[Veghead] recently went to a surplus warehouse filled with VHS editing studios, IBM keyboards, electronic paraphernalia from 40 years ago, and a lot of useless crap. His haul included a wooden keypad from an old alarm system that exuded 1980s futurism, and he figured it would be cool to hook this up to an alarm system from 2015. How did he do that? With software defined radio.
After pulling apart the alarm panel, [Veghead] found only a single-sided board with a 9V battery connector. There were no screw terminals for an alarm loop, meaning this entire system was wireless – an impressive achievement for the mid-80s hardware. A quick search of the FCC website showed this alarm panel was registered to two bands, 319MHz and 340MHz, well within the range of an RTL-SDR USB TV tuner dongle.
After capturing some of the raw data and playing it back in Audacity, [Veghead] found a simple OOK protocol that sends two identical binary patterns for each key. A simple program takes the raw bit patterns for each key press and codes them into a map for each of the twelve buttons.
Although the radio still works, [Veghead] found the waveforms captured by his RTL-SDR were an abomination to RF. All the components in this security system are more than 30 years old at this point, and surely some of the components must be out of spec by now. Still, [Veghead] was able to get the thing working again, a testament to the usefulness of a $20 USB TV tuner.
Thanks [Jose] for sending this one in
Does anyone know the name of that typeface (e.g. the all caps “CONTROL”).
https://www.myfonts.com/WhatTheFont/
Has helped me out a few times before, there are other similar websites too
Wonderful site, thank you!
Looks like “Microgramma”
https://en.wikipedia.org/wiki/Microgramma_%28typeface%29
> The Microgramma Bold Extended typeface was used extensively in the Star Trek universe, such as Franz Joseph’s The Star Trek Star Fleet Technical Manual.[2] The font, in both its original and various altered forms, was incorporated into numerous displays and on ship exteriors in six of the Star Trek motion pictures, as well as depictions of “earlier technology” display screens, particularly for the Enterprise “prequel” series, during the four later television series.
That’s the one. IF you have an 80-89s scifi movie font, it’s microgamma.
Thats actually the hook in my head that helped me, thinking about “2001: a space odyssey” and a great blog post about the fonts of it: http://typesetinthefuture.com/2001-a-space-odyssey/
Thank you so much.
Eurostile should pretty much match that.
Or look into an old Letraset catalog, most fonts were in there those days…
As the other two above replied, the typeface is called “Microgramma”.
Brilliant bit of reverse engineering. A fresh set of electrolytic caps might reduce the drift a bit, but in terms of ppm the drift actually doesn’t sound to bad to me, considering the age and nature of the circuitry.
I think I would have done it differently, probably by eliminating the old radio and popping in my own microcontroller based setup. Well, at least that’s what I would have tried to do…
You probably don’t want to have alarm control panel that sends unencrypted and non-rotating codes that can be captured with $20 SDR dongle.
No one who would break into a house would care the slightest how secure the alarm panel is. Smash and grab is the aim of the game
A $20 USB TV tuner? You have been robbed.
It should cost less then $8, with free shipping, remote and antenna included.
You assume the date of purchase aligns with your own.
His website says $17.
Last I checked it was under $10 from china and just under $20 from the US.
So in 1986 they thought it would be perfectly ok to just send out the alarm arm/disarm code over the air in “plaint text”.
Talk about replay attacks, it must have been very easy being a burglar in the 80s.
Most alarm panels were hardwired. I doubt any thief in the 80s would have been looking for 300 MHz transmissions to replay.
You guys do remember / realize how hard it was to, say, even get information on this sort of thing on the Internet, right? Would’ve probably taken a lot of library runs, connections, phone calls, and the such to even start being able to experiment with electronics… and it probably would cost as more than what you wanted to rob to get the equipment to even start measuring the radio signals coming out of this alarm panel in the first place…
*confusing wording, I meant there was no Internet in the 80s. Back then 99% of the people on HaD probably wouldn’t have had half a clue about where to even start reverse engineering this thing (or buy the parts that would let you make a circuit that would then play it back…)
The kind of equipment you would have needed to do this kind of analysis in 1986 would have cost tens of thousands of dollars and filled a small lab.
The interesting part would have been the receiver PCB which is where the actual security bus is..
Either way this was a cool piece of hardware. I’ve dealt with 70s and 80s home alarm systems and never seen one with wireless anything. Most are just battery-backup PCB(usually in a closet) hardwired to audibles and a keypad and most didn’t even have shielding.
Modern units are really only more secure because if anything drops they are connected to a call center with hardware crypto for WAN MITM protection, and there are those IR units on the LAN or PAN or intranet or whatever you want to call it..
Can you tell me where I can get an old ITI system like that. We are collecting old alarm systems for our historical museum here. I actually have the engineer who designed that working with us here now.
I really know where you could probablyfind a system, but your question is begging a smart answer.
try ebay?
dude im ashamed to say i sat here for a few minutes tryin to remember writing this post. i was half convinced i was loosing my damn mind.
I might have some old parts lying around, but not a complete system. Click my name to get my website and contact form.
I have a complete stock of this stuff in my warehouse.
The ugly signals are probably an original feature. Lots of stuff that was “good enough” was accepted in those days to keep component costs down.
I’m more interested in where the surplus warehouse he went to is located.
I know… Maybe I could find a Beta or a CED.
It’s in the first paragraph of TFA
Holy balls. Hahaha. This is the keypad from an old ass sx-v panel. I hate the mothers, and if I walk in to service one I instantly swap a new panel I because of the service nightmare these things were and are. It wasn’t a totally wireless system it was an overcomplicated and PITA to program Hardwired (yes it could use wireless points) system that would eat itself if you liked at it wrong. The keypad was just some wireless Bulls hit because they thought people wanted to be able to carry it around. Belive me there is a reason we went back to stationary keypads (people like consistency and habit). Wow. Just no. Don’t bring this crap back to life, it died when it should have. And we’re just trying to kill what’s left over.