Reminds me of this classic line from Blazing Saddles :Access to my phone? Please allow me to whip out my "special digit".This is why I use a different body part![]()
![]()
Reminds me of this classic line from Blazing Saddles :Access to my phone? Please allow me to whip out my "special digit".This is why I use a different body part![]()
![]()
Did anybody else notice how violently his hand was shaking?
First, the fingerprint of the enroled user is photographed with 2400 dpi resolution. The resulting image is then cleaned up, inverted and laser printed with 1200 dpi onto transparent sheet with a thick toner setting. Finally, pink latex milk or white woodglue is smeared into the pattern created by the toner onto the transparent sheet. After it cures, the thin latex sheet is lifted from the sheet, breathed on to make it a tiny bit moist and then placed onto the sensor to unlock the phone. This process has been used with minor refinements and variations against the vast majority of fingerprint sensors on the market.
Looks like TouchID is just going to be limited to unlocking the iPhone and purchasing apps for a while.
I agree. I would like to see the "house hold items" bit removed from the story on the Front Page. They are not just using a piece of tape. I know it says a photo AND household items, but it's a bit deceiving IMO.
For those mentioning 4 digit passcodes, there is a somewhat hidden feature for longer digit only passcodes. Most people know about complex passwords, but don't want to type on the full keyboard to get into their phone. But if you create a complex passcode that is only digits it will still use the number pad for passcode entry, but you can have as many digits as you want!
It's funny how the Apple fanboys try to deny the fact that it's pretty easy to bypass the security of their new gadget. I own Apple products myself so don't get me wrong. But the CCC isn't a joke that claims stuff they didn't test. You just need a fingerprint on a bottle or something like that. And as someone already pointed out. Most of your scanners do 2400 dpi so no problem.
While he might have "successfully" (which I am highly skeptical. Wouldn't it make more sense for him to give the latex fingerprint to SOMEONE ELSE that wasn't him to prove that anyone could use it?) bypassed the fingerprint lock, there are a couple things to keep in mind here.
1. If the phone is reset, you have to enter a passcode before you can start utilizing the fingerprint scanner.
2. If you haven't used the fingerprint scanner in 48 hours to log into the phone, it reverts to the passcode lock and wipes the fingerprint data. (so how long does it take to make these fake fingerprints?)
3. While he was able to log into the phone, he still doesn't have access to the fingerprint data that is stored in the secure enclave on the A7 chip.
I would have been MORE impressed if he was able to actually extract the data for the fingerprint from the secure enclave. Isn't that the point of this contest??? Not whether or not you can replicate a fingerprint?
And your phone. Anyone could take everyone´s fingerprint already. But for what exactly? Apple has given the tech junkies another target toy to play with and they like it.You just need a fingerprint on a bottle or something like that.