responsibility and moral condemnation that must be faced by illegally attacking other people's home smart locks through the Internet. In addition, professionals with such attack capabilities can easily find jobs with hundreds of thousands of annual salary in large domestic Internet companies or security companies. Perhaps no one will be willing to risk losing their personal freedom, future and reputation. crime.
Only relative security, smart locks have been revolutionary improvements over mechanical locks
Security experts have cracked a smart lock, and it is not worthwhile to panic and deny this emerging industry. In any field, security is relative. The world-renowned technology giants like Google and Microsoft will still be vulnerable by hackers. Compared with traditional mechanical locks, the current smart locks have revolutionized the safety performance.
Most of the current smart lock products have various unlocking methods such as fingerprints and passwords, and there are also security settings such as anti-test opening, anti-tampering and explosion-proof. The overall safety performance is far superior to mechanical locks. For the long-range attacks used by hackers, in the new standard of the electronic lock detection center of the Ministry of Public Security, new security measures have been taken for the smart locks in the networked state.
In addition, the smart lock has also completed the transition from the passive security of the mechanical lock era to the active defense of the smart lock era. Through the communication with the smart cat's eye, the smart lock can actively send an alarm message to the user for abnormal conditions. After receiving the prompt, the user can view the abnormal information such as someone in front of the door for a long time and someone trying to unlock.
In addition, many smart lock brands also provide users with protection for family property security, and even many smart lock brand promises. If the product is stolen due to product problems, the public security department can provide the user with the certificate. From 10,000 to 300,000 yuan, the insurance will be compensated for damages. From products to services, companies have given users as much security as possible.
Maintain security awareness and rationally treat hackers to crack smart locks
In the future, the offensive and defensive games of this kind of laboratory will continue, but the intelligentization of home products including smart locks is the development trend of new homes in the future. The trend of smart locks replacing traditional mechanical locks is irreversible, just as mobile phones cannot return to the brick machine era from the intelligent age.
On the one hand, the relevant standards and norms of the country are constantly being revised and upgraded. The smart lock brands including Deschman and Huitailong are also assisting the Ministry of Public Security’s Electronic Lock Detection Center to draft new ones. Industry standards help the smart lock industry to improve product performance and quality; on the other hand, the country's bottom line for safeguarding people's safety will never waver, and the people's personal and property safety will be guaranteed by relevant laws and regulations.
As a new industry, smart locks need to be maintained by the state, enterprises and the public. An offensive and defensive experiment can help enterprises improve product safety and repair network vulnerabilities, but it will not change the inevitability of smart locks in the future, and will not stop the trend of smart lock market.
As consumers, we should also raise our security awareness and look at smart locks more rationally. When choosing smart lock products, we should choose smart lock products produced by some big brand manufacturers to avoid the choice of remote network attacks. The smart lock product with remote unlock function while maintaining sufficient awareness of prevention.
Editor in charge: Zhao Hongli
Self Adhesive Standard Floor Protection
Moving Floor Protection,Floor Protection Paint,Self Adhesive Floor Protection,Outdoor Floor Protection
Suzhou Surface Protective New Material Technology Co.,Ltd , https://www.surfaceprotective.com