Deviant Ollam
Forfatter af Practical Lock Picking: A Physical Penetration Tester's Training Guide
Værker af Deviant Ollam
Satte nøgleord på
Almen Viden
- Uddannelse
- B.S. at Science, Technology, & Society program, New Jersey Institute of Technology
History degree program, Rutgers University - Erhverv
- security auditor and penetration testing consultant, The CORE Group
- Kort biografi
- Physical security is an oft-overlooked component of data and system security in the technology world. You can have the most hardened servers and network but that doesn't make the slightest difference if someone can gain direct access to a console keyboard or, worse yet, march your hardware right out the door. While numerous ratings and standards exist in order classify specific security hardware, many of these standards are ill-defined and poorly-understood. Do you know what makes a "hardened" or "contractor grade" lock special? What does the phrase "high security" signify on hardware packaging?
As it turns out, many of these terms are just for show... but Deviant will walk you step-by-step through some distinct and easy-to-follow examples of how low-grade locks can fail as well as how to clearly identify quality equipment. Additionally, we will cover the more difficult matter of hardware purchase decisions at the highest levels... fine distinctions such as which locks belong on the CEO's office versus which ones to use on your server rooms. Every situation calls for something a bit different, and those differences add up when you're spending $100 or more per lock. Make your money count and keep your budget, and your data, secure.
BIO:
While paying the bills as a security auditor and penetration testing consultant with his company, The CORE Group, Deviant is also member of the Board of Directors of the US division of TOOOL, The Open Organization of Lockpickers. Every year at DEFCON and ShmooCon Deviant runs the Lockpicking Village, and he has conducted physical security training sessions at Black Hat, DeepSec, ToorCon, HackCon, ShakaCon, HackInTheBox, CanSecWest, ekoparty, and the United States Military Academy at West Point.
Medlemmer
Anmeldelser
Practical lock picking : a physical penetration… af Deviant Ollam
A super helpful book! This goes into a lot more depth than I was expecting, and covers more than just lock-picking. I would definitely recommend it to anyone just getting started.
I picked up a second hand copy of Keys to the Kingdom after greatly enjoying Ollam's talks at WWHF and DefCon. This book was disappointing, as he's a much better speaker than he is writer. The good: you can get through this book in a few hours, and it covers the same amount of material as maybe four or five of his talks. The bad: you'll be getting a significantly worse experience.
After the first few chapters, I found myself skimming. As an amateur with only a passing interest in lockpicking, most of these attacks are too sophisticated for me to care about. I'm not going to be breaking in to any high-security locations, and attacking a pin tumbler is as fancy as I'm ever going to possibly need be.
That's not to say this book is without its highlights. I learned about the impressioning attack, and that pressing a key against your forearm for 30 seconds will leave an impression for 15 minutes. That's a pretty cool way of exfiltration. I just tried it myself and it seems to work!
… (mere)
After the first few chapters, I found myself skimming. As an amateur with only a passing interest in lockpicking, most of these attacks are too sophisticated for me to care about. I'm not going to be breaking in to any high-security locations, and attacking a pin tumbler is as fancy as I'm ever going to possibly need be.
That's not to say this book is without its highlights. I learned about the impressioning attack, and that pressing a key against your forearm for 30 seconds will leave an impression for 15 minutes. That's a pretty cool way of exfiltration. I just tried it myself and it seems to work!
… (mere)
The whole concept of locksport or the competitive, hobby activity of picking locks was totally unfamiliar to me until I read Robert Vamosi's book - When Gadgets Betray Us - that discussed gadgets and technology and its vulnerabilities. It mentioned Deviant Ollam and included a lengthy discussion of the vulnerability of locks. After reading about Ollam, I decided to see what was available as an introduction to lock picking.
Lo, and behold, Mr. Ollam has a how-to guide on lock picking. As the title states, the emphasis is on the practical side. This book is ideal for the novice locksport, for the curious, but also for those who are involved in physical security. The text is informal and easy to understand. I was a bit wary when approaching the subject but there are so many diagrams and designs that it was not long before I had the difference between driver and key pins completely clear in my head.
The interesting thing to me was how useful the information is from a personal privacy standpoint. I finished the initial chapters that talked about key bitting and how the depth of the key notches are sometimes written on your key with a number. I pulled out my house key and there was a 5 digit number, which makes it easy for a locksmith to replace my key. Or someone else to figure out how each digit corresponds to a pin in the lock and speed access to picking it!
That is what I liked about this text. By the end, I understood much more about what my keys and locks represented as well as the things I should look for in purchasing locks for my house or business.
I thought of Simon Singh's The Code Book as I read Ollam's lock picking information. The books themselves are completely different in tone and scope but both deal with the explanation of a security measure and then the development of a countermeasure. That countermeasure is then itself countered, and so on. Ollam walks you through the basics of lock picking, the developments by lock makers of key channels that inhibit picking, of specialty key and driver pins to inhibit picking, and then techniques the locksport community have developed for getting around those improvements.
This is an interesting book in many ways, and whether you are thinking about locksport or just curious about those things that protect your house and office, it is worth reading.… (mere)
Lo, and behold, Mr. Ollam has a how-to guide on lock picking. As the title states, the emphasis is on the practical side. This book is ideal for the novice locksport, for the curious, but also for those who are involved in physical security. The text is informal and easy to understand. I was a bit wary when approaching the subject but there are so many diagrams and designs that it was not long before I had the difference between driver and key pins completely clear in my head.
The interesting thing to me was how useful the information is from a personal privacy standpoint. I finished the initial chapters that talked about key bitting and how the depth of the key notches are sometimes written on your key with a number. I pulled out my house key and there was a 5 digit number, which makes it easy for a locksmith to replace my key. Or someone else to figure out how each digit corresponds to a pin in the lock and speed access to picking it!
That is what I liked about this text. By the end, I understood much more about what my keys and locks represented as well as the things I should look for in purchasing locks for my house or business.
I thought of Simon Singh's The Code Book as I read Ollam's lock picking information. The books themselves are completely different in tone and scope but both deal with the explanation of a security measure and then the development of a countermeasure. That countermeasure is then itself countered, and so on. Ollam walks you through the basics of lock picking, the developments by lock makers of key channels that inhibit picking, of specialty key and driver pins to inhibit picking, and then techniques the locksport community have developed for getting around those improvements.
This is an interesting book in many ways, and whether you are thinking about locksport or just curious about those things that protect your house and office, it is worth reading.… (mere)
Statistikker
- Værker
- 2
- Medlemmer
- 148
- Popularitet
- #140,180
- Vurdering
- 4.3
- Anmeldelser
- 3
- ISBN
- 8
