Slashdot Mirror

← Back to Stories (view on slashdot.org)

Linux Biometrics Site Opens Doors

Posted by Zonk on from the scanning dept.

flickerfly writes "A new site to unite the individuals interested in Linux and Biometrics has opened its doors. LinuxBiometrics.com's purpose is to fill the biometrics void in the Open Source community. With the increased adoption of Linux in europe and the recent increase in biometrics interest by the EU, this appears to be a field ready to blossom into heavy adoption and will be in need of OSS support."

12 of 117 comments (clear)

  1. This site looks like spam.. by grazzy · · Score: 2, Insightful

    .. and besides, doesnt biometrics suck? It's all about onetime identifiers. You cant easily change your eye, breath or thumbprint if they happened to fall into the wrong hands.

    1. Re:This site looks like spam.. by damiangerous · · Score: 4, Insightful
      No, biometrics doesn't "suck". But it's also not the security panacea it's usually made out to be. Biometrics can be a valuable part of the security "arsenal". One good use for it is a verification where the main breach won't come from malicious access but rather laziness.

      For example, a friend of mine is a pharmacist. The pharmacy technicians do most of the putting of pills in bottles, but everything has to be reviewed and signed off on by a pharmacist before it's released. The pharmacist verifies the finished prescription, uses his thumbprint to indicate he approves it, and a label is printed. With a password system it's far too easy for anyone to print out the approval label, and that's what would happen. Not out of maliciousness, but simply out of convenience.

    2. Re:This site looks like spam.. by damiangerous · · Score: 2, Insightful
      Your biometric credentials couldn't be "compromised" for this purpose, that's the whole point as to why it's useful. It's a limited access, limited purpose system. It's only accessed from two physical terminals located in the pharmacy only during staffed hours and only does one thing, prints prescription approval labels. It exists to ensure that a given pharmacist actually does approve a given prescription rather than a tech who shoulder surfed a password or a lazy/too busy pharmacist who just gave the techs his password because he trusted them.

      As for being any good? Yes. It's ideal for this particular scenario and probably many other highly similar ones.

    3. Re:This site looks like spam.. by JimBobJoe · · Score: 3, Insightful

      The pharmacist verifies the finished prescription, uses his thumbprint to indicate he approves it, and a label is printed. With a password system it's far too easy for anyone to print out the approval label, and that's what would happen.

      Essentially...biometrics is useful when security isn't important. (I think that will be the biggest uses of biometrics for years to come...non-security applications...like at my local grocery store where employees use their thumbrpint to sign into a time-clock. It is only loosely a security application, it's more of an application of convenience.)

      In the end, there is no security and privacy tradeoff, the main tradeoff is between privacy and convenience, and security and convenience. Biometrics is very convenient, but it's not very private and it's arguably not secure.

    4. Re:This site looks like spam.. by suitepotato · · Score: 2, Insightful

      .. and besides, doesnt biometrics suck? It's all about onetime identifiers. You cant easily change your eye, breath or thumbprint if they happened to fall into the wrong hands.

      I'm not sure how your breath can fall into the wrong hands. I have trouble smelling my own breath by cupping my hands over my face. As to your eyes and thumbs, are you one of those people who has detachable parts? Like, when your S.O.(yes, some Slashdot readers have actual real life involvements with women) says "get your butt out of bed" you can hand it to her and say, "sure, take it, let me sleep."

      Joking aside, bioelectricity, thermal output, and a bunch of other things are easily checked for to prevent use of amputated body parts.

      Optimally, there would be stress identification methods and more than one password such that if someone tried the gun-to-your-head coercion method, you could silently tip off the system to call the authorities to the location. Be nice if every important system had personal 911 sort of passwords right now. "Send two units to the ATM at Stepford Avenue, we have a possible kidnap."

      Biometrics is wonderful stuff in my book to keep people out of stuff where they don't belong. I just don't want a national ID card where I have to keep a record of my dna on file and so forth. But biometrics to secure my stuff? Better than leaving it wide open.

      --
      If my grammar and spelling are off, I am [distracted/tired/careless] (take your pick)
    5. Re:This site looks like spam.. by halleluja · · Score: 2, Insightful

      No, biometrics doesn't "suck". (...) Not out of maliciousness, but simply out of convenience.

      That is the scary part. In a few decades I will have to open my car with my retina just because 90% of the people is too lazy to put their keys on a nail near the door...

      I'd prefer to have my keys stolen and my eyes comfortably in their sockets, thank you.

  2. Biometric locks leave me feeling uneasy. by Andy+Mitchell · · Score: 2, Insightful

    I think ever since seeing the classic sci-fi series http://www.bbc.co.uk/cult/classic/blakes7/Blake's 7 as a kid the idea of biometric locks has filled me with dread.

    There is a scene where the protagonists try to persuade the guard they have over powered to put his hand on the sensor to open the door so they can progress their escape. Naturally he is not helping.

    Then Gan says to him: Look, we only need the hand. If you want to stay attached to it, do as you're told.

    Strangely enough, instant compliance!

  3. Re:Confused by 0x461FAB0BD7D2 · · Score: 2, Insightful

    Linux + biometrics = optional

  4. Re:Try: by Proud+like+a+god · · Score: 2, Insightful

    Ok, OS biometric software = better than closed source, with reasons being obvious to your possibly paranoid self.

    "humans, being so error prone, can never come up with a fool proof system"
    Well there are these things called proofs, and they're used to prove things, such as how possible it is to break an encryption algorithm, or bypass some logical sequence of security.

    Why are people going to suddenly start dying or automated systems start taking "'pre-emptive' action" because there's the choice of OSS for biometric identification?

    One minute you're saying "And assuming ppl do get tech savvy, and put up monitors (the human kind) we come back to the same old question of who monitors the monitors??" and then next it's "Give me ppl any damn time.".
    Whether biometrics can be used alone or with human assistance for important identification is different from whether OS alternatives to the software are good, and seperate again from living in a society that has surrendered control to a corrupt government.

  5. Re:Hand-based biometrics and public health by kebes · · Score: 3, Insightful

    Unless you avoid ever touching a doorknob or hand-rail, I don't see what difference this makes. Common surfaces are everywhere. We all touch them all the time. Sometimes we catch something from a common surface. Adding a palm scanner to the mix doesn't increase the risk of transmission.

  6. two strikes.... by Anonymous Coward · · Score: 1, Insightful

    ..and you are out. These two and three strikes and you get life laws that a lot of states have now have upped the ultraviolence potential of muggers, house burglars, car jackers, etc. If they know if they get caught for their second or third offense and will receive life, they are now just as apt to conk you on the head after they milked the atm machine dry of your cash. Finger or no finger biometrics, that's the reality on the ground now. Look at how many quick store employees just get shot right off the bat for some junky's next few bucks for a fix now. You see, you don't know in advance that Mr. Badguy is just going to be content with the cash, you have even odds now that he will also want to dispose of the witness in some manner after he's done using you. You have yto be psychic to know if he's going to harm you later or not, which isn't a pleasant thing to be forced into. In other words, remaining passive about the whole crime is no longer a good option, you are almost forced to assume the crime will escalate, and not in your favor.

    Of course, there's option #5 a lot of us have now, it's called being armed and trained and ready to use it. Works a charm in a lot of situations. Not all, but quite a few. No sense in allowing yourself to be a professional victim in advance.

  7. Improper use of biometrics by glacote02 · · Score: 1, Insightful

    Biometrics are good at identification (= capability of differentiating between a set of individuals) but weak at authentification (= capability of certifying that an individual really is who he pretends to be). They are a good ide wherever you would use a "login". They are a bad idea wherever you would use a "password".