Access Control Done Right the First Time
Tim Clevenger
DEF CON 33 · Day 1 · Main Stage
In this insightful DEF CON talk, Tim Clevenger, a Network Cyber Security Engineer with a unique background in physical access control system installation and maintenance, dissects the common pitfalls and critical vulnerabilities inherent in many commercially deployed access control solutions. Titled "Access Control Done Right the First Time," Clevenger's presentation serves as a practical guide for security professionals, facility managers, and anyone involved in the design, implementation, or upkeep of these essential physical security infrastructures. The core message is clear: the industry's pervasive "low bid, minimal viable product" approach often leads to systems that are unreliable, difficult to maintain, and fundamentally insecure, despite appearing to function on the surface.
AI review
Competent practitioner talk with real-world grounding in physical access control — Clevenger clearly knows the install side of this domain and the content is technically honest. Nothing here is novel to anyone who's done physical pen testing or attended previous DEF CON phys-sec tracks, but it's well-organized and the advice is sound.