Pages:
Author

Topic: Finger print best thing to prevent hacking? (Read 1786 times)

hero member
Activity: 672
Merit: 508
LOTEO
October 07, 2014, 03:58:17 PM
#26
Well i was thinking almost every laptop has this feature. Why not enable a system which use finger print to send payments this will eliminate the hacking. Iphone too has finger print so this can be applied if done properly what do you think guys?

Fingerprint are not as secure as you might think. In the end, fingerprint is only a binary code. You leave your fingerprints everywhere...
legendary
Activity: 840
Merit: 1000
How do I integrate Finger print scanner as a password? Is that possible? I find my finger print scanner useless till now!! Huh Huh
hero member
Activity: 686
Merit: 500
September 21, 2014, 10:28:48 PM
#24
Well i was thinking almost every laptop has this feature. Why not enable a system which use finger print to send payments this will eliminate the hacking. Iphone too has finger print so this can be applied if done properly what do you think guys?

Ok, how am I'm out of the loop - almost every laptop takes fingerprints now? (Sorry I haven't used Windows in years.)
No, not every laptop has a reader, but Windows now has built in Biometrics support based on standard driver models.

Ok, thanks!

I used to know a ton about windows... Now I'm oblivious!
hero member
Activity: 798
Merit: 1000
September 21, 2014, 10:15:00 PM
#23
Maybe we can deal with the issue of somebody cutting off people's fingers for their fingerprint by requiring that the finger also have a pulse. Stick your finger into a slot and it'll both take your fingerprint and measure your pulse.
hero member
Activity: 854
Merit: 1000
Bitcoin: The People's Bailout
September 21, 2014, 09:37:43 PM
#22
Cryptography is the best way to prevent hacking as long as private keys are randomly generated offline and kept offline.
This is much easier said then done, especially when you are using a private key as a credential, you would need to access your offline computer too many times and introduce too much hardware (likely a USB drive/stick) too many times to get a signed message to your online computer.

I agree that it's a hassle with today's technology, but I think cryptographic security is going to be a booming business for the next several years.  I believe we will likely see new cryptographically secure electronic hardware devices emerge that are designed to generate and store key pairs, sign and verify digital signatures, and encrypt and decrypt data.  These devices hopefully won't even be capable of going online, only exchanging data with a computer or other device that is connected to the internet.

The problem with computers is that security is an afterthought.  They were never designed to secure private keys.  Also, computers are by definition programmable, which means a hacker can potentially make it do something that you don't want it to do.  I think the solution is to not use computers, but hardware devices that are not programmable, and hard-wired specifically to perform cryptographic functions.  (Another application, besides mining, for ASICs, basically.)
legendary
Activity: 906
Merit: 1002
September 21, 2014, 02:35:21 PM
#21
Cryptography is the best way to prevent hacking as long as private keys are randomly generated offline and kept offline.
This is much easier said then done, especially when you are using a private key as a credential, you would need to access your offline computer too many times and introduce too much hardware (likely a USB drive/stick) too many times to get a signed message to your online computer.
copper member
Activity: 1498
Merit: 1528
No I dont escrow anymore.
September 21, 2014, 01:53:06 PM
#19
I like how there is allready proof in the 1st reply that this can easily be hacked but none of you bothered to read it because you cant understand the language.

Here take a video [1] the hack was figured out within 48 hours of the release of the phone
Quote
Less than 48 hours after the iPhone 5s went on sale, a group of German hackers claimed to have lifted a fingerprint and created a fake finger that could spoof Apple's "advanced" biometric technology. But anyone who's been paying attention to biometrics wasn't surprised.
source [2] and uses no special equipment. The phone can "detect whether" its a "real finger" all it wants, because there is an acutal "real finger" behind the plasticprint.

[1] http://www.youtube.com/watch?v=xRjnDMgEJNM
[2] http://www.zdnet.com/apples-advanced-fingerprint-technology-is-hacked-should-you-worry-7000020998/
legendary
Activity: 1904
Merit: 1074
September 21, 2014, 12:17:09 PM
#18
It could still be bypassed by cutting the other person's finger or making them to do it with gun next to their head.
Or am i watching too mutch tv?  Roll Eyes

The latest Biometric fingerprint scanners, have built in technology, that detect, if it's a "living" finger. {My friend installs them, and demonstrated it, with a rubber finger mold, of his own} I do not know, if the cheaper versions, have the same, detection technology built in.

When you configure the device, you scan more than one finger, to eliminate the risk of having "scars" or "blisters" on a finger, locking you out of your own system.  Wink

You could combine this with a retina {Eye} scanner, if you want more security.  Grin 



 
Well but how does it detect if it's alive or not? It wouldn't be so hard to heat finger to 38 degrees if it would be based on teperature.

fingerprint sensor uses radio frequency scanning to detect the sub-epidermal layers of your skin, a dynamic that requires the owner of the finger to be alive and attached to the finger being used.

Read here --> http://mashable.com/2013/09/15/severed-finger-iphone-5s/
legendary
Activity: 2436
Merit: 1561
September 21, 2014, 11:57:48 AM
#17

The latest Biometric fingerprint scanners, have built in technology, that detect, if it's a "living" finger. {My friend installs them, and demonstrated it, with a rubber finger mold, of his own} I do not know, if the cheaper versions, have the same, detection technology built in.

When you configure the device, you scan more than one finger, to eliminate the risk of having "scars" or "blisters" on a finger, locking you out of your own system.  Wink


There's another issue, a lot of people have unreadable fingerprints, I know at least 2. Both of them failed to had theirs taken for the biometric passport purpose. I'm sure there are more of people with this 'problem' worldwide.
legendary
Activity: 4424
Merit: 4794
September 21, 2014, 10:56:34 AM
#16
It could still be bypassed by cutting the other person's finger or making them to do it with gun next to their head.
Or am i watching too mutch tv?  Roll Eyes

The latest Biometric fingerprint scanners, have built in technology, that detect, if it's a "living" finger. {My friend installs them, and demonstrated it, with a rubber finger mold, of his own} I do not know, if the cheaper versions, have the same, detection technology built in.

When you configure the device, you scan more than one finger, to eliminate the risk of having "scars" or "blisters" on a finger, locking you out of your own system.  Wink

You could combine this with a retina {Eye} scanner, if you want more security.  Grin 

Well but how does it detect if it's alive or not? It wouldn't be so hard to heat finger to 38 degrees if it would be based on teperature.

barclays banks are already trying out vein readers...
http://www.barclays.com/news/2014/September/barclays-first-in-uk-to-launch-new-biometric-reader-for-customer.html
legendary
Activity: 966
Merit: 1000
September 21, 2014, 10:52:59 AM
#15
It could still be bypassed by cutting the other person's finger or making them to do it with gun next to their head.
Or am i watching too mutch tv?  Roll Eyes

The latest Biometric fingerprint scanners, have built in technology, that detect, if it's a "living" finger. {My friend installs them, and demonstrated it, with a rubber finger mold, of his own} I do not know, if the cheaper versions, have the same, detection technology built in.

When you configure the device, you scan more than one finger, to eliminate the risk of having "scars" or "blisters" on a finger, locking you out of your own system.  Wink

You could combine this with a retina {Eye} scanner, if you want more security.  Grin 



 
Well but how does it detect if it's alive or not? It wouldn't be so hard to heat finger to 38 degrees if it would be based on teperature.
legendary
Activity: 4424
Merit: 4794
September 21, 2014, 10:51:40 AM
#14
yep i meant be-spoke as in DIY (i made it myself). im not that into using third party tools. especially bitcoin related tools (id never use someone elses trading bot for instance), i dont even use the GUI for bitcoin. just the bitcoinD and my own bespoke GUI.

and i am totally against the idea of NFC. theres already scenario's of people brushing their NFC readers against the hips of passers-by on subway platforms to attempt to grab data
legendary
Activity: 1358
Merit: 1001
https://gliph.me/hUF
September 21, 2014, 10:45:52 AM
#13
[...]
looks proprietary - til bespoke is a uk word to mean customized software - probably uses windoze some random distro with a crazy long passord and has webcam enabled with a 3rd peice of software to be able to interpret the qr code and enter it into the password txt field.

edit:  found this little gem so you can diy it too: http://blog.self.li/post/14864315302/qr-login-howto
nvm its WAAAY COOLER but definitely infinitely more complicated and probably not worth the effort for an at-home non edward snowden type.

Of course I was thinking DYI, proper bespoke :-)  . I'm looking for something to log in the OS on an offline PC though.
legendary
Activity: 1456
Merit: 1018
HoneybadgerOfMoney.com Weed4bitcoin.com
September 21, 2014, 10:36:56 AM
#12
problem with fingerprints..
1) cut ur thumb and it leaves a scar. your now locked out as the scar has messed up ur fingerprint
2) get a blister on your thumb from hard work, as the skin dries and hardens as a separate layer not yet broken away, this too messes up the fingerprint
[...]

The software is smarter than you and usually let's you scan as many different fingers as you wish (at least Lenovo Thinkpads). To unlock any one finger will work.

In general I however agree: bad idea.


How did you make the QR code solution? Which OS?

looks proprietary - til bespoke is a uk word to mean customized software - probably uses windoze some random distro with a crazy long passord and has webcam enabled with a 3rd peice of software to be able to interpret the qr code and enter it into the password txt field.

edit:  found this little gem so you can diy it too: http://blog.self.li/post/14864315302/qr-login-howto
nvm its WAAAY COOLER but definitely infinitely more complicated and probably not worth the effort for an at-home non edward snowden type.


And also, I forgot what youtube video I was watching, but they had a suggestion to use a transparency that needs to be folded over itself two or three times to 'reveal' the code.  Hypothetically, you could print this and leave the peices of the private key in different secure locations.  

I think Fingerprints and nfc 'bump to pay' are nice and seamless, but those are the things that can totally be spoofed.  I would be more apt to run NFC if there was a separate RFID confirmation key within proximity (although if someone were to clone your phone then and there and attempt to send your money to their own bitcoin address it would probably circumvent that too)  I like the combination approach that involves confirmation via fingerprint AND retina scan and also using a password.
legendary
Activity: 1358
Merit: 1001
https://gliph.me/hUF
September 21, 2014, 10:30:25 AM
#11
problem with fingerprints..
1) cut ur thumb and it leaves a scar. your now locked out as the scar has messed up ur fingerprint
2) get a blister on your thumb from hard work, as the skin dries and hardens as a separate layer not yet broken away, this too messes up the fingerprint
[...]

The software is smarter than you and usually let's you scan as many different fingers as you wish (at least Lenovo Thinkpads). To unlock any one finger will work.

In general I however agree: bad idea.


How did you make the QR code solution? Which OS?
legendary
Activity: 1904
Merit: 1074
September 21, 2014, 10:26:47 AM
#10
It could still be bypassed by cutting the other person's finger or making them to do it with gun next to their head.
Or am i watching too mutch tv?  Roll Eyes

The latest Biometric fingerprint scanners, have built in technology, that detect, if it's a "living" finger. {My friend installs them, and demonstrated it, with a rubber finger mold, of his own} I do not know, if the cheaper versions, have the same, detection technology built in.

When you configure the device, you scan more than one finger, to eliminate the risk of having "scars" or "blisters" on a finger, locking you out of your own system.  Wink

You could combine this with a retina {Eye} scanner, if you want more security.  Grin 



 
legendary
Activity: 4424
Merit: 4794
September 21, 2014, 10:14:31 AM
#9
problem with fingerprints..
1) cut ur thumb and it leaves a scar. your now locked out as the scar has messed up ur fingerprint
2) get a blister on your thumb from hard work, as the skin dries and hardens as a separate layer not yet broken away, this too messes up the fingerprint
3) know someone that is into bitcoin and knows ur fingerprint protected? DO not allow him to buy you a drink and then let him carefully take the empty glass/bottle out of your sight


my computer has its data encrypted and the password is a long code. i dont even need to type it in or remmber it as my computer has a webcam and i simply show the webcam a QRcode and my program reads the qr code and decrypts the data.

its be-spoke, thus hackers cant easily pre-make scripts to intercept the data as they have no previous knowledge of how my bespoke program deals with it, even if they hack the webcam drivers to grab my QR code. its useless without knowing the other features my bespoke software needs. which i wont reveal.

but a webcam and QR code is simple.

i can name multiple other methods to secure your computer
hero member
Activity: 658
Merit: 500
September 21, 2014, 09:52:42 AM
#8
Well i was thinking almost every laptop has this feature.
Where do you live? Here in Mexico few laptops actually have them (and nobody cares, anyway).
legendary
Activity: 966
Merit: 1000
September 21, 2014, 09:48:42 AM
#7
It could still be bypassed by cutting the other person's finger or making them to do it with gun next to their head.
Or am i watching too mutch tv?  Roll Eyes
Pages:
Jump to: