The Insecure Verkada Access Control System

Verkada ****** ******** *******

*******'***** ************** ***** ***** *** party ******* *** ********* via *******:

******* ** *********** *** unidirectional, ********* ** *** 1970s. **** ****** ********* now ***** *********, *** (bidirectional) *********************** ** *** ***-*****.

**** ***** *****-***** ****** platforms ******* ****. *** example, ******, *****, *** Feenics ******* ****, ** does ******* *** *******.

Points ** *** **** ***** ** *************

******* ********* ** **** saying **** ***** ** limit ******* ** ******** Wiegand ***** ** ****** use:

*****, ** ******* ******* as **** ** *** most ****** ******** **'** seen ** *** *****.

**** ***** *** ******** rates ** '******' **** as *** ******, ******* to** **** ******:

** *****'* **** *********** adoption ** **** (**** in *****:*****://****.***/*******/****-**) *** *** ******** to ******* *** ***** OSDP *** * ******** update ** *** ****** based ** ******** ******.

****** **** ***** ******** additional ******** ******** *********, and ** ******* ***** requires ******* **** **** a '******** ******', ** strongly ********* *** ******* to **** ** * priority ******.

OSDP **** ** ****-******** ******

***** ******* ****** ** low ******* **** ***, the ******** ** ****************** used **** ********** **** government *** ****-******** ********** customers.

** ********** ******* *** not ****, **** ** Verkada's ******** ********* **** not ** **** ** consider ** *** *** company's ****** ******.

Wiegand ******* ****

*******'* *******-**** ******* ******** an *********** ** ***** and **** **** *********** using ********** *** *********** snooper *******.

**** *******, *** **** between *** ****** *** controller ** *** ********* and '***-**-***-******' ************ ******* are **** ** *******.

** ******* ~$** ******,*** ******, ************ ***** ***** 60 *******, *** ** done **** *** ******/********* side ** *** ****, and ** ************ ** the ****** *** ****** managers.

*** *********** ******* **** can **** ** **** to ****** ********* ****** of ***** ***** ** to ****** ****** ********** data ***** **** ******, bypassing ******* ********.

*** ***** ***** ***** how ***** ******** *** typically *********:

******* ******** *** **** and *********** ** ***, with **** **************** ~$** - $** online.

Verkada's **** ******* ** ******* ****** *******

****$** ******* ******* ****** in ******* ****, *** ******* *** ample ********* ** ******* OSDP ******* ** *** access ****.

***** *** '***-***' ********** design ** *** * private-labeled *******, *** ******* has ******* ******* *********** and ******* *********** ** the *******, *** ** OSDP ******* ********* * lack ** ****** ***********, not * ******* ** constrained *********.

Fundamentally, ******* ** * ************* ****

******* ******** *** ******** of ***** *********, ******* it '*******-******** ** **** **** data ****** *** ****'.

****** ** *** *******'* '************* **********' *****, ******* ***** their ********** ** ********, claiming * ******** ** 'Removing ******** ***************'. *******, omitting **** ******* ****** customers **** * **** documented *** ******** *************.

Verkada, *** ****

** ******* ** ** truly ********* ** ************* as **** *****, *** company ****** *********** **** Wiegand *** *** **** support.

UPDATE, ******* ** *** **** *** ***** *******

***, ******* **** **** "expect ** **** *** support *** *** ***** OSDP ******* **** *** next *-* ******." **** also ****** **** ******* on ***** **** ********, copied *****:

1OSDP *******: We have built the hardware to support OSDP (we have a 4-wire input next to the 6-wire input for Wiegand, designed for OSDP readers). To be clear about what we support initially, we informed you and our partners that we do not support OSDP in the first version of the product. We have always planned to launch OSDP for all devices (third party devices and a potential Verkada reader) in the near future.

** *** **** **** of **** - *** the **** ****** ** the ******** ***** ** easy *** ********** ** use. ** **** ***** in **** ******* **** our *******. ** *** diagram ********** ** ****, you'll ****** * *-**** input ***** ****** *** 6-wire ***** *** *******. That ** ******** *** OSDP *******. ** *** advocates ** ***** ****** protocols, ** *** **** advocates *** * *****-***** security ****** **** ******** access ******* *** ***** for ****-**** ************ ** well.

*'* **** ***'** ***** that ******** ** *** technologies - **** ****** ones, ***** **** ******. The **** ******** ** customers **** ******** ******* infrastructure, *** ********** ***** lead **** ******* ************** as ****. ******* ** this, ** **** **** a ********* ******** ** support **** ******* *** OSDP *********. **** ** re-cabling ** ********** ***-*** readers ** ***** ****** not ** *** ****** - *** ** ***'* think **** ****** ******* folks **** ********** **** integrated ********! *** **** of *** *********, ** are **** ** **** their ******** ****** ************** more ****** *** ****** resistant. *** ******* ******* surveillance **** *** ****** and *****, ******* *** person *** ****** ******** capabilities ** *** ****** security ***** ***** *** tampering ****** *** ***** or **** * ****** of ******** *** **** identified. ** **** **** the ********** ******** ** these ****** ************* ****** as *** ******** ** the ******* ***** ****** a ******** ****** ****** would ** **** ******* and ********* ******* ******* Command.