3D Printed Head Fools Android Face Recognition, iPhone X 'Impenetrable'

[Abazigal]

and I can break your smart phone code by looking over your shoulder while you press the numbers
a lock only keeps a honest person out.
any password, any code, any protection scheme can be hacked any anytime.

By that logic, should I not bother locking my house gates, since anyone with the right tools could eventually get past them?

Of course nothing is foolproof in this world. The idea is that you can at least make it hard enough for crooks that it serves as a viable deterrent.

 

[noraa]

They never showed the setup of Face ID in this vid:

I can easily recreate this. I first setup Face ID with my face. Then I try to unlock using the mask. Of course iOS will deny access, but once you put in the PIN code, FaceID will learn that the mask is acceptable and will allow access on next try with the mask.

This is nothing more but to raise the profile of the company.

Yet here's an example of the iPhone X being unlocked with a mask: https://www.macrumors.com/2017/11/27/face-id-iphone-x-fooled-by-mask/ So then Apple's a big fake too then by your logic huh? "Does things the right way"

According to farewelwiliams the company that did this cheated in a sense - so yes, Apple does things the right way.

 

[Ramchi]

That's why I always use Fingerprint reader instead of face recognition in Android (I have that option) - problem solved!

 

[TrulsZK]

The attention awareness alone may be enough to explain the inability for a static 3d printed head to unlock the iPhone X.

Easy to test

Will the 3D printed face work with Require Attention for Face ID turned off?

 

[MadDawg2020]

Impenetrable? Not really.

https://www.cso.com.au/article/629951/researchers-fool-iphone-x-face-id-150-3d-printed-face/

Yes and that was from more than a year ago. Apple has obviously improved their technology.

 

[falainber]

I think it’s telling for my banking app allows me to unlock the app using Face ID for iOS devices but not with face authentication features on android devices. Apple put in the hard work to make it every bit as secure as Touch ID, if not while, while android smartphone OEMs simply crammed in said feature just to tick off a feature checkbox.

And people still go around conflating the two.

Just another uninformed opinion. Huawei P20 uses the same tech for face recognition as Apple only faster (at least it was reported to be faster than iPhone X). Samsung uses iris scanner (and two more biometrical methods of identification) which is also reliable. There is nothing exclusive about Face ID. P20 offers Face ID AND fingerprint scanner. That's what is expected today from flagship smartphones.

 

[hagar]

You also lose out on iMessages, integration with the Mac and iPad, and having to rely on Google for services because iCloud is now out of reach.

Is iMessage so ubiquitous in the US? Here in Europe everybody uses WhatsApp and even Messenger. So non iPhone friends can join the party. I would rather delete these apps as they drain my battery and I constantly need to think which friend is on what platform. But the reality is that especially WhatsApp has become too big to ignore.

I imagine it’s nice if everybody in your circle has an iPhone but over here it’s 1 in 5 and even seems to be dropping. Several iPhone people told me their next phone won’t be an iPhone because they’re too expensive and iOS doesn’t bring anything special to the table anymore. I’m on the fence because I have purchased too many apps over the years. And as you said, the macOS integration is nice. Not indispensable, but nice.

 

[Hildy]

But I still can’t unlock my pos Schlage Sense door lock with my phone because Schlage and Apple blame each other...

 

[simonmet]

What if they heated it to body/skin temperature?

 

[falainber]

What if they heated it to body/skin temperature?

The dude who wrote the Forbes article is just a regular writer not an expert in biometrical authentication. The article is basically useless, there is no new information in it.

 

[Abazigal]

Just another uninformed opinion. Huawei P20 uses the same tech for face recognition as Apple only faster (at least it was reported to be faster than iPhone X). Samsung uses iris scanner (and two more biometrical methods of identification) which is also reliable. There is nothing exclusive about Face ID. P20 offers Face ID AND fingerprint scanner. That's what is expected today from flagship smartphones.

Face ID isn’t an iris scanner. They might do the same thing on paper, but the manner in which they go about doing so is very different.

https://www.straitstimes.com/singap...to-log-into-government-e-services-by-scanning

I will take one means of authentication that is more secure, over 3-4 different ones that aren’t as reliable.

 

[Sevanw]

Oh look an article that plays to the blindly loyal Apple fan base. And the article is from none other than the Apple biased Forbes, aka clickbait city. Let's forget all the articles and videos showing face id being fooled. Then let's also just ignore how this "security test" purposely uses a feature on Samsung phones, that Samsung themselves, says is only for convenience and not a high level of security. For that, Samsung has a fingerprint reader AND Iris scanning. But hey, whatever makes the Apple kiddies warm and fuzzy inside.

 

[1rottenapple]

If you remember the iPhone X keynote, they had a detailed presentation about all of the work they did to make sure Face ID couldn't be compromised by masks and mannequins. Apple probably spent $10 million or more on research to make Face ID bullet proof, so it doesn't surprise me that a bunch of amateurs with 300 GBP fail at cracking it. Who do you think you're dealing with here? Apple is 10 steps ahead of the game as usual.

Apple spend 10 BILLION in r&d per year! Yes per year. That Face ID was way more than 10 million.

 

[ChristianVirtual]

Soon all mugshots and passport pics are 3D; easier for the governments to print a head and unlock devices from everyone.

 

[Delgibbons]

You also lose out on iMessages, integration with the Mac and iPad, and having to rely on Google for services because iCloud is now out of reach.

Not really. Chrome on Android in desktop mode, going to iCloud.com gets around apple's flouncey little message about Android not supporting iCloud. Plus Apple Music works pretty well on Android.

 

[ROGmaster]

Just another uninformed opinion. Huawei P20 uses the same tech for face recognition as Apple only faster (at least it was reported to be faster than iPhone X). Samsung uses iris scanner (and two more biometrical methods of identification) which is also reliable. There is nothing exclusive about Face ID. P20 offers Face ID AND fingerprint scanner. That's what is expected today from flagship smartphones.

That's the Mate 20 Pro

 

[BigDO]

And nothing of value was lost.

This. I have my reasons why I keep using iOS, but iMessage (everywhere other than US Whatsapp is standard), Mac (don't use it) and iCloud (the worst and least secure of all cloud platforms) are definitely not on the list.

 

[Mars56]

Just another uninformed opinion. Huawei P20 uses the same tech for face recognition as Apple only faster (at least it was reported to be faster than iPhone X). Samsung uses iris scanner (and two more biometrical methods of identification) which is also reliable. There is nothing exclusive about Face ID. P20 offers Face ID AND fingerprint scanner. That's what is expected today from flagship smartphones.

And it probably has a headphone jack too, since Apple are the stupid ones that left it away!! ooooooooohhhhhh

 

[gavroche]

I wish Apple would give us another option beside Face ID.

You have two options: Take it, or leave it...

 

[Shanghaichica]

Would have been nice for them to test out the mate 20 pro which is supposed to have facial recognition which uses the same technology as Face ID.
[doublepost=1545032033][/doublepost]

You also lose out on iMessages, integration with the Mac and iPad, and having to rely on Google for services because iCloud is now out of reach.

Well if you use iMessage and FaceTime and have other Apple products then you are loosing out but if you’re willing to use them google play services are very capable.

I wish Apple would give us a FPS in addition to Face ID.

 

[CarlJ]

On first glance, one of the problems looks to be that the 3D-printed head modeled his facial hair as monolithic solid "hair-like objects", layered onto the face, while on a real person, tens of thousands of individual hairs project out in front of the face - likely Apple's depth scanning tech is reading the face shape under the hair. To something measuring the face as a huge 2D grid of distances, the 3D model appears grossly misshaped, like the face it's trying to read is suddenly swollen around the chin, the upper lip, above the eyes, and on the forehead.

 

[Tech198]

Exactly how could the end user have access to this stuff ? It may prove more insecurity, but i think we'll all being fooled as well,as far as this goes...

Lets be realistic, than a fantasy........ Anyone is possible, but in reality, your not gonna go into one of these domes unless you want to prove something that will mean noting to the average user other than "its fake" to those who can afford to bypass.

 

[MacBH928]

Its not if FaceID is secure or not, I don't want to my pictures stored on Apple servers, and if they say they don't I don't trust them because I am sure somewhere in the terms and services it says that they will not be responsible for that if it happens and even if they get caught they will get a slap on the wrist just like how Google got punished for tracking people locations via Android even against the user's will.

 

[palmerc]

Impenetrable? Not really.

https://www.cso.com.au/article/629951/researchers-fool-iphone-x-face-id-150-3d-printed-face/

Apple has never claimed 100% impenetrable. As with TouchID they have offered specific likelihood a random person can unlock your phone. They make no claims regarding a direct, targeted attack against an iPhone. Furthermore, a lot of software updates have been released between the time this research was completed (late-2017) and now, so we'd have to check if the attack still works as-is. Apple security is constantly being updated.

 

[YaBe]

I’m on the fence because I have purchased too many apps over the years. And as you said, the macOS integration is nice. Not indispensable, but nice.

The money you save on an Android can get you all the app back in one block