Not sure why this has turned into a Samsung versus Apple topic. Any form of security can be beached, including any eye-based options that Apple may one day include. That's just fair and balanced really.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Hackers Trick Samsung Galaxy S8 Iris Recognition Using a Printed Photo and a Contact Lens
- Thread starter MacRumors
- Start date
- Sort by reaction score
Untill you realize that touch Id was hacked as well ...
But not nearly as easily as this has been. Everything is hackable, the only difference is how easily it can be achieved.
Well using a little wax can be a little harder, but definetly not hard, and hardly "doesn't get fooled by" as suggested, heck someone even did it with a gummy bear.....
Also a 2013 hack revealed that the Touch ID can be bypassed by photographing a fingerprint from a glass surface, and printing it using special ink (NOT THAT HARD).
I am against fanboyism both way, yes in this case it was "easier" but also "expected", and I am sure that first gen Iris scanner from any company won't be that hard to be hacked, it will eventually get better, and as you suggest never 100% hack proof!
Well to be honest it's not just a bit of wax, there's a lot of expensive equipment needed. Copy/pasta from a comment on an article regarding the TouchID hack:
"First, the fingerprint of the enrolled user is photographed with 2400 dpi resolution. The resulting image is then cleaned up, inverted and laser printed with 1200 dpi onto transparent sheet with a thick toner setting. Finally, pink latex milk or white wood glue is smeared into the pattern created by the toner onto the transparent sheet. After it cures, the thin latex sheet is lifted from the sheet, breathed on to make it a tiny bit moist and then placed onto the sensor to unlock the phone."
Who cares about phone locks? I don't even have a passcode. Pro tip: never, ever have important stuff on an electronics device you are likely to loose at any time.
It's a total non-issue since you need to have a detailed photo of the iris that needs to be used to unlock the phone.
In other words, somebody has to come up close to you to take a photo.
It's a little like getting a photograph of a key and then making a real one from it. The chances are it'll work.
Once again. Total non-issue.
In other words, somebody has to come up close to you to take a photo.
It's a little like getting a photograph of a key and then making a real one from it. The chances are it'll work.
Once again. Total non-issue.
You know how hard it is to replicate a fingerprint? And to know exactly which fingerprint to replicate in order to do that hack? This was a picture...from a distance with a contact lense. That is very alarming.
No, you can't do that with a photograph taken from 10ft distance like the Samsung.
And you can't do that with "just wax". With common household items.
You should really lock your phone.
You don't need to have what most people consider 'important stuff' on there for someone to do damage. Everything else that's already 'logged in' on your phone can be accessed, such as email or social media, and access to just emails the user can change your passwords to everything you've ever signed up for (including bank accounts), take control and steal your identity.
Keep your phone locked.
You can just look at the victim typing and it's done. It can be even stolen with a HD camera from people using sunglasses.
Always the case with Samsung, releasing half-baked functionality, just look at Bixby. With Apple, hardly ever any first of anything, but when they do implement something it's usually cooked just right. The other side of the coin though is that with Apple it's their way or the highway. Don't like the choice they've made for you, tough. With Samsung (Android in general) you've got a dizzying array of options.
I have both an S8+ and an LG G6, deals that were too good to pass lol. On the S8, I have not enabled any biometric other than fingerprint, but with the bad placement of the fingerprint sensor, I will be trying the iris unlock soon. I believe both phones are superior to the iPhone 7, in hardware and software, but my iPhone will remain my daily phone because I'm locked in to the ecosystem.
Theoretically...
In practice, they don't have the optics and the software por proper security.
I challenge you to take a detailed photo of a random persons iris from a moving person, zoomed right in, without them realising they're up to something odd,
Damn good info. Very interesting.
Actually, you can remove the Dell part of your analogy. This hack was done by the exact same team that hacked Touch ID. They didn't hack an old Dell.
Is this really an accurate representation of what happened or is there some bias involved in your take on this situation? Just like with the Touch ID hack, the realistic chance of someone hacking a stranger's phone using this method (outside of a test environment) is about as realistic as someone hacking Touch ID under the same circumstances.
The good thing about this? It gives Apple time to implement some type of counter measure. It could be something as simple as requiring a blink or two. A blink would affect the speed of the phone unlocking, but that would only be a fraction of a second delay. Sammy could also add a blink requirement via a software update.
Last edited:
You don't have to take a picture of just the iris, whole face is enough. Good cameras have enormous resolution today. Also autofocus with eye detection, a pretty standard feature today, will help that the eye is in perfect focus.
Nice . So if I managed to pick up a lost phone, all I have to do is find the owner's photo with eye zoomed in . Easy
May I remind you that Siri after all those years is still less then a half baked service for non-English spoken countries...