Wednesday, December 13, 2017
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Toshiba and Western Digital Reach Settlement, Agree to Strengthen Flash Memory Collaboration
Twitter Makes It Easier For Users to Create Threads
Tsinghua to Invest in China-based Lite-On Storage Plant
Facebook to Book Advertising Revenue Locally Following Pressure
New Radeon Software Adrenalin Edition Provides Amped-Up Connected Gaming
Nintendo Says Switch Sells 10 Million Worldwide
Toshiba Unveils Embedded NAND Flash Memory Products for Automotive Applications
FCC to Hand Over Internet Oversight to FTC
Active Discussions
Which of these DVD media are the best, most durable?
How to back up a PS2 DL game
Copy a protected DVD?
roxio issues with xp pro
Help make DVDInfoPro better with dvdinfomantis!!!
menu making
Optiarc AD-7260S review
cdrw trouble
 Home > News > Mobiles > Securit...
Last 7 Days News : SU MO TU WE TH FR SA All News

Friday, October 04, 2013
Security Firm Hacks iPhone Fingerprint Scanner


A German security company has figured out an easy way to crack the fingerprint scanner of the new iPhone 5S.

Berlin's Security Research Labs (SRL) published a video demonstrating the newly discovered flaw.

SRL, which has also disclosed a major security flaw in SIM card technology that affected mobile systems around the globe, said it has shared its research with Apple's security team.

According to SRL, using fingerprints as credentials for local user authentication has two shortcomings when compared to passwords. Once a fingerprint gets stolen, there is no way to change it. To offset this high compromise penalty, fingerprints would need to be very hard to steal. However, users leave copies of their fingerprints everywhere; including on the devices they protect. Fingerprints are not fit for secure local user authentication as long as spoofs ("fake fingers") can be produced from these pervasive copies.

"The iPhone 5s?s fingerprint sensor does not only appear to provide no additional protection, its use even undermines other security mechanisms," SRL said.

The iPhone 5s has moved slightly beyond the capabilities of earlier touch sensors: It provides a higher resolution image of the users' fingerpints and according SRL, it uses this higher resolution to match based on finer structures. However, SRL claims that even these finer structures can be spoofed, for example based on an equally high resolution smartphone camera image, showing that some defense strategies only improve at the pace of the corresponding attack technique.

"Fingerprint spoof prevention would better be based on intrinsic errors in the spoof-creation process or on fingerprint features not present in latent prints (and become much harder to steal)," SRL added.

The iPhone 5s, on the other hand, was defeated by techniques widely published years ago.

The researhcers also identified vulnerability that could potentially give criminals time to break into the phones, gain complete control of data, access email accounts and then potentially take over the user's bank accounts.

In this video SRL demonstrated how other flaws in iOS and iCloud are exposed that ? when combined with Touch ID?s vulnerability to fingerprint spoofing ? allow for online identity theft.



Previous
Next
LCD TV Panel Shipments Dip in Q3 For The First Time        All News        New Acer and Gateway All-in-Ones Arrive Soon
Cisco, Google, SAP Considering Bids For BlackBerry: report     Mobiles News      Samsung Posts Record Earnings, HTC Under Pressure After Loss

Get RSS feed Easy Print E-Mail this Message

Related News
Apple Confirms Acquisition of Shazam
Apple Said To Buy Shazam
These are Apple Store's Most Popular Apps, Music, Movies
Apple to Release LCD iPhone With a Metal Case: report
Apple Pay Cash Now Supports Person to Person Payments
European Court Ruls Xiaomi 'Mi Pad' Name Is Similar To Apple's 'iPad'
Apple to Pay Ireland 13 Billion Euros As Part of Uncollected Taxes
Qualcomm, Apple Exchange Fresh Complaints
Wearables Market Grows as Smart Wearables Rise and Basic Wearables Decline
Apple to Design its Own Power Chips: report
Apple Countersuits Qualcomm Over Patent Infringement
Apple Security Hole Allows Mac Logins Without a Password

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2017 - All rights reserved -
Privacy policy - Contact Us .