Home page logo

basics logo Security Basics mailing list archives

Re: Biometric question
From: Johan De Meersman <johan () ops skynet be>
Date: Thu, 07 Nov 2002 23:12:29 +0100

ktyler () nautilus-ins com wrote:
Well it depends, how desperate somebody wants to get into the computer
room, e.g would they be willing to cut off your hand or pull out your
I would think that finger prints would be the best. It is considerably
cheaper then a retinal scanning equipment.

there currently isn't a single biometrics system that's safer than a common DSA dual key with a decent passphrase, really.

There's two types of fingerprinters: thermal and optical. Both are easily deceived, with the use of gummi bears, wax, or even chalk and transparent tape.

Most retinal scanners can be fooled with a picture of the eye, and those that are a bit more expensive and scan for depth, too, are often fooled by cutting a hole where the pupil is, and keeping the picture in front of you eye

voice can be fooled by decent recordings, and if you're willing to put in some work you can actually use advanced speech synthesis.

And another, perhaps even bigger problem: once someone managed to get in, what are youg gonna do about it ? Get new eyeballs ?

Biometrics are fun to play with, but don't think they're a cure-all. If properly implemented, that is, in conjunction with other types of security, they can be very effective. If poorly implemented, you might prefer to just leave an active root console on the street - it'll cost less.

google for 'fool biometrics' or similar terms - you'll find a lot of interesting articles.

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]