Slashdot Mirror

← Back to Stories (view on slashdot.org)

Fake Fingerprints Can Imitate Real Ones In Biometric Systems, Research Shows (theguardian.com)

Posted by msmash on from the closer-look dept.

schwit1 shares a report: Researchers have used a neural network to generate artificial fingerprints that work as a "master key" for biometric identification systems and prove fake fingerprints can be created. According to a paper [PDF] presented at a security conference in Los Angeles, the artificially generated fingerprints, dubbed "DeepMasterPrints" by the researchers from New York University, were able to imitate more than one in five fingerprints in a biometric system that should only have an error rate of one in a thousand.

The researchers, led by NYU's Philip Bontrager, say that "the underlying method is likely to have broad applications in fingerprint security as well as fingerprint synthesis." As with much security research, demonstrating flaws in existing authentication systems is considered to be an important part of developing more secure replacements in the future. In order to work, the DeepMasterPrints take advantage of two properties of fingerprint-based authentication systems. The first is that, for ergonomic reasons, most fingerprint readers do not read the entire finger at once, instead imaging whichever part of the finger touches the scanner.

5 of 64 comments (clear)

  1. Prior Art by Anonymous Coward · · Score: 2, Insightful

    James Bond
    Myth Busters...

    It's been done. Finger print scanners are NOT secure.

    Having said that, I too have developed a "don't give a fuck attitude" towards the insecurity. It's just too convenient to touch my PC or phone and have it unlock.

    I use it. I know it's wrong, but...

    1. Re:Prior Art by phantomfive · · Score: 2

      The only reason I even lock my phone is because I don't want to pocket-dial anyone (or press other random buttons in my pocket). I don't lock my wallet, either.

      --
      "First they came for the slanderers and i said nothing."
  2. Research shows? by glenebob · · Score: 2, Insightful

    What the hell was wrong with "common sense shows"? It's a hell of a lot cheaper.

  3. Re:Didn't mythbusters already do this? by sjames · · Score: 2

    Also interesting, the most expensive one tested was the easiest to fool.

  4. Re:Fingerprints are lousy ID by jargonburn · · Score: 2

    No, they're just fine for identification...just not for authentication.