Slashdot Mirror

← Back to Stories (view on slashdot.org)

Smart Gun Inspires Smart Mouse Authentification System

Posted by samzenpus on from the give-it-a-squeeze dept.

dcblogs writes Defense contractor Raytheon has received a patent for a mouse that has a biometric pressure grip. It believes the pressure grip, as a form of authentication, will be particularly hard to defeat because it works from a neurological pattern versus a physical pattern, such as a facial scan. "It's not just how much pressure you exert on the mouse itself, but it's also the x-y coordinates of your position," said Glenn Kaufman, a cybersecurity engineer. The approach was inspired by similar pressure grips used in smart guns.

35 of 60 comments (clear)

  1. Re:uhhh by DaveM753 · · Score: 5, Funny

    Authentification?

    It's a perfectly cromulentificated word.

  2. I hold my mouse differently as the day goes on. by Maxo-Texas · · Score: 5, Insightful

    It hurts the palm of my hand to hold it the same way all the time.

    Even beside that, testing it just now, my hand moves all over the thing and is in a different position each time I let go and put it back from typing.

    I don't understand how this is practical. A facial or retinal scan seems more reliable, can use your existing generic camera so no need for a custom mouse.

    --
    She was like chocolate when she drank... semi-sweet at first and then increasingly bitter.
    1. Re:I hold my mouse differently as the day goes on. by ArcadeMan · · Score: 1

      Same for me, this would never work.

      --
      Get free satoshi (Bitcoin) and Dogecoins
    2. Re:I hold my mouse differently as the day goes on. by binarstu · · Score: 1
      Totally agree. Weren't there even some studies a while back suggesting that changing how you hold/use your mouse from time to time could help avoid repetitive stress injuries? I vaguely remember something like that, but don't quote me on it.

      It hurts the palm of my hand to hold it the same way all the time.

      Anyway, if this "improved" mouse ever becomes widespread, your face might be hurting, too, because you will probably be holding the palm of your hand there most of the time.

    3. Re:I hold my mouse differently as the day goes on. by mashume · · Score: 2

      Yep. Repetitive Stress Injuries... now software enforced. Great step forward. But seriously, couldn't this open them up to all sorts of worker's comp cases?

    4. Re:I hold my mouse differently as the day goes on. by behrooz0az · · Score: 1

      IKR, My left hand has been showing CTS for month now, they want my other hand too, those insensitive clods.

      --
      Moderating "-1, Disagree" is simple censorship. Have the guts to post your opinion. -- Spazmania (174582)
    5. Re:I hold my mouse differently as the day goes on. by PopeRatzo · · Score: 2

      Call me crazy, but I'm hoping for biometric authentication by genitals, because how funny would it be to see everyone have to pull down their pants to log in to their computers?

      Stop looking at me like that. Tell me you weren't thinking the same thing.

      --
      You are welcome on my lawn.
    6. Re:I hold my mouse differently as the day goes on. by ColdWetDog · · Score: 1

      because how funny would it be to see everyone have to pull down their pants to log in to their computers?

      I don't know where you work, but in my office this would be anything but 'funny'.

      --
      Faster! Faster! Faster would be better!
  3. So... to break that security implementation... by Opportunist · · Score: 3, Interesting

    ...I have to bring my own mouse when breaking into the NSA headquarters?

    But seriously. We are really talking about a device here that is eventually attached via USB, on an external plug to boot, to a computer. Erhmmmmm...

    I guess it's time to dust off the presentation on how anything connected by USB isn't really a good idea if used as some kind of security device.

    --
    We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    1. Re:So... to break that security implementation... by war4peace · · Score: 1

      It could connect through infrared or bluetooth or firewire or whatever connectivity you'd prefer. Nothing prevents a mouse from communicating through any imaginable protocol. Most mice use USB bus to work because it's convenient and ubiquitous, nothing more.

      --
      ...gis sdrawkcab (usually not responding to ACs; don't bother posting as AC)
    2. Re:So... to break that security implementation... by itzly · · Score: 1

      It could use a public key authentication.

    3. Re:So... to break that security implementation... by Opportunist · · Score: 1

      While a nice idea in theory, I could see some problem with the practical implementation in a mouse. At the very least it would probably push the price level to a point where it becomes unfeasible to do it (rather than a different, at least equally secure but cheaper, solution).

      I like the idea from a technical point of view, but it lacks economic viability.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    4. Re:So... to break that security implementation... by itzly · · Score: 1

      I would expect that the price level is already pushed too far with the pressure sensors.

  4. Whose grip by Livius · · Score: 4, Funny

    Okay, so it's a computer mouse that can *detect* a particular grip.

    I was really wondering how researchers were able to get laboratory mice to grip guns. And why.

    1. Re:Whose grip by jcfandino · · Score: 1

      It's Pinky and the Thumb!

    2. Re:Whose grip by PPH · · Score: 1

      get laboratory mice to grip guns.

      Hyper-intelligent pan-dimensional beings. So who is experimenting on whom?

      --
      Have gnu, will travel.
  5. Re:Authentication Failed. by davester666 · · Score: 2

    it's not foreplay when you do it to yourself.

    --
    Sleep your way to a whiter smile...date a dentist!
  6. Re:Carpal Tunnel Syndrome by Teresita · · Score: 4, Insightful

    Mouse authentication implies a GUI, which implies the most serious application that would request the verification is Facebook.

  7. Trivially defeated by Anonymous Coward · · Score: 4, Insightful

    From the article: "The information needed for a retina scan, for instance, can be stolen from a doctor's office..."

    And the information about how some VIP handles his mouse, can be stolen form either his mouse or the computer that gets biometric data from that mouse.

    This is basically a password that cannot be changed. Just like fingerprints and retina scans. And all these things can be faked so easily. You don't bother with a false fingerprint or "a practiced mouse grip pattern". No, you replace the device (mouse or fingerprint reader) and fake the digital output from the authentication device. This is much easier.

    A keylogger device steals keypresses - in the hope of finding a password. A similar logging device can log communication from a fancy mouse, or finger/retina scanners. After that, the signals can be faked with no need to actually grip a mouse or present a finger/eye.

    And it won't matter if the mouse use some cryptographically safe protocol to communicate with the computer. When I plant my logging bug, I won't need to intercept mousecomputer communication. I intercept communication from the sensor system to the mouse electronics. That way, I get the "signature" before it is processed and possibly encrypted. Easy when you know electronics and programming - which enough people do. After that, the grip signature can be superimposed on my mouse movements when I abuse this tossers "safe computer". Possibly using remote control from a different location.

    A hassle to set up, but only the first time. Similiar to how DeCSS took some work to pull off - but now it is everywhere. And it will be done for the first time when the incentive is there - such as a bank protecting their transaction computers with this. And then the hack goes on the black hat market . . .

    1. Re:Trivially defeated by Bengie · · Score: 1

      You're talking about replay attacks. I wonder if there is a way to mitigate these or if it's a fundamental issue with all forms of bio-metrics and untrusted inputs.

    2. Re:Trivially defeated by Rich0 · · Score: 1

      This is basically a password that cannot be changed. Just like fingerprints and retina scans. And all these things can be faked so easily. You don't bother with a false fingerprint or "a practiced mouse grip pattern". No, you replace the device (mouse or fingerprint reader) and fake the digital output from the authentication device. This is much easier.

      This is a fundamental weakness of biometrics, but that doesn't make biometrics useless. If the computer is in a supervised area swapping out a mouse isn't going to be trivial, especially if the correct mouse authenticates itself in some way.

      When I see stuff like this I think "government installation designed to thwart ninja sneaking in the air ducts and changing into a uniform."

  8. Re:Don't like that by beelsebob · · Score: 1

    So what you're saying is that "something you know" is the only valid authentication factor for you - something you have and something you are are both invalid? No two factor auth for you I guess.

  9. Re:Don't like that by Bengie · · Score: 1

    Something you know or unique patterns created by your brain.

  10. Re:uhhh by Nemyst · · Score: 1

    The author's French and the spelling of that word in French is in fact "authentification". One of the many instances where French and English have confusingly similar words.

    Interestingly though, this fits with each language's tradition regarding Latin roots: English will use them almost as is (authenticatus -> authenticate), whereas French will generally integrate the word into the language's grammar and syntax (the -ifier suffix means "make something become", hence "authentifier" means to make something become "established as genuine", ie. authentic). NB: I am not a linguist or anything, I just enjoy reading up on etymology.

  11. You can have my mouse by jpellino · · Score: 1

    when you pry it from my cold... Wait, what? Oh.

    --
    "Win treats sysadmins better than users. Mac treats users better than sysadmins. Linux treats everyone like sysadmins."
  12. Given the raging success of "smart guns"... by tlambert · · Score: 1

    Given the raging success of "smart guns", this should be a slam dunk for the company to make billions!

    1. Re:Given the raging success of "smart guns"... by fche · · Score: 1

      If you don't understand why "smart guns" are a threat to normal gun owners in certain states, you are not educated on the subject.

  13. Re:uhhh by gomiam · · Score: 1

    Autentificación is the Spanish term, too.

  14. Re:uhhh by zAPPzAPP · · Score: 1

    German too.

    Seems like this is another one of those random english quirks as it's not even consistent. Why is there no 'Identication' for example?

  15. Re:uhhh by Provocateur · · Score: 1

    Everybody who watched The Town knows it's gotta be authenticious

    --
    WARNING: Smartphones have side effects--most of them undocumented.
  16. Re:uhhh by FatdogHaiku · · Score: 1

    Authentification?

    It's a perfectly cromulentificated word.

    Right! Embiggen your vocabulary already...

    --
    You have the right to remain sentient. If you give up the right to remain sentient, you will be elected to public office
  17. Where is the by Anonymous Coward · · Score: 1

    Smart Doorknob?

  18. Re:uhhh by Barsteward · · Score: 1

    i think english uses about 800 french words amongst the myriad words it takes from other languages . english is the original mash-up of languages, (perhaps the original open-source langauge?)

    --
    "The hands that help are better far than lips that pray." - Robert Ingersoll (1833-1899)
  19. Re:Even the summery says it sould not be patented by Barsteward · · Score: 1

    my thoughts as well. what is that patent office up to?

    --
    "The hands that help are better far than lips that pray." - Robert Ingersoll (1833-1899)
  20. Great way to show the fail rate by HungryMonkey · · Score: 1

    I can see how an exercise like this can benefit those against smart guns. Put that exact technology in a device we use everyday, such as our mouse, and track how often it fails or becomes temperamental. So, you had to readjust your grip after every 50 uses, and it flat out stopped working after 1000? Would you want that to be in the hands of an officer trying to save your life?