The Open Organisation Of Lockpickers (TOOOL) is planning a new annual gathering for lockpickers. October 9-12th they will hold the first ever LockCon in Sneek, Netherlands. The event was spawned from the Dutch Open lockpicking championships, but they’ve decided to expand beyond just competition into a full conference. This year the conference is limited to just 100 lockpickers, technicians, manufacturers, hackers, and law enforcement members. They’ll compete in picking competitions, safe manipulation, and key impressioning.

On a related note: Organizer [Barry Wels] just became the first non-German to win an SSDeV competition with his key impressioning skills. We covered key impressioning when we saw his talk about high security keys at The Last Hope. He says it’s only been about two years worth of study and 500 keys to become a master. He managed to open the lock in 5:13 filing two whole keys during that time.

[photo: Rija 2.0]

[Barry] took one of his blog readers comments to heart and started wondering just what happens when you bump a lock. As suggested, he made a cut away lock core and started experimenting. [Barry] doesn’t have a high speed camera, so he tried some alternatives like filling the chambers with grease to indicate pin movement. Master Lock put together a nice video demo of lock bumping (in order to sell their new bump stop gear).

[Barry] sent in his writeup and video about a serious vulnerability in the AXA bike lock. (One of the most popular locks in the Netherlands.) It turns out that quite a few of them can be opened with a blank key. [Barry] demo’s the hack, and has some comments about the lame efforts of the manufacturer. If you enjoy interesting reading, check out his blog covering lock picking and physical security.