The Insecure Verkada Access Control System

Verkada ****** ******** *******

*******'***** ************** ***** ***** *** ***** ******* are ********* *** *******:

******* ** *********** *** **************, ********* in *** *****. **** ****** ********* now ***** *********, *** (*************) *********************** ** *** ***-*****.

**** ***** *****-***** ****** ********* ******* OSDP. *** *******, ******, *****, *** Feenics ******* ****, ** **** ******* and *******.

Points ** *** **** ***** ** *************

******* ********* ** **** ****** **** chose ** ***** ******* ** ******** Wiegand ***** ** ****** ***:

*****, ** ******* ******* ** **** is *** **** ****** ******** **'** seen ** *** *****.

**** ***** *** ******** ***** ** 'secure' **** ** *** ******, ******* to** **** ******:

** *****'* **** *********** ******** ** OSDP (**** ** *****:*****://****.***/*******/****-**) *** *** ******** ** ******* 3rd ***** **** *** * ******** update ** *** ****** ***** ** customer ******.

****** **** ***** ******** ********** ******** hardware *********, *** ** ******* ***** requires ******* **** **** * '******** update', ** ******** ********* *** ******* to **** ** * ******** ******.

OSDP **** ** ****-******** ******

***** ******* ****** ** *** ******* OSDP ***, *** ******** ** ****************** used **** ********** **** ********** *** high-security ********** *********.

** ********** ******* *** *** ****, many ** *******'* ******** ********* **** not ** **** ** ******** ** use *** *******'* ****** ******.

Wiegand ******* ****

*******'* *******-**** ******* ******** ** *********** to ***** *** **** **** *********** using ********** *** *********** ******* *******.

**** *******, *** **** ******* *** reader *** ********** ** *** ********* and '***-**-***-******' ************ ******* *** **** to *******.

** ******* ~$** ******,*** ******, ************ ***** ***** ** *******, can ** **** **** *** ******/********* side ** *** ****, *** ** undetectable ** *** ****** *** ****** managers.

*** *********** ******* **** *** **** be **** ** ****** ********* ****** of ***** ***** ** ** ****** stolen ********** **** ***** **** ******, bypassing ******* ********.

*** ***** ***** ***** *** ***** skimmers *** ********* *********:

******* ******** *** **** *** *********** to ***, **** **** **************** ~$** - $** ******.

Verkada's **** ******* ** ******* ****** *******

****$** ******* ******* ****** ** ******* 2020, *** ******* *** ***** ********* to ******* **** ******* ** *** access ****.

***** *** '***-***' ********** ****** ** not * *******-******* *******, *** ******* has ******* ******* *********** *** ******* development ** *** *******, *** ** OSDP ******* ********* * **** ** market ***********, *** * ******* ** constrained *********.

Fundamentally, ******* ** * ************* ****

******* ******** *** ******** ** ***** offerings, ******* ** '*******-******** ** **** **** **** ****** and ****'.

****** ** *** *******'* '************* **********' *****, ******* ***** ***** ********** to ********, ******** * ******** ** 'Removing ******** ***************'. *******, ******** **** support ****** ********* **** * **** documented *** ******** *************.

Verkada, *** ****

** ******* ** ** ***** ********* to ************* ** **** *****, *** company ****** *********** **** ******* *** add **** *******.

UPDATE, ******* ** *** **** *** ***** *******

***, ******* **** **** "****** ** roll *** ******* *** *** ***** OSDP ******* **** *** **** *-* months." **** **** ****** **** ******* on ***** **** ********, ****** *****:

1OSDP *******: We have built the hardware to support OSDP (we have a 4-wire input next to the 6-wire input for Wiegand, designed for OSDP readers). To be clear about what we support initially, we informed you and our partners that we do not support OSDP in the first version of the product. We have always planned to launch OSDP for all devices (third party devices and a potential Verkada reader) in the near future.

** *** **** **** ** **** - *** *** **** ****** ** the ******** ***** ** **** *** developers ** ***. ** **** ***** in **** ******* **** *** *******. In *** ******* ********** ** ****, you'll ****** * *-**** ***** ***** beside *** *-**** ***** *** *******. That ** ******** *** **** *******. We *** ********* ** ***** ****** protocols, ** *** **** ********* *** a *****-***** ******** ****** **** ******** access ******* *** ***** *** ****-**** verification ** ****.

*'* **** ***'** ***** **** ******** of *** ************ - **** ****** ones, ***** **** ******. *** **** majority ** ********* **** ******** ******* infrastructure, *** ********** ***** **** **** Wiegand ************** ** ****. ******* ** this, ** **** **** * ********* decision ** ******* **** ******* *** OSDP *********. **** ** **-******* ** purchasing ***-*** ******* ** ***** ****** not ** *** ****** - *** we ***'* ***** **** ****** ******* folks **** ********** **** ********** ********! For **** ** *** *********, ** are **** ** **** ***** ******** access ************** **** ****** *** ****** resistant. *** ******* ******* ************ **** the ****** *** *****, ******* *** person *** ****** ******** ************ ** can ****** ******** ***** ***** *** tampering ****** *** ***** ** **** a ****** ** ******** *** **** identified. ** **** **** *** ********** analysis ** ***** ****** ************* ****** as *** ******** ** *** ******* lines ****** * ******** ****** ****** would ** **** ******* *** ********* through ******* *******.