matthew.brough Posted May 17, 2013 Share Posted May 17, 2013 One of my many arguments for standardised protocols. Why reinvent the wheel? Especially when you make a round wheel square in the process..... Totally agree. I know webway use a few in their stuff rather than recreate something that already existed. Quote www.securitywarehouse.co.uk/catalog/ Link to comment Share on other sites More sharing options...
cybergibbons Posted May 17, 2013 Author Share Posted May 17, 2013 It is almost always without exception a bad idea to "roll your own" encryption: http://security.stackexchange.com/questions/18197/why-shouldnt-we-roll-our-own It's also a really bad idea to keep encryption schemes secret - the security should lie in the key, not the algorithm. If you keep it secret, the most clever person to look at it is going to be you. Make it public, and there is almost always someone more clever than you to take a look. I partly understand why Technistore is like this - it was implemented for embedded systems 25 years ago. Even with that in mind, it's got issues. Quote I have a blog, some of which is about alarm security and reverse engineering:http://cybergibbons.com/ Link to comment Share on other sites More sharing options...
james.wilson Posted May 17, 2013 Share Posted May 17, 2013 but again technistore is just a reset algo. There are easy ways to reset a system than to hack it. It was originally a separate device that wired into the panel. It was then later added to panels as a built in function. Most panels don't even have a seed, ie castle, aritech etc. If you get hold of the software you can reset any panel. Im not a fan of it and once we have all of our estate on udl we will be disabling it. Quote securitywarehouse Security Supplies from Security Warehouse Trade Members please contact us for your TSI vetted trade discount. Link to comment Share on other sites More sharing options...
cybergibbons Posted May 17, 2013 Author Share Posted May 17, 2013 How does the UDL software authenticate with the panels? Quote I have a blog, some of which is about alarm security and reverse engineering:http://cybergibbons.com/ Link to comment Share on other sites More sharing options...
james.wilson Posted May 17, 2013 Share Posted May 17, 2013 Well depends. If using modems then we use dial back and they call the office, either from a remote request or the customer pressing the relevant buttons. On the higher security stuff we use webways and the data is sent over an ssh tunnel. Quote securitywarehouse Security Supplies from Security Warehouse Trade Members please contact us for your TSI vetted trade discount. Link to comment Share on other sites More sharing options...
matthew.brough Posted May 17, 2013 Share Posted May 17, 2013 Just for clarity Aritech ATS does use seed codes, Aritech CD does not. Quote www.securitywarehouse.co.uk/catalog/ Link to comment Share on other sites More sharing options...
james.wilson Posted May 17, 2013 Share Posted May 17, 2013 ok 0-255? Quote securitywarehouse Security Supplies from Security Warehouse Trade Members please contact us for your TSI vetted trade discount. Link to comment Share on other sites More sharing options...
matthew.brough Posted May 17, 2013 Share Posted May 17, 2013 ok 0-255? 000001 - 999999 Quote www.securitywarehouse.co.uk/catalog/ Link to comment Share on other sites More sharing options...
james.wilson Posted May 17, 2013 Share Posted May 17, 2013 wow, useless point scored there for the ats Quote securitywarehouse Security Supplies from Security Warehouse Trade Members please contact us for your TSI vetted trade discount. Link to comment Share on other sites More sharing options...
matthew.brough Posted May 17, 2013 Share Posted May 17, 2013 wow, useless point scored there for the ats I thought it a bit strange having such a big number. No idea why it is so. Quote www.securitywarehouse.co.uk/catalog/ Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.