Slashdot is powered by your submissions, so send in your scoop

 


Forgot your password?
Close
typodupeerror
×
Biotech Security Technology

Reverse-Engineered Irises Fool Eye-Scanners 98

Posted by Soulskill from the now-you-eyes-are-slightly-safer dept.
Maximum Prophet writes "If you've ever had your eyes scanned, be sure to install new ones every 90 days. Wired reports on research being released at Black Hat: 'The replica images, they say, can trick commercial iris-recognition systems into believing they’re real images and could help someone thwart identification at border crossings or gain entry to secure facilities protected by biometric systems. The work goes a step beyond previous work on iris-recognition systems. Previously, researchers have been able to create wholly synthetic iris images that had all of the characteristics of real iris images — but weren’t connected to real people. The images were able to trick iris-recognition systems into thinking they were real irises, though they couldn’t be used to impersonate a real person. But this is the first time anyone has essentially reverse-engineered iris codes to create iris images that closely match the eye images of real subjects, creating the possibility of stealing someone’s identity through their iris.'"
This discussion has been archived. No new comments can be posted.

Reverse-Engineered Irises Fool Eye-Scanners More

Reverse-Engineered Irises Fool Eye-Scanners

Comments Filter:

  • Passwords can be changed when compromised... (Score:5, Insightful)

    by Kenja ( 541830 ) on Wednesday July 25, 2012 @02:40PM (#40767523)
    your iris can not. Well, not without some B grade horror movie level surgery. This is the fundamental issue with biometrics.

  • Re:Problem with biometrics (Score:4, Insightful)

    by leonardluen ( 211265 ) on Wednesday July 25, 2012 @02:44PM (#40767585)

    biometrics are fine, this just illustrates why you need 2 factor security.

  • Lock and the lock pick. (Score:5, Insightful)

    by steelfood ( 895457 ) on Wednesday July 25, 2012 @02:53PM (#40767717)

    New technology is nice and all, but for every lock ever created there will be a lock pick for it.

    The only thing is, the more expensive the lock, the more expensive the lock pick is supposed to be. That's the real measure of the effectiveness of a lock. I.e., an expensive lock that can be picked in an inexpensive manner is an ineffective lock.

  • Re:Require 2 Factor Verification (Score:5, Insightful)

    by Maximum Prophet ( 716608 ) on Wednesday July 25, 2012 @03:01PM (#40767833)
    3 factors.
    • Something you know -> i.e. Password
    • Something you are -> i.e. Fingerprint
    • Something you have -> i.e. RFID keyfob

    The major problem with *magic* solutions, is that leader types look at them and say "Wow, Iris Scanners, I could never fool one of those, so nobody could fool one." People have the same reaction to physical locks.
    This leads to security theater. Yes, it stops stupid criminals, and yes it can be a good thing when you stop stupid criminals, but when you want to stop people flying airplanes into buildings, or stock traders from racking up $2 billion in fraudulent losses, magic dohickys aren't the solution.

Slashdot Top Deals

Say "twenty-three-skiddoo" to logout.

Close