Fingerprint security defeated by gummy bear

**Archer** · May 26th, 2002, 08:55 AM

OK weve recnetly had the latest CD antipiracy defeated by felt tip pens and sticky tape now to cap it all we`ve got Gummi bears defeating fingerprint sensors :

<a href="http://www.theregister.co.uk/content/55/25300.html" target="_blank">http://www.theregister.co.uk/content/55/25300.html</a>
Qoute:
"Tsutomu Matsumoto used gelatine and a plastic mould to create a fake finger, which he found fooled fingerprint detectors four times out of five.

He took latent fingerprints from a glass, which he enhanced with a cyanoacrylate adhesive (super-glue fumes) and photographed with a digital camera. Using PhotoShop, he improved the contrast of the image and printed the fingerprint onto a transparency sheet.

Matsumoto took a photo-sensitive printed-circuit board (which can be found in many electronic hobby shops) and used the fingerprint transparency to etch the fingerprint into the copper.

From this he made a gelatine finger using the print on the PCB, using the same process as before. Again this fooled fingerprint detectors about 80 per cent of the time. "

**Stalemate** · May 26th, 2002, 11:43 AM

If human ingenuity can create it, human ingenuity can defeat it - as long as you have enough time, money and knowledge.

I'm just surprised fingerprinting could be so "easily" foiled! <img border="0" title="" alt="[Eek!]" src="eek.gif" />

**edball** · May 28th, 2002, 08:38 AM

It didn't seem real easy, still...it's a vicious cycle.

**MacGyver** · May 28th, 2002, 10:34 AM

Retinal scans won't be defeated so easily. You can't make an exact copy of your eye!

**Commander Klarg** · May 28th, 2002, 10:38 AM

<blockquote>quote:<hr />Originally posted by MacGyver:
Retinal scans won't be defeated so easily. You can't make an exact copy of your eye!<hr /></blockquote>Great, then they will pop your eye out to get past security.

**Fubarian** · May 28th, 2002, 01:33 PM

<blockquote>quote:<hr />Originally posted by MacGyver:
Retinal scans won't be defeated so easily. You can't make an exact copy of your eye!<hr /></blockquote>just remember that all security measures can be broken....ALL of them

**Archer** · May 28th, 2002, 01:45 PM

<blockquote>quote:<hr />Great, then they will pop your eye out to get past security <hr /></blockquote>Well no actually,as they also have inbuilt security features to look for live retina to stop you gouging someones eye out and thus gain access.
The one thought that does comes to mind is that if you cant access the machine then you simply hack the refference date it uses.

**Stalemate** · June 14th, 2002, 08:19 AM

<a href="http://www.heise.de/ct/english/02/11/114/" target="_blank">Biometric Access Protection Devices and their Programs Put to the Test</a> gives an excellent rundown of these biometric devices and their shortfalls.

Long read, but very informative. <img border="0" title="" alt="[Wink]" src="wink.gif" />

**Archer** · June 14th, 2002, 12:20 PM

Nice link,just shows how far a little bit of tinkering with basic ingredients can get you.
Even the USB snooping link seems to show what a security hazard it is on all new systems.
I did read of a similar device that fitted between the keyboard and its port enabling the logging of all input.
Seems no win situation for an admin against a detrmined intruder.

**Stalemate** · June 14th, 2002, 01:35 PM

<blockquote>quote:<hr />Originally posted by Archer:
...Seems no win situation for an admin against a detrmined intruder.<hr /></blockquote>We may not be able to keep them out, but for them not to leave traces identifying their presence is almost impossible.

...unless you're dealing with a l337 scumbag. <img border="0" title="" alt="[Wink]" src="wink.gif" />

Thread: Fingerprint security defeated by gummy bear

Thread Tools

Display

Fingerprint security defeated by gummy bear

Bookmarks

Bookmarks

Posting Permissions