Slashdot Mirror

← Back to Stories (view on slashdot.org)

Smart Gun Inspires Smart Mouse Authentification System

Posted by samzenpus on from the give-it-a-squeeze dept.

dcblogs writes Defense contractor Raytheon has received a patent for a mouse that has a biometric pressure grip. It believes the pressure grip, as a form of authentication, will be particularly hard to defeat because it works from a neurological pattern versus a physical pattern, such as a facial scan. "It's not just how much pressure you exert on the mouse itself, but it's also the x-y coordinates of your position," said Glenn Kaufman, a cybersecurity engineer. The approach was inspired by similar pressure grips used in smart guns.

60 comments

  1. uhhh by Anonymous Coward · · Score: 0

    Authentification?

    1. Re:uhhh by DaveM753 · · Score: 5, Funny

      Authentification?

      It's a perfectly cromulentificated word.

    2. Re:uhhh by Anonymous Coward · · Score: 0

      In Czech, some misguided souls were already adding one "fi" to the original word. So now there will be two of them. Long live authentifification!

    3. Re:uhhh by Nemyst · · Score: 1

      The author's French and the spelling of that word in French is in fact "authentification". One of the many instances where French and English have confusingly similar words.

      Interestingly though, this fits with each language's tradition regarding Latin roots: English will use them almost as is (authenticatus -> authenticate), whereas French will generally integrate the word into the language's grammar and syntax (the -ifier suffix means "make something become", hence "authentifier" means to make something become "established as genuine", ie. authentic). NB: I am not a linguist or anything, I just enjoy reading up on etymology.

    4. Re:uhhh by gomiam · · Score: 1

      Autentificación is the Spanish term, too.

    5. Re:uhhh by Anonymous Coward · · Score: 0

      Neither the author or submitter used that word. It was samzenpus fucking things up as he always does.

    6. Re:uhhh by zAPPzAPP · · Score: 1

      German too.

      Seems like this is another one of those random english quirks as it's not even consistent. Why is there no 'Identication' for example?

    7. Re:uhhh by Provocateur · · Score: 1

      Everybody who watched The Town knows it's gotta be authenticious

      --
      WARNING: Smartphones have side effects--most of them undocumented.
    8. Re:uhhh by FatdogHaiku · · Score: 1

      Authentification?

      It's a perfectly cromulentificated word.

      Right! Embiggen your vocabulary already...

      --
      You have the right to remain sentient. If you give up the right to remain sentient, you will be elected to public office
    9. Re:uhhh by Barsteward · · Score: 1

      i think english uses about 800 french words amongst the myriad words it takes from other languages . english is the original mash-up of languages, (perhaps the original open-source langauge?)

      --
      "The hands that help are better far than lips that pray." - Robert Ingersoll (1833-1899)
  2. Authentication Failed. by Anonymous Coward · · Score: 0

    Hint: more foreplay

    1. Re:Authentication Failed. by davester666 · · Score: 2

      it's not foreplay when you do it to yourself.

      --
      Sleep your way to a whiter smile...date a dentist!
  3. I hold my mouse differently as the day goes on. by Maxo-Texas · · Score: 5, Insightful

    It hurts the palm of my hand to hold it the same way all the time.

    Even beside that, testing it just now, my hand moves all over the thing and is in a different position each time I let go and put it back from typing.

    I don't understand how this is practical. A facial or retinal scan seems more reliable, can use your existing generic camera so no need for a custom mouse.

    --
    She was like chocolate when she drank... semi-sweet at first and then increasingly bitter.
    1. Re:I hold my mouse differently as the day goes on. by ArcadeMan · · Score: 1

      Same for me, this would never work.

      --
      Get free satoshi (Bitcoin) and Dogecoins
    2. Re:I hold my mouse differently as the day goes on. by binarstu · · Score: 1
      Totally agree. Weren't there even some studies a while back suggesting that changing how you hold/use your mouse from time to time could help avoid repetitive stress injuries? I vaguely remember something like that, but don't quote me on it.

      It hurts the palm of my hand to hold it the same way all the time.

      Anyway, if this "improved" mouse ever becomes widespread, your face might be hurting, too, because you will probably be holding the palm of your hand there most of the time.

    3. Re:I hold my mouse differently as the day goes on. by mashume · · Score: 2

      Yep. Repetitive Stress Injuries... now software enforced. Great step forward. But seriously, couldn't this open them up to all sorts of worker's comp cases?

    4. Re:I hold my mouse differently as the day goes on. by behrooz0az · · Score: 1

      IKR, My left hand has been showing CTS for month now, they want my other hand too, those insensitive clods.

      --
      Moderating "-1, Disagree" is simple censorship. Have the guts to post your opinion. -- Spazmania (174582)
    5. Re:I hold my mouse differently as the day goes on. by PopeRatzo · · Score: 2

      Call me crazy, but I'm hoping for biometric authentication by genitals, because how funny would it be to see everyone have to pull down their pants to log in to their computers?

      Stop looking at me like that. Tell me you weren't thinking the same thing.

      --
      You are welcome on my lawn.
    6. Re:I hold my mouse differently as the day goes on. by ColdWetDog · · Score: 1

      because how funny would it be to see everyone have to pull down their pants to log in to their computers?

      I don't know where you work, but in my office this would be anything but 'funny'.

      --
      Faster! Faster! Faster would be better!
  4. So... to break that security implementation... by Opportunist · · Score: 3, Interesting

    ...I have to bring my own mouse when breaking into the NSA headquarters?

    But seriously. We are really talking about a device here that is eventually attached via USB, on an external plug to boot, to a computer. Erhmmmmm...

    I guess it's time to dust off the presentation on how anything connected by USB isn't really a good idea if used as some kind of security device.

    --
    We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    1. Re: So... to break that security implementation... by Anonymous Coward · · Score: 0

      If that means return of more PS/2 ports, that's great!

    2. Re:So... to break that security implementation... by war4peace · · Score: 1

      It could connect through infrared or bluetooth or firewire or whatever connectivity you'd prefer. Nothing prevents a mouse from communicating through any imaginable protocol. Most mice use USB bus to work because it's convenient and ubiquitous, nothing more.

      --
      ...gis sdrawkcab (usually not responding to ACs; don't bother posting as AC)
    3. Re:So... to break that security implementation... by itzly · · Score: 1

      It could use a public key authentication.

    4. Re:So... to break that security implementation... by Opportunist · · Score: 1

      While a nice idea in theory, I could see some problem with the practical implementation in a mouse. At the very least it would probably push the price level to a point where it becomes unfeasible to do it (rather than a different, at least equally secure but cheaper, solution).

      I like the idea from a technical point of view, but it lacks economic viability.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    5. Re:So... to break that security implementation... by itzly · · Score: 1

      I would expect that the price level is already pushed too far with the pressure sensors.

  5. Carpal Tunnel Syndrome by Anonymous Coward · · Score: 0

    "It's not just how much pressure you exert on the mouse itself, but it's also the x-y coordinates of your position,"

    Those are exactly the things I try to vary on purpose. ( Ever since I became dangerously close to develop Carpal Tunnel Syndrome)

    1. Re:Carpal Tunnel Syndrome by Teresita · · Score: 4, Insightful

      Mouse authentication implies a GUI, which implies the most serious application that would request the verification is Facebook.

  6. Re:Expect greenwow to touch himself at night... by Anonymous Coward · · Score: 0

    It was a smart gun that inspired the smart mouse, which in turn inspired greenwow to make yet another stupid comment.

  7. Whose grip by Livius · · Score: 4, Funny

    Okay, so it's a computer mouse that can *detect* a particular grip.

    I was really wondering how researchers were able to get laboratory mice to grip guns. And why.

    1. Re:Whose grip by jcfandino · · Score: 1

      It's Pinky and the Thumb!

    2. Re:Whose grip by PPH · · Score: 1

      get laboratory mice to grip guns.

      Hyper-intelligent pan-dimensional beings. So who is experimenting on whom?

      --
      Have gnu, will travel.
  8. Look it! by Anonymous Coward · · Score: 0

    That last thing I want is the bad guy breaking into my home, taking my mouse out of my hand and using it against me!

  9. Don't like that by Anonymous Coward · · Score: 0

    Authentication should pass the brain-in-a-bottle-test: when they remove my body and only leave my brain, and supply me with a tty to my computer, I should still be abled to log in. All other methods are too inconvenient for me. Its not that I cant login anymore when my hand has been ripped off by a lasershark, as then I boot using a iso, and set my other hand, the problem is when I just simply dont want tp use that hand, perhaps because i hold a drink.

    1. Re:Don't like that by beelsebob · · Score: 1

      So what you're saying is that "something you know" is the only valid authentication factor for you - something you have and something you are are both invalid? No two factor auth for you I guess.

    2. Re:Don't like that by Bengie · · Score: 1

      Something you know or unique patterns created by your brain.

  10. Trivially defeated by Anonymous Coward · · Score: 4, Insightful

    From the article: "The information needed for a retina scan, for instance, can be stolen from a doctor's office..."

    And the information about how some VIP handles his mouse, can be stolen form either his mouse or the computer that gets biometric data from that mouse.

    This is basically a password that cannot be changed. Just like fingerprints and retina scans. And all these things can be faked so easily. You don't bother with a false fingerprint or "a practiced mouse grip pattern". No, you replace the device (mouse or fingerprint reader) and fake the digital output from the authentication device. This is much easier.

    A keylogger device steals keypresses - in the hope of finding a password. A similar logging device can log communication from a fancy mouse, or finger/retina scanners. After that, the signals can be faked with no need to actually grip a mouse or present a finger/eye.

    And it won't matter if the mouse use some cryptographically safe protocol to communicate with the computer. When I plant my logging bug, I won't need to intercept mousecomputer communication. I intercept communication from the sensor system to the mouse electronics. That way, I get the "signature" before it is processed and possibly encrypted. Easy when you know electronics and programming - which enough people do. After that, the grip signature can be superimposed on my mouse movements when I abuse this tossers "safe computer". Possibly using remote control from a different location.

    A hassle to set up, but only the first time. Similiar to how DeCSS took some work to pull off - but now it is everywhere. And it will be done for the first time when the incentive is there - such as a bank protecting their transaction computers with this. And then the hack goes on the black hat market . . .

    1. Re:Trivially defeated by Bengie · · Score: 1

      You're talking about replay attacks. I wonder if there is a way to mitigate these or if it's a fundamental issue with all forms of bio-metrics and untrusted inputs.

    2. Re: Trivially defeated by Anonymous Coward · · Score: 0

      Or simply videotape people holding their mouses and you could probable imitate it anyways.

    3. Re:Trivially defeated by Rich0 · · Score: 1

      This is basically a password that cannot be changed. Just like fingerprints and retina scans. And all these things can be faked so easily. You don't bother with a false fingerprint or "a practiced mouse grip pattern". No, you replace the device (mouse or fingerprint reader) and fake the digital output from the authentication device. This is much easier.

      This is a fundamental weakness of biometrics, but that doesn't make biometrics useless. If the computer is in a supervised area swapping out a mouse isn't going to be trivial, especially if the correct mouse authenticates itself in some way.

      When I see stuff like this I think "government installation designed to thwart ninja sneaking in the air ducts and changing into a uniform."

  11. Even the summery says it sould not be patented by Anonymous Coward · · Score: 0, Insightful

    Defense contractor Raytheon has received a patent for a mouse that has a biometric pressure grip.

    ...

    The approach was inspired by similar pressure grips used in smart guns.

    In other words, they are directly copying prior art without adding any innovation and is therefore not patentable.

    1. Re:Even the summery says it sould not be patented by Barsteward · · Score: 1

      my thoughts as well. what is that patent office up to?

      --
      "The hands that help are better far than lips that pray." - Robert Ingersoll (1833-1899)
  12. You can have my mouse by jpellino · · Score: 1

    when you pry it from my cold... Wait, what? Oh.

    --
    "Win treats sysadmins better than users. Mac treats users better than sysadmins. Linux treats everyone like sysadmins."
  13. Cue the death threats... by Anonymous Coward · · Score: 0

    Oh, wait, that's only when gun nuts feel threatened...

  14. Given the raging success of "smart guns"... by tlambert · · Score: 1

    Given the raging success of "smart guns", this should be a slam dunk for the company to make billions!

    1. Re:Given the raging success of "smart guns"... by Anonymous Coward · · Score: 0

      Given the raging success of "smart guns", this should be a slam dunk for the company to make billions!

      More likely, "mouse nuts" will make death threats against the maker and anyone trying to sell it. That would be on par with the gun nut crowd and how they reacted to "smart guns".

    2. Re:Given the raging success of "smart guns"... by fche · · Score: 1

      If you don't understand why "smart guns" are a threat to normal gun owners in certain states, you are not educated on the subject.

    3. Re:Given the raging success of "smart guns"... by Anonymous Coward · · Score: 0

      And yet, what the GP said is exactly how some gun owners reacted to people developing or selling smart guns. And those are apparently the "normal", and presumably good, gun owners.

    4. Re:Given the raging success of "smart guns"... by Anonymous Coward · · Score: 0

      And yet, what the GP said is exactly how some gun owners reacted to people developing or selling smart guns. And those are apparently the "normal", and presumably good, gun owners.

      I think they tend to react that way because naive, shallow thinking on the topic makes "smart guns" seem like a good idea to most people, and therefore likely to achieve regulatory approval as "the only guns you are allowed to own are smart guns". The negatives to a legitimate gun owner, police officer, or military personnel are potentially substantial or even catastrophic, but the talking heads on the news generally don't talk in depth about anything.

      Usually the threats tend to be legal or protest actions, by the way, and not death threats. Most death threats these days come from Twitter or Reddit users and are against other Twitter or Reddit users.

    5. Re:Given the raging success of "smart guns"... by Anonymous Coward · · Score: 0

      And those are apparently the "normal", and presumably good, gun owners.

      That's not "apparent", it's just what you want to believe.

    6. Re:Given the raging success of "smart guns"... by Anonymous Coward · · Score: 0

      I am sure mil/leo would still get 'dumb' guns, they have to make sure their guns still work while civilian guns are disabled.

    7. Re:Given the raging success of "smart guns"... by Anonymous Coward · · Score: 0

      The death threats did not come from responsible gun owners, but from crazy extremists. Such extremists exist in every group, and give the majority a bad name.

      You are being unfair, and you are doing it deliberately, because you are an extremist in your own right.

    8. Re:Given the raging success of "smart guns"... by Anonymous Coward · · Score: 0

      If "smart guns" are so great then why aren't the police and military making them standard issue?

    9. Re:Given the raging success of "smart guns"... by Anonymous Coward · · Score: 0

      Normally it is due to budgeting, but who cares about smart guns. We need more office supplies!

  15. And now it needs to be required by law by Anonymous Coward · · Score: 0

    Computer owners/ potential hackers should have no complaints about this being required on all new computers and retrofitted to all older computers. You'll of course be required to wear a radio bracelet at all times to verify your identity, and it will feature ar kill switch which the government will have access to.

  16. Interesting but it needs to be fuzzy by Anonymous Coward · · Score: 0

    As others point out, people's grip changes all the time, just like a pen-grip and for that matter a signature.

    Like the pen-grip and signature, any recognition-system will need to be flexible enough so there aren't very many false negatives while being resistant to being fooled.

    My guess is that this will be best used in conjunction with other things, like "are you using the same computer you typically use," password/challenges, etc., but only if the combination results in at least as high of a true-positive and true-negative rate than any one method and better combined true-(positive or negative) results than any one method.

  17. Where is the by Anonymous Coward · · Score: 1

    Smart Doorknob?

  18. smart guns, not so smart? by Anonymous Coward · · Score: 0

    I'm normally totally against guns, but.. I have a question:

    If my smart gun veryfies the ower by the grip, what happens when I'm in a stressed situation and need to shoot someone?

    I bet that my grip will not be relaxed in the same was as targetpratics, or?

  19. Great way to show the fail rate by HungryMonkey · · Score: 1

    I can see how an exercise like this can benefit those against smart guns. Put that exact technology in a device we use everyday, such as our mouse, and track how often it fails or becomes temperamental. So, you had to readjust your grip after every 50 uses, and it flat out stopped working after 1000? Would you want that to be in the hands of an officer trying to save your life?