| Author | Post |
|---|
Tas
Member
|
Posted: Thursday Oct 2nd, 2008 03:16 pm |
|
I am controlling Comfort using an RS232 device which joins a wireless network. The uses are primarily home control and for easy arming of the system at nights. This all works fine but I am wondering how secure it is. If the wireless network were hacked it would be possible to access comfort via it's UCM. I am making the wireless network as secure as possible but I'd really like to make it physically impossible from the comfort end.
Is there a way of restricting what can be performed via a UCM. For example could I prevent a a security off mode change?
Many Thanks,
Tas
|
slychiu
Administrator
| Joined: | Saturday Apr 29th, 2006 |
| Location: | Singapore |
| Posts: | 1029 |
| Status: |
Offline
|
|
Posted: Thursday Oct 2nd, 2008 10:32 pm |
|
The main protection against unauthorised access is the login which is required for the UCM
If there are 5 attempts in succession a Sign in Tamper alarm is generated
|
Tas
Member
|
Posted: Thursday Oct 2nd, 2008 11:47 pm |
|
I can see that this is a good way of protecting against someone who doesn't know the code. The possible attack I am trying to secure against is someone sniffing the network which would give them a valid user code. The problem I have is that via a UCM it seems possible to disarm the system even if that user has no disarm rights in the security configuration feels wrong.
What I'd like to do is restrict the user used bythe remote control so that it cannot disarm the system.
Thanks,
Tas
|
mikegriff
Member
| Joined: | Saturday Aug 19th, 2006 |
| Location: | United Kingdom |
| Posts: | 7 |
| Status: |
Offline
|
|
Posted: Friday Oct 3rd, 2008 12:00 am |
|
Hi Tas
Surely you are tryiing to do 2 things here
Connect via RS232 all the time internally for control
And provide outside access via the same route
This will aways cause the conflict you have
Surely youre outside access needs to log in to Your local control system
or buy another UCM and use that for your external login
I might be wrong though
Mike
|
Tas
Member
|
Posted: Friday Oct 3rd, 2008 09:29 am |
|
Hi Mike,
Thanks for your response but that is not what I am trying to do. I do have other USMs and GSM modeuls but these are secure and I am happy with them.
The problem relates to a single interface between a home control panel and a UCM which is dedicated to this purpose. The interface between these two is wireless and hackable so someone could learn the user code being used and use it to control comfort.
I want a way of restricting what this user code can do. It seems odd to me that a user which doesn't have disarm rights through other means can disarm the system through the UCM.
Last edited on Friday Oct 3rd, 2008 09:31 am by Tas
|
slychiu
Administrator
| Joined: | Saturday Apr 29th, 2006 |
| Location: | Singapore |
| Posts: | 1029 |
| Status: |
Offline
|
|
Posted: Monday Oct 6th, 2008 04:36 am |
|
If the user is not allowed to disarm the system via the user authorisation, then he will not be able to use his log in code to disarm the system. A user code which is not authorised to do something will also not be authorised however he/she accesses the system, bu UCM or keypad or telephone
|
Current time is 02:44 pm | |
|