Access control token security has seen significant advancements in recent years, largely due to technological innovations and the ongoing need to stay ahead of security threats. One of the notable challenges in this field is RFID token cloning. In this blog, we will look at the risks associated with token cloning, the types of technology most vulnerable to cloning and provide you with strategies to mitigate cloning risks.
What is RFID Cloning?
RFID cloning involves replicating the data stored on an RFID token onto another token, therefore creating an identical copy with the same identification details. This is done by intercepting the communication between an RFID token and a reader, capturing the transmitted data and then programming this data onto a blank RFID token. Similarly, a specialised device can be used to read the token information and write it onto a blank token.
How Does Cloning Happen?
Depending on the device being used, cloning uses two methods: proximity reading and eavesdropping.
Proximity Reading: Using either a custom-built RFID reader or an RFID-enabled device like an Android smartphone equipped with the appropriate software, the attacker ensures they are close to the target RFID token. This usually takes place in crowded places or lifts, where being close to a target does not raise suspicion.
Eavesdropping: This involves positioning a reader close to the RFID token. When the token communicates with an authentic RFID reader, it transmits its data wirelessly. The attacker’s reader intercepts these transmissions and captures the data.
In both situations, the data is then transferred onto a blank RFID chip or taken, creating a clone.
How Can You Prevent Token Cloning?
One of the key advantages of an electronic access control system is that your system administrator can modify access permissions for any token that may have been compromised. If there is any suspicion that a token has been cloned, the administrator can revoke its access privileges.
If your building has a particularly high turnover of users – such as a residential building – adding extra layers of security to the access control system can help mitigate the risk of cloned tokens.
Strategies to Prevent Cloning
There are several ways in which you can prevent cloning taking place entirely or limit the risk of cloned tokens being actively used to gain access to your buildings. These are broken down into behavioural measures and hardware and software solutions.
Behavioural Measures
- Remind users to always report lost or stolen cards as soon as possible
- Recommend users store cards in RFID-protected casings or wallets
- Make it a policy that sharing or lending of cards is prohibited
- Encourage users to report any suspicious activity on-site
Hardware and Software Solutions
- Biometrics: Add biometric verification, such as fingerprint scanning, alongside tokens
- Anti-passback: Restrict the same token from being used multiple times to gain access or restrict re-entry without first exiting. This is especially useful if a token is suspected of being cloned
- Auto-expiration: Configure tokens to auto-expire after a certain period. This is a good practice to implement for visitors, contractors or temporary staff as it prevents old tokens from being cloned and reused
- Dual Authentication: This requires both a token and a PIN for entry
- Mobile Credentials: Use smartphones instead of physical tokens as it can increase security through encrypted credentials that are much harder to clone
Protecting your access control system from RFID cloning is crucial in maintaining the security of your premises. By understanding common methods that attackers use to clone tokens and implementing a combination of behavioural measures and advanced technological solutions, you can significantly reduce the risk of unauthorised access. Regularly educating users on best practices and leveraging modern security features such as biometrics, dual authentication and mobile credentials will all strengthen your defences further. With security threats constantly evolving, staying vigilant and proactive is certainly the best strategy to safeguard your access control system.
Office Anyplace is an authorised Paxton partner. Paxton is a leader in access control systems and as a partner we can assist with advising you on the best system for your business and property, installation and maintenance.
