Nortek Mobile Access Reader BluePass Examined

By: Brian Rhodes, Published on Feb 12, 2019

Nortek's Linear access control division claims to make mobile credentials "more secure and easier to use than ever before" with their BluePass reader.

However, the company's approach potentially uncovers big security vulnerabilities. Inside we examine:

  • BluePass Readers & Credentials Key Claims
  • Linear System Pricing
  • Potential Wiegand/125 kHz Weakness
  • Compared to HID Origo Mobile & Openpath Readers
  • Partnership with Unikey

******'* ************ ******* ******** ****** to **** ****** *********** "more ****** *** ****** to *** **** **** before" **** ************* ******.

*******, *** *******'* ******** potentially ******** *** ******** vulnerabilities. ****** ** *******:

  • ******** ******* & *********** Key ******
  • ****** ****** *******
  • ********* *******/*** *** ********
  • ******** ** *** ***** Mobile & ******** *******
  • *********** **** ******

[***************]

Product ********

******/******'* ******** ****** ******** non-mobile *******, ******** ****** users ** ******* ***** or ******* *********** ** transmit *********** *** ********* Low ****** (***).

*** ***** ***** ** the ************'* ********:

*** ********:

  • **** ********** ******: ******** ***** **** app-based *** ** ******** 26-bit/37-bit *** *** ***********.
  • ***** *******: **** ***** *** readers (*.*.:********), ***** *** **** an ********* ***** ** their ****** *** ****** 'touch' *** ****** ** unlock *** ****.
  • ***** **** **** ****** Systems: *** **** ******** to * ********** *** Wiegand *** **** ******* data *******, ** ******** can ** ******** **** most ******** ******* ** swapping *** ******.

Key ***** ******* / ************

*** ******** ****** ****** does **** * ****** of ******* ******** ** relative ************, *********:

  • ******* ****: * ******* ************* in ******** ********** **** exists ******* ******** **** not *** ********* ************** like ****.
  • **-*** ** **-*** ****: ** ******* *** using ****** ** ***** credential *******, ******** ****** a ****** ** ******* format *** ***** ******* by *** ******.
  • ****** ****** *****: ****** ****** **** factors, **** *** *** equipped ****** ** ****** range ****-***** ***** *** not *********.
  • ***-********** ********** ******: *** ************** ********, a *** ****** **** be **** ******** **** the ****** ****** ******, causing ***** ** ****** the **** **** ******** times.

BluePass ****** *******

****** ****** *** ******** readers *** ~$***, ********* from **** ******** *** alarm ************ *** ****** resellers.

Credential *******

****** *** ********** ****** tokens ***** ******* $*.** - $*.** **** ** a ***-**** ********, ********* on *** ******* *********. Packages **** * - 100 *********** *** *********.

** ********* ****** ** credential **** ** **** each **** ****** **** have * ******** ********** assigned ** **, ********** if ** ******* ** be ****** ** *** same ********** ** *** access ******.

************, *********** *** *** transferable *** *** ****** to ******** *******. **** cannot ** '******' *** circulation ***** ******** ** reissued **** **** ******* are ******** ** ********, and *** ******** *********** must ** *********.

**********With ******** *** *** ***********

*** ** *** **** interesting ******* ** ******** can ****** **** ***** of ******** ****** *********** so **** ********** *** be **** ******* **-*********** existing ****** *******.

******** ****** ** *** import ******** ** *** or ** *** *********** and ****** ****** ****** to ****** **** ***** those *******. ***** ******** to **** ***** *** credential *****, **** *** two ** *** **** common *** ******* ****** credentials ** ***. ***** more ****** ********* ** advanced ******* ****** ** used, **-***/**-*** *********** ****** popular, ********** **% ** **************** ******* *** **** 'Most *******' *** **** existing ******* ***** ***** them.

****** ****** *** ****** process ******** ********* * .csv **** **** ******** card *******, *****, *** email ********* ** ***** web ******, *** **** those ******* *** **** converted **** ******** ****** that *** ************ ** users **** ***** ******.

Single ***** ****

*******, ***** ******** *********** information ***** ** ******, the ******** ****** **** comes ** * ******, mullion *****, ***** (******** credential) **** ***** ***** and *** *** ** suitable *** ***** **** or ****** ***********. ******'* dual ***/*** *** ****** fits **** ******-**** ***** with ** ******** *******.

*** ****** ****** ** be **** *** **** 5-16VDC ***** @ ***** typical ** **** ***** and *** ** ******* by ********** ******* **** ****************** ******* ********** ***** supplies ** *** *******.

*** ***** ******* ***********, the **** **** ***** generic *** *** ***** or ****.

** ****, *******, *** BluePass ****** *** ** keypad (** *** *******), and *** **** ***** for ******** *** *** is ****** ******, *** applications **** ******** ***** (e.g.: ******* *******), **** the ******-***** *** *********** can *****.

*************, ****** ***** *** '125 *** ****** ** disabled' ** *** ***, potentially ******* ******* ********** to ******* ******** ****** **** ****** ******* With **** $** *** 125kHz **** ******:

BLE *****

*** ******'* *** *********** must ** ******** ******** too, **** ****** ***** may ************* ****** ******** by ****** *****.

*********** **** *************:

** *** ******’* ********* reception ******** ** *** too ****,
** *** ************* **** with ** ********’* ****** device
*** ***** ************ ***** into *** ******** ****** by
******* * **** ****, or ********, *** ******.

** ****** ***** ***-*** readers, ** ********** ************* step ** ****** *** BluePass **** ********* ** minimize **** ****.

Wiegand *****

******* *** **** ** that **** ** *** supported ** ********, **** Wiegand, *** ************** **** between *** **** *** door *********** *** ** intercepted.

*** **** ** ********** to '*** ** *** middle' ******** ***$** ****** ** ************** **** **** ** physically ********* *** ****** in *** ***** ** reader *****:

******** ***** *** **** even ******* ** ******** a ****** ****** ** sensor ** *** ******, so ********** **** * device ***** *********** ** undetected ** *** ******.

Middleware ********** **********

******** ********** ********** ******** *** ********** **** the ****** ********** ******** and **** ****** * separate **** ** ****** and ***** **** *** most *****.

***** ********* *** ***** and ********* *********** ** web-based, *** ** *** trial ***********, **** ** use ** **** **** an ***** **** ** required. *** ******* **** BluePass ******** ******** * credential ****** ** *** access ****** *** **** another ********* ****** ** required ** ******'* ******.

************ **** ****** ** changes ** ***** ********* should ****** ********** **** done ** *** ****** system, *** ** ***** to ********** ****** ** turn-off * ****** **********, it **** ** **** in *** *** ******.

Versus *** *****/****** ***********

*** **** ** ******** is ****** ** ** higher **** *** ** used ** ***** ******* with **** ***** **** frequent ****** ****** ********.

*** ******* ******** **** Nortek ** ****** *********** are ***-************ *** ****** be ******** ** **** than *** ******, ********* ********** ******* ** ***** on '*** ****'. ** unlike ********, ******** ******* can ** ****** ***** HID ***** *********** *** a ****** ***** ** about $* *** ****.

*******, **** ******, *** mobile ********** ** * one-time ******** **** *** be **** *** *** life ** *** ****** is *** ********, ***** HID ** ** ****** cost.

Versus ********

**** ** *** **** 'cool ******' ******** ********* in ******* ********'* ******* are ******* ** ********, including *** '*****' ** open ******* *** ************* with **** *** *** Android *******.

******, ******** ********* **** of *** *** *** and ******* ************ **** BluePass *** ** ********** only **.** *** ******* and ********** **** **** the ****** ** **********.

** ***** ** *********** ****, **********'* *********** *******, *** ********* ****** at ~$*** ****, *** two ***** *** *********.

**** ********, ***** ** no ****** ********** ******** required. *******, ****** ******, Openpath ******* **** **** with ******** *********** *** the ****** ****** **** be **** *** * service *** ********* ******* for *********** ** ** valid.

Versus ******** *** *** *******

******** ** *** ***** of '***-***' *** *** readers, ******'* **** ** quite ****. **** *** example *** *** **** Midrange **** **** ******* ~$130 ****** ** ******'* ~$250 *****:

***** **** *******, ********'* 125 *** ************* ***** sense *** '******' ********* credentials, *** ** ******* are ********* ***** ***** physical *********** ****** **** mobile, **** ****** *** kHz ******* *** ******** available.

UniKey *****

**** ********, ****** ** relying ** *********** ******** development *** *** ****** platform. *************, **** ******* is **** ** * partnership **** '****** ***********' developer******:

** ***** ** ********* ***********, **** ******* *** developed *** '****** ***********' piece *** **** ******** from ****** **** ******* (see ******* **** ****), ****, ****, *** Honeywell.

Comments (10)

**** ***** **** *** ****** ** ** ***** **** ***** Remote.

**** ***** ** ** *********** *******. * *** ******:

*** ***'* **** *** * ***** ****** ** *** ********** to **** *** ****? **** ***** ** ****** ******* ** and ******* * **** ** * **** ** *** ****** in ** *******.

*** ***** ** *** *********** ** * ******* ********. *** gets **** ** ************* *** **** ***** ... ** **** lesss

**** ** **** ***** ** *** * *** ********* ** configure *** ******. *********** **** ** ******** ****** ******* ***** bothersome **** ********** *********** ** ********...

***** **** ** **** ** ***** *** ******** ** *** ACS ******. **** ** ** ***** ******** , *** ******** yet ***. **'** **** *** ***.

*** ***'* **** *** * ***** ****** ** *** ********** to **** *** ****?

******* *** *** * ****** ** ****.*** ****** ***** **** ** *** *** ** ******** *** Convenience **** *** ****** ******:

*** ******** **** ***** ** ******** *** ***** ** ****** doors *** **** ***** **** * ******** ***** ***company’s ******** “***** *** **” ******* technology. [emphasis added]

****'* ** *****. * ** ******* ** *** ******** ** out? ***** *** *** *****?

**** **** ********, *** '*****' ******* ********** ** ** *** patent:*** '***** *** **' ****** *******.

************, ****** *** ***-*** ******** ** ******* ****** *** **** no ******* ** ****** ** * *******, *** * ********. They ********* **** ******* ***** ***** ******* **** ***** ** your ****** *** *****-**** ******.

*******, **** ***** ** ********** ******* *** ********* ********* ** a **** **** ****** ******* ** **** ****-******** ***********.

*'** *** *** *** ******* ** ********* *** *******.

**** **** ** *** ************* *** ***** ** ***** *** technology ***** **** **** **********. **** ***** *** ***** *** you ****, **** "****", ** **** *** **** ** ** the **** *** *** ***** ** ** ***. ***** *********** does **** **** ***** ****** ******* *** ***** **** ****. You *** **** ***** *** **** *** **** ******** **** when ******** ** **** ******** ** ** **** **** ****** those ***** **********.

********* ******* *** ***** * **** *** *** *** *** getting ****** ********, ********** **** ***** ***** ** ********** **** already ****** ** *** ***** ******* ** *********** *** *****.

*** **** ******* *** ******** *** **********?:

******** - ********* *** *** *******

****://***.***-******.***/********/********

** * ******* **** ******** ** ***********/ **** ********* **** RBH ******?

* ***'* ***** **, *** * ** **** *** ***** answer ****. ** *** ****** ** ** *** ** ****** certain **** *** *** ** ** **** ********* ** **** at *** ****.

***** ****** :) ****** **** ** ** ****** *** ** OSDP. *** ********** ** *** ****** **** ** * ****** phone *** ** ***'* ** **** ****** ****** *** ** clients.

***

**

****** ***** ** **** **** ******* ** ***** **-** *** RC-1 ******* ... ******* **** *** *** ******* ... *****'* tried ** ***.

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports

How To Troubleshoot Wiegand Reader Problems - Inverted Wiring on Jul 16, 2019
Wiegand is the dominant method of connecting access readers, but problems can arise for installers. In fact, one of the most difficult reader...
Nortek Blue Pass Mobile Access Reader Tested on Jul 11, 2019
Nortek claims BluePass mobile readers are a 'more secure and easy to use approach to access', but our testing uncovered security problems and...
Calipsa - UK AI Startup Profile on Jul 10, 2019
Analytic startups are a major industry trend. One UK company, Calipsa is aiming to use AI to filter out false positive alarms for live video...
Poor OSDP Usage Statistics 2019 on Jul 09, 2019
OSDP certainly offers advantages over decades-old Wiegand (see our OSDP Access Control Guide) but new IPVM statistics show that usage of OSDP, even...
RaySharp Revealed - Major China OEM For Western Consumer Video Surveillance on Jul 02, 2019
RaySharp is mostly unknown, even among people in the video surveillance industry, though it is a major supplier of OEM surveillance equipment such...
Ivideon Russian VSaaS Profile on Jun 27, 2019
Ivideon was an early VSaaS entrant, initially focusing on the consumer market, claiming massive growth to IPVM in 2014. We spoke to Ivideon, to...
Directory of 59 Video Surveillance Startups on Jun 25, 2019
This directory provides a list of video surveillance startups to help you see and research what companies are new or not yet broadly known. 2019...
HID Mobile Tested on Jun 21, 2019
HID Global is one of the largest access brands, but their mobile access has had challenges. Indeed, the company has already restructured their...
Repositionable Multi-Imager Camera Shootout - Avigilon, Axis, Dahua, Hanwha, Hikvision, Panasonic, Vivotek on Jun 19, 2019
Repositionable multi-imager cameras are one of the fastest growing segments in video surveillance, with a slew of new offerings being recently...
Genetec Synergis Cloud Link - Complex, Costly and Confusing on Jun 18, 2019
Genetec's Synergis Cloud Link is complex, costly and confusing compared to competitor access control architectures. Inside this note, we examine...

Most Recent Industry Reports

HD Analog vs IP Guide on Jul 16, 2019
For years, HD resolution and single cable signal/power were IP camera advantages, with analog cameras limited to much lower resolution and...
How To Troubleshoot Wiegand Reader Problems - Inverted Wiring on Jul 16, 2019
Wiegand is the dominant method of connecting access readers, but problems can arise for installers. In fact, one of the most difficult reader...
ZeroEyes Gun Detection Startup on Jul 16, 2019
A gun detection video analytics startup, ZeroEyes, is being led by a group of 6 former Navy SEALs, aiming to "save lives" by using AI to assist...
Motorola Acquires Watchguard, Adds to Vigilant And Avigilon on Jul 15, 2019
2 years ago, Motorola had no position nor relevancy to video surveillance. Now, they own major video surveillance, LPR and body camera providers...
Hikvision Global News Reports Directory on Jul 15, 2019
Hikvision has received the most global news reporting of any video surveillance company, ever, ranging from the WSJ, the Financial Times, Reuters,...
Vivotek Trend Micro Cyber Security Camera App Tested on Jul 15, 2019
Vivotek and Trend Micro are claiming five million blocked attacks on IP cameras, with their jointly developed app for Vivotek cameras. This new...
Beware African 50,000 IP Camera Contract Scam on Jul 12, 2019
A “Nigerian Prince” scam for the video surveillance market is going around. You, or at least we, could be lucky enough to be the single bidder for...
Axis ARTPEC-7 P1375-E Camera Tested on Jul 12, 2019
Axis claims the new P1375-E box camera with ARTPEC-7 chip delivers "clear, sharp images in any lighting condition." But how well does it do? We...
Last Chance - Camera Course Summer 2019 on Jul 11, 2019
Last day to register is Thursday, July 11, 2019. This is the only independent surveillance camera course, based on in-depth product and technology...
Nortek Blue Pass Mobile Access Reader Tested on Jul 11, 2019
Nortek claims BluePass mobile readers are a 'more secure and easy to use approach to access', but our testing uncovered security problems and...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact