Comment by ryandrake

> At some point, isn't there some responsibility that rests with manufacturers for choosing to continue to support known-insecure standards?

There should be. Also there should be liability for access control system customers for choosing low cost, insecure solutions. But just like in the InfoSec world, there are simply no consequences to companies that cheap out and fail at security. These companies just issue a press release saying “we take security very seriously” and continue on with their business.