INTROL Logs
Electronic locks trade physical robustness for software flexibility — you gain audit logs, instant revocation, and remote control, but you also gain dependence on power and a network attack surface.
Common types of electronic locks:
PIN-code keypads
RFID / NFC (contactless cards...
Q What are the four categories of non-destructive overcoming (zerstörungsfreie Überwindung) of a lock?...
"Non-destructive" means opening the lock while leaving it functional afterward — no broken parts, no traces visible to the naked eye. There are four distinct techniques.
* Lock-attack taxonomy — destructive vs the four non-destructive categories. *
The four categories:
Catego...
Q What is a bump key (Schlagschlüssel), and why was it considered a major security wake-up call?
A bump key is a key blank cut to the maximum depth at every position ("999..." key). Insert it, pull it out one click, then strike it with a hammer while applying tension. The percussion bounces all driver pins above the shear line — same Newton's-cradle effect as a pick gun, but...
Q What is a tension wrench (Spannwerkzeug / Spanner), and why is it essential to lock picking?
The tension wrench is a small bent piece of steel inserted at the bottom of the keyway. It applies the rotational bias on the plug that makes pins bind and set — without it, no picking technique works at all. It is not a supporting accessory but the tool that makes picking possib...
Q How does tracert (or traceroute) actually discover the hops between you and a destination?
It abuses the TTL field in IP — sending packets with TTL=1, 2, 3, … and collecting the "Time Exceeded" errors that come back from each router along the path.
The TTL trick:
Every IP packet has a Time To Live (hop counter):
Each router decrements TTL by 1
If TTL hits 0, the route...
Q What is BOOTP, and how does it differ from DHCP?
BOOTP (Bootstrap Protocol) is DHCP's predecessor — it does static IP assignment from an admin-defined table. DHCP added dynamic leasing, more options, and lease renewal.
Historical context:
BOOTP (1985) — used to boot diskless workstations: get an IP and the URL of a boot image...
Q What's the purpose of the 32-byte Random Number in TLS Client Hello and Server Hello?
Each side contributes a 32-byte random — together they ensure the derived session keys are unique to this exact handshake, preventing replay attacks and key reuse.
The role:
session_keys = KDF(pre_master_secret, client_random + server_random + ...)
Even if the same client and se...
Q Map these ten protocols — ARP, IP, ICMP, TCP, UDP, DHCP, DNS, HTTP, HTTPS, and FTP — onto their OSI...
ARP (L2) → IP/ICMP (L3) → TCP/UDP (L4) → DHCP/DNS/HTTP/HTTPS/FTP (L7). Each layer abstracts the layer below.
* Encapsulation: data gains transport, network and link headers down the stack. *
* The seven-layer OSI model and how data traverses the stack. — Runtux, Public domain,...
Q What do the client_id, audience, and scope parameters specify in an OAuth authorization request?
client_id identifies which app is asking, audience names which API the token is for, and scope lists the specific permissions being requested.
These three parameters define who's asking, for access to what, and how much:
Parameter
Meaning
client_id
Public identifier of the...
Q What are the three parties in the WebAuthn model, and what does each do?
The User Agent (browser), the Relying Party (the website you log into), and the Authenticator (the device holding the keys, e.g. a TPM chip or YubiKey).
WebAuthn (a W3C standard published March 2019) coordinates three roles:
Party
What it is
Role
User Agent
the browser
Med...