Tagged: public utilities

Decoding Public Utility Meters with an RTL-SDR

Over on YouTube a talk about decoding water and electricity usage meters with an RTL-SDR has been uploaded from the 2015 Camp++ conference in Hungary. The presenter, Stef writes:

Budapest public utilities started to roll out some new metering devices for water and heating (at least in my block). The plumbers who should install these could not tell me about the privacy protections considered, as I was a bit worried about the things leaking information over radio-waves, so I built a radio and reversed the messages.

The talk shows how the presenter was able to reverse engineer the FSK wireless protocol of his heating meter with help from some patent information that he found on the web. Using a GNU Radio flow graph that he created he was able to extract information such as total energy consumption and temperature readings.

Being a security themed conference, the presenter also discusses some of the security risks associated with wireless meters such as whether or not the meter can be used to detect if someone is currently at home.

The code he wrote and used can be found at https://github.com/stef/smeter and https://github.com/jmichelp/gr-wmbus.

Camp++ 0x7df // stef: Dumbmeters in Public Utilities

An example water meter that could be monitored with an RTL-SDR dongle
An example water meter that could be monitored with an RTL-SDR dongle