Germans fool iPhone 5S Touch ID with fake finger

Started by Simon, Sep 23, 2013, 22:44:20

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

Simon

Sep 23, 2013, 22:44:20
A German collective has managed to trick the fingerprint reader built into the iPhone 5s with a fake finger.

The Chaos Computer Club (CCC) pulled off the stunt by photographing the fingerprint of an iPhone 5S owner at a resolution of 2,400 dpi.

This was then inverted and then laser printed onto a transparency using a thick layer of toner. Latex milk was then painted over the print out, and peeled off to create a dummy fingerprint. This was then draped over the home button to fool the sensor.

The group described the iPhone's fingerprint reader as "unsuitable" for authentication and said it "should be avoided" after successfully fooling Apple's reader.

"We hope that this finally puts to rest the illusions people have about fingerprint biometrics," added a spokesperson. "It is plain stupid to use something that you canĀ“t change and that you leave everywhere every day as a security token."

However, it should be noted that not only would a would-be thief need to first identify the correct fingerprint of the user, but capture it successfully with a high-resolution photograph and then hope nothing went awry in the intricate printing/modelling process. Compared to the four-digit passcode, it remains the more secure option.

Apple hasn't commented on the hack, although the company's website boasts that "your fingerprint is one of the best passcodes in the world".

http://www.pcpro.co.uk/news/security/384337/germans-fool-iphone-5s-touch-id-with-fake-finger
Simon.
--
This post reflects my own views, opinions and experience, not those of IDNet.

Bill

#1
Sep 23, 2013, 22:52:59
Quote from: Simon on Sep 23, 2013, 22:44:20
This was then inverted and then laser printed onto a transparency using a thick layer of toner. Latex milk was then painted over the print out, and peeled off to create a dummy fingerprint.

Sounds complicated... I think I see an application for 3-D printers :evil:
Bill
BQMs-  IPv4  IPv6

Simon

#2
Sep 23, 2013, 23:00:00
 ;D
Simon.
--
This post reflects my own views, opinions and experience, not those of IDNet.

Gary

#3
Sep 24, 2013, 12:55:16
You can fool many fingerprint sensors, this is just silly though, to most people its safe enough for gods sake. People have to hack into everything, cant see people stealing fingers with phones somehow... :eyebrow:
Damned, if you do damned if you don't

mervl

#4
Sep 24, 2013, 14:09:31
 ;D Hope nobody uses those insecure 4 digit PINS with credit and debit cards, then! Perhaps Apple could make a mint with a finger scanner for the back pocket though?

nowster

#5
Sep 24, 2013, 14:41:23
Quote from: mervl on Sep 24, 2013, 14:09:31
;D Hope nobody uses those insecure 4 digit PINS with credit and debit cards, then!
You think they're secure, do you? My front door key has more combinations.
Print
Go Up Pages1
User actions