In 2003, he independently rediscovered a serious vulnerability in master key security in physical locks that was an open secret among locksmiths; his decision to disclose it publicly provoked controversy.
Thus, the key management protocol needs to exchange only one master key, all the necessary session keys are generated by applying the key derivation function.